Remote Authentication Dial In User Service (RADIUS)
RFC 2058

Document Type RFC - Proposed Standard (January 1997; No errata)
Obsoleted by RFC 2138
Last updated 2013-03-02
Stream IETF
Formats plain text pdf htmlized bibtex
Stream WG state (None)
Document shepherd No shepherd assigned
IESG IESG state RFC 2058 (Proposed Standard)
Consensus Boilerplate Unknown
Telechat date
Responsible AD (None)
Send notices to (None)
Network Working Group                                          C. Rigney
Request for Comments: 2058                                    Livingston
Category: Standards Track                                      A. Rubens
                                                                   Merit
                                                              W. Simpson
                                                              Daydreamer
                                                              S. Willens
                                                              Livingston
                                                            January 1997

          Remote Authentication Dial In User Service (RADIUS)

Status of this Memo

   This document specifies an Internet standards track protocol for the
   Internet community, and requests discussion and suggestions for
   improvements.  Please refer to the current edition of the "Internet
   Official Protocol Standards" (STD 1) for the standardization state
   and status of this protocol.  Distribution of this memo is unlimited.

Abstract

   This document describes a protocol for carrying authentication,
   authorization, and configuration information between a Network Access
   Server which desires to authenticate its links and a shared
   Authentication Server.

Table of Contents

   1.     Introduction ..........................................    3
      1.1       Specification of Requirements ...................    4
      1.2       Terminology .....................................    4
   2.     Operation .............................................    5
      2.1       Challenge/Response ..............................    6
      2.2       Interoperation with PAP and CHAP ................    7
      2.3       Why UDP? ........................................    8
   3.     Packet Format .........................................    9
   4.     Packet Types ..........................................   12
      4.1       Access-Request ..................................   12
      4.2       Access-Accept ...................................   14
      4.3       Access-Reject ...................................   15
      4.4       Access-Challenge ................................   16
   5.     Attributes ............................................   17
      5.1       User-Name .......................................   20
      5.2       User-Password ...................................   21
      5.3       CHAP-Password ...................................   22
      5.4       NAS-IP-Address ..................................   23

Rigney, et. al.              Informational                      [Page 1]
RFC 2058                         RADIUS                     January 1997

      5.5       NAS-Port ........................................   24
      5.6       Service-Type ....................................   25
      5.7       Framed-Protocol .................................   27
      5.8       Framed-IP-Address ...............................   28
      5.9       Framed-IP-Netmask ...............................   29
      5.10      Framed-Routing ..................................   29
      5.11      Filter-Id .......................................   30
      5.12      Framed-MTU ......................................   31
      5.13      Framed-Compression ..............................   32
      5.14      Login-IP-Host ...................................   33
      5.15      Login-Service ...................................   33
      5.16      Login-TCP-Port ..................................   34
      5.17      (unassigned) ....................................   35
      5.18      Reply-Message ...................................   35
      5.19      Callback-Number .................................   36
      5.20      Callback-Id .....................................   37
      5.21      (unassigned) ....................................   37
      5.22      Framed-Route ....................................   38
      5.23      Framed-IPX-Network ..............................   39
      5.24      State ...........................................   39
      5.25      Class ...........................................   40
      5.26      Vendor-Specific .................................   41
      5.27      Session-Timeout .................................   43
      5.28      Idle-Timeout ....................................   44
      5.29      Termination-Action ..............................   44
      5.30      Called-Station-Id ...............................   45
      5.31      Calling-Station-Id ..............................   46
      5.32      NAS-Identifier ..................................   47
      5.33      Proxy-State .....................................   48
      5.34      Login-LAT-Service ...............................   49
      5.35      Login-LAT-Node ..................................   50
      5.36      Login-LAT-Group .................................   51
Show full document text