Patton electronic 29XX Server User Manual


 
Setting Up Authentication 40
Access Server Administrators’ Reference Guide 5 • Authentication
Accounting Port (auAcctPort)
This is the UDP port on the accounting server specified in Acct Address that the access server should use to
transfer accounting information. RFC 2139 states that port 1813 is the standard RADIUS accounting port.
Some older implementations of RADIUS use port 1646 as the accounting port.
Accounting Enable (auAccountingEnable)
This is a switch that allows the enabling or disabling the reporting of accounting information on the access
server. The following options are available:
enableAccounting—Begin accounting of RADIUS authenticated users.
disableAccounting—Disable the accounting feature.
enableAccounting-no validation—When a response is received from either the authentication or the
accounting server it is validated using the defined secret. If the secret does not match, the reply packet is
dropped just as if it never existed.
Early versions of the Livingston RADIUS server used a method for encoding the accounting reply packet
that was incorrect. Accounting replies from these servers would therefore be dropped because they could
not be authenticated, eventually resulting in timeouts and shutting the call down with the reason authenAc
-
countingTimeout. As a workaround for this issue, the state enableAccountingNoValidation—which does not
check for valid encoding on the accounting reply packet—was added as an option.
Radius Packet Format (auRadiusPacketFormat)
The following options are available:
fullRfcPacket—The accept request packet includes Calling-Station-Id and Service-Type RADIUS
attributes.
minimumRfcPacket—This setting does not include Calling-Station-Id and Service-Type RADIUS
attributes.
Radius Session ID Size (auRadiusRunningIdSize)
The session ID—which is sent in the Accounting start and stop packets—can be configured as either an 8 or
12-character string.
The 8-character session ID is formatted as follows (see figure 15 on page 36):
MM—The last two digits of the MAC address
R—The number of times the RAS has rebooted since the last code upload. This rolls over to 0 after 10
reboots
CCCCC—Call ID in hex. The call ID used is the one recorded on the main dial-in screen.
The 12-character session ID is formatted as follows (see figure 16 on page 37):
MMMM—The last four digits of the MAC address
RR—The number of times the RAS has rebooted since the last code upload. This rolls over to 0 after 100
reboots
S—Not used.
CCCCC—Call ID in hex. The call ID used is the one recorded on the main dial-in screen.