Protocols and standards, Radius attributes, Commonly used standard radius attributes – H3C Technologies H3C SecPath F1000-E User Manual

159

Figure 136 Network diagram for AAA across VPNs

NOTE:

Together with the AAA across VPNs feature, you can implement portal authentication across VPNs on
MCEs.

Protocols and standards

The following protocols and standards are related to AAA, RADIUS, and HWTACACS:

•

RFC 2865, Remote Authentication Dial In User Service (RADIUS)

•

RFC 2866, RADIUS Accounting

•

RFC 2867, RADIUS Accounting Modifications for Tunnel Protocol Support

•

RFC 2868, RADIUS Attributes for Tunnel Protocol Support

•

RFC 2869, RADIUS Extensions

•

RFC 1492, An Access Control Protocol, Sometimes Called TACACS

RADIUS attributes

Commonly used standard RADIUS attributes

Table 46 Commonly used standard RADIUS attributes

No. Attribute

Description

1

User-Name

Name of the user to be authenticated.

2 User-Password

User password for PAP authentication, present only in Access-Request packets in
PAP authentication mode.

3 CHAP-Password

Digest of the user password for CHAP authentication, present only in
Access-Request packets in CHAP authentication mode.

4 NAS-IP-Address

IP address for the server to identify a client. Usually, a client is identified by the IP
address of the access interface of the NAS, namely the NAS IP address. This

attribute is present in only Access-Request packets.

5

NAS-Port

Physical port of the NAS that the user accesses.

6

Service-Type

Type of service that the user has requested or type of service to be provided.

P

MPLS backbone

PE

PE

CE

VPN 1

VPN 2

VPN 3

RADIUS

server

HWTACACS

server

Host

Host

NAS

MCE