| draft-ietf-radext-dynauth-server-mib-04.txt | draft-ietf-radext-dynauth-server-mib-05.txt | |||
|---|---|---|---|---|
| Network Working Group S. De Cnodder | Network Working Group S. De Cnodder | |||
| Internet-Draft Alcatel | Internet-Draft Alcatel | |||
| Expires: September 14, 2006 N. Jonnala | Expires: September 30, 2006 N. Jonnala | |||
| M. Chiba | M. Chiba | |||
| Cisco Systems, Inc. | Cisco Systems, Inc. | |||
| March 13, 2006 | March 29, 2006 | |||
| Dynamic Authorization Server MIB | Dynamic Authorization Server MIB | |||
| draft-ietf-radext-dynauth-server-mib-04.txt | draft-ietf-radext-dynauth-server-mib-05.txt | |||
| Status of this Memo | Status of this Memo | |||
| By submitting this Internet-Draft, each author represents that any | By submitting this Internet-Draft, each author represents that any | |||
| applicable patent or other IPR claims of which he or she is aware | applicable patent or other IPR claims of which he or she is aware | |||
| have been or will be disclosed, and any of which he or she becomes | have been or will be disclosed, and any of which he or she becomes | |||
| aware will be disclosed, in accordance with Section 6 of BCP 79. | aware will be disclosed, in accordance with Section 6 of BCP 79. | |||
| Internet-Drafts are working documents of the Internet Engineering | Internet-Drafts are working documents of the Internet Engineering | |||
| Task Force (IETF), its areas, and its working groups. Note that | Task Force (IETF), its areas, and its working groups. Note that | |||
| skipping to change at page 1, line 36 | skipping to change at page 1, line 36 | |||
| and may be updated, replaced, or obsoleted by other documents at any | and may be updated, replaced, or obsoleted by other documents at any | |||
| time. It is inappropriate to use Internet-Drafts as reference | time. It is inappropriate to use Internet-Drafts as reference | |||
| material or to cite them other than as "work in progress." | material or to cite them other than as "work in progress." | |||
| The list of current Internet-Drafts can be accessed at | The list of current Internet-Drafts can be accessed at | |||
| http://www.ietf.org/ietf/1id-abstracts.txt. | http://www.ietf.org/ietf/1id-abstracts.txt. | |||
| The list of Internet-Draft Shadow Directories can be accessed at | The list of Internet-Draft Shadow Directories can be accessed at | |||
| http://www.ietf.org/shadow.html. | http://www.ietf.org/shadow.html. | |||
| This Internet-Draft will expire on September 14, 2006. | This Internet-Draft will expire on September 30, 2006. | |||
| Copyright Notice | Copyright Notice | |||
| Copyright (C) The Internet Society (2006). | Copyright (C) The Internet Society (2006). | |||
| Abstract | Abstract | |||
| This memo defines a portion of the Management Information Base (MIB) | This memo defines a portion of the Management Information Base (MIB) | |||
| for use with network management protocols in the Internet community. | for use with network management protocols in the Internet community. | |||
| In particular, it describes the Remote Authentication Dial In User | In particular, it describes the Remote Authentication Dial In User | |||
| skipping to change at page 2, line 13 | skipping to change at page 2, line 13 | |||
| defined in RFC 3576. | defined in RFC 3576. | |||
| Table of Contents | Table of Contents | |||
| 1. Introduction . . . . . . . . . . . . . . . . . . . . . . . . . 3 | 1. Introduction . . . . . . . . . . . . . . . . . . . . . . . . . 3 | |||
| 1.1. Requirements notation . . . . . . . . . . . . . . . . . . 3 | 1.1. Requirements notation . . . . . . . . . . . . . . . . . . 3 | |||
| 1.2. Terminology . . . . . . . . . . . . . . . . . . . . . . . 3 | 1.2. Terminology . . . . . . . . . . . . . . . . . . . . . . . 3 | |||
| 2. The Internet-Standard Management Framework . . . . . . . . . . 4 | 2. The Internet-Standard Management Framework . . . . . . . . . . 4 | |||
| 3. Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . 5 | 3. Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . 5 | |||
| 4. RADIUS Dynamic Authorization Server MIB Definitions . . . . . 7 | 4. RADIUS Dynamic Authorization Server MIB Definitions . . . . . 7 | |||
| 5. Security Considerations . . . . . . . . . . . . . . . . . . . 21 | 5. Security Considerations . . . . . . . . . . . . . . . . . . . 22 | |||
| 6. IANA considerations . . . . . . . . . . . . . . . . . . . . . 22 | 6. IANA considerations . . . . . . . . . . . . . . . . . . . . . 23 | |||
| 7. Acknowledgements . . . . . . . . . . . . . . . . . . . . . . . 23 | 7. Acknowledgements . . . . . . . . . . . . . . . . . . . . . . . 24 | |||
| 8. References . . . . . . . . . . . . . . . . . . . . . . . . . . 24 | 8. References . . . . . . . . . . . . . . . . . . . . . . . . . . 25 | |||
| 8.1. Normative References . . . . . . . . . . . . . . . . . . . 24 | 8.1. Normative References . . . . . . . . . . . . . . . . . . . 25 | |||
| 8.2. Informative References . . . . . . . . . . . . . . . . . . 24 | 8.2. Informative References . . . . . . . . . . . . . . . . . . 25 | |||
| Authors' Addresses . . . . . . . . . . . . . . . . . . . . . . . . 26 | Authors' Addresses . . . . . . . . . . . . . . . . . . . . . . . . 27 | |||
| Intellectual Property and Copyright Statements . . . . . . . . . . 27 | Intellectual Property and Copyright Statements . . . . . . . . . . 28 | |||
| 1. Introduction | 1. Introduction | |||
| This memo defines a portion of the Management Information Base (MIB) | This memo defines a portion of the Management Information Base (MIB) | |||
| for use with network management protocols in the Internet community. | for use with network management protocols in the Internet community. | |||
| It is becoming increasingly important to support Dynamic | It is becoming increasingly important to support Dynamic | |||
| Authorization extensions on the network access server (NAS) devices | Authorization extensions on the network access server (NAS) devices | |||
| to handle the Disconnect and Change-of-Authorization (CoA) messages | to handle the Disconnect and Change-of-Authorization (CoA) messages | |||
| as described in [RFC3576]. As a result, the effective management of | as described in [RFC3576]. As a result, the effective management of | |||
| RADIUS Dynamic Authorization entities is of considerable importance. | RADIUS Dynamic Authorization entities is of considerable importance. | |||
| skipping to change at page 6, line 19 | skipping to change at page 6, line 19 | |||
| | Server |--------------------->| Client | | | Server |--------------------->| Client | | |||
| User 3----| (DAS) | Disconnect-Ack | (DAC) | | User 3----| (DAS) | Disconnect-Ack | (DAC) | | |||
| | | Disconnect-NAK | | | | | Disconnect-NAK | | | |||
| +---------------+ CoA-Ack/CoA-NAK +---------------+ | +---------------+ CoA-Ack/CoA-NAK +---------------+ | |||
| Figure 1: Mapping of clients and servers. | Figure 1: Mapping of clients and servers. | |||
| This MIB module for the Dynamic Authorization Server contains the | This MIB module for the Dynamic Authorization Server contains the | |||
| following: | following: | |||
| 1. Three scalar objects, and | 1. Four scalar objects, and | |||
| 2. One Dynamic Authorization Client Table. This table contains one | 2. One Dynamic Authorization Client Table. This table contains one | |||
| row for each DAC with which the DAS shares a secret. | row for each DAC with which the DAS shares a secret. | |||
| 4. RADIUS Dynamic Authorization Server MIB Definitions | 4. RADIUS Dynamic Authorization Server MIB Definitions | |||
| RADIUS-DYNAUTH-SERVER-MIB DEFINITIONS ::= BEGIN | RADIUS-DYNAUTH-SERVER-MIB DEFINITIONS ::= BEGIN | |||
| IMPORTS | IMPORTS | |||
| MODULE-IDENTITY, OBJECT-TYPE, | MODULE-IDENTITY, OBJECT-TYPE, | |||
| Counter32, Integer32, mib-2 FROM SNMPv2-SMI -- [RFC2578] | Counter32, Integer32, mib-2, | |||
| TimeTicks FROM SNMPv2-SMI -- [RFC2578] | ||||
| SnmpAdminString FROM SNMP-FRAMEWORK-MIB -- [RFC3411] | SnmpAdminString FROM SNMP-FRAMEWORK-MIB -- [RFC3411] | |||
| InetAddressType, | InetAddressType, | |||
| InetAddress FROM INET-ADDRESS-MIB -- [RFC4001] | InetAddress FROM INET-ADDRESS-MIB -- [RFC4001] | |||
| MODULE-COMPLIANCE, | MODULE-COMPLIANCE, | |||
| OBJECT-GROUP FROM SNMPv2-CONF; -- [RFC2580] | OBJECT-GROUP FROM SNMPv2-CONF; -- [RFC2580] | |||
| radiusDynAuthServerMIB MODULE-IDENTITY | radiusDynAuthServerMIB MODULE-IDENTITY | |||
| LAST-UPDATED "200603100000Z" -- 10 March 2006 | LAST-UPDATED "200603220000Z" -- 22 March 2006 | |||
| ORGANIZATION "IETF RADEXT Working Group" | ORGANIZATION "IETF RADEXT Working Group" | |||
| CONTACT-INFO | CONTACT-INFO | |||
| " Stefaan De Cnodder | " Stefaan De Cnodder | |||
| Alcatel | Alcatel | |||
| Francis Wellesplein 1 | Francis Wellesplein 1 | |||
| B-2018 Antwerp | B-2018 Antwerp | |||
| Belgium | Belgium | |||
| Phone: +32 3 240 85 15 | Phone: +32 3 240 85 15 | |||
| EMail: stefaan.de_cnodder@alcatel.be | EMail: stefaan.de_cnodder@alcatel.be | |||
| Nagi Reddy Jonnala | Nagi Reddy Jonnala | |||
| Cisco Systems, Inc. | Cisco Systems, Inc. | |||
| Divyasree Chambers, B Wing, | Divyasree Chambers, B Wing, | |||
| O'Shaugnessy Road, | O'Shaugnessy Road, | |||
| Bangalore-560027, India. | Bangalore-560027, India. | |||
| Phone: +91 98456 99445 | Phone: +91 94487 60828 | |||
| EMail: njonnala@cisco.com | EMail: njonnala@cisco.com | |||
| Murtaza Chiba | Murtaza Chiba | |||
| Cisco Systems, Inc. | Cisco Systems, Inc. | |||
| 170 West Tasman Dr. | 170 West Tasman Dr. | |||
| San Jose CA, 95134 | San Jose CA, 95134 | |||
| Phone: +1 408 525 7198 | Phone: +1 408 525 7198 | |||
| EMail: mchiba@cisco.com " | EMail: mchiba@cisco.com " | |||
| DESCRIPTION | DESCRIPTION | |||
| "The MIB module for entities implementing the server | "The MIB module for entities implementing the server | |||
| side of the Dynamic Authorization Extensions to Remote | side of the Dynamic Authorization Extensions to Remote | |||
| Authentication Dial In User Service (RADIUS) protocol. | Authentication Dial In User Service (RADIUS) protocol. | |||
| Copyright (C) The Internet Society (2006). Initial | Copyright (C) The Internet Society (2006). Initial | |||
| version as published in RFC yyyy; | version as published in RFC yyyy; | |||
| for full legal notices see the RFC its" | for full legal notices see the RFC itself." | |||
| -- RFC Ed.: replace yyyy with actual RFC number & remove this note | -- RFC Ed.: replace yyyy with actual RFC number & remove this note | |||
| REVISION "200603100000Z" -- 10 March 2006 | REVISION "200603220000Z" -- 22 March 2006 | |||
| DESCRIPTION "Initial version as published in RFC yyyy." | DESCRIPTION "Initial version as published in RFC yyyy." | |||
| -- RFC Ed.: replace yyyy with actual RFC number & remove this note | -- RFC Ed.: replace yyyy with actual RFC number & remove this note | |||
| ::= { mib-2 xxx } | ::= { mib-2 xxx } | |||
| -- The value xxx to be assigned by IANA. | -- The value xxx to be assigned by IANA. | |||
| radiusDynAuthServerMIBObjects OBJECT IDENTIFIER ::= | radiusDynAuthServerMIBObjects OBJECT IDENTIFIER ::= | |||
| { radiusDynAuthServerMIB 1 } | { radiusDynAuthServerMIB 1 } | |||
| radiusDynAuthServerScalars OBJECT IDENTIFIER ::= | radiusDynAuthServerScalars OBJECT IDENTIFIER ::= | |||
| { radiusDynAuthServerMIBObjects 1 } | { radiusDynAuthServerMIBObjects 1 } | |||
| radiusDynAuthServerDisconInvalidClientAddresses OBJECT-TYPE | radiusDynAuthServerDisconInvalidClientAddresses OBJECT-TYPE | |||
| SYNTAX Counter32 | SYNTAX Counter32 | |||
| MAX-ACCESS read-only | MAX-ACCESS read-only | |||
| STATUS current | STATUS current | |||
| DESCRIPTION | DESCRIPTION | |||
| "The number of Disconnect-Request packets received from | "The number of Disconnect-Request packets received from | |||
| unknown addresses. This counter wraps from the maximum | unknown addresses. This counter may experience a | |||
| value to zero and is reset upon system | discontinuity when the DAS module (re)starts as | |||
| (re)initialization." | indicated by the value of | |||
| radiusDynAuthServerCounterDiscontinuity." | ||||
| ::= { radiusDynAuthServerScalars 1 } | ::= { radiusDynAuthServerScalars 1 } | |||
| radiusDynAuthServerCoAInvalidClientAddresses OBJECT-TYPE | radiusDynAuthServerCoAInvalidClientAddresses OBJECT-TYPE | |||
| SYNTAX Counter32 | SYNTAX Counter32 | |||
| MAX-ACCESS read-only | MAX-ACCESS read-only | |||
| STATUS current | STATUS current | |||
| DESCRIPTION | DESCRIPTION | |||
| "The number of CoA-Request packets received from unknown | "The number of CoA-Request packets received from unknown | |||
| addresses. This counter wraps from the maximum value to | addresses. This counter may experience a discontinuity | |||
| zero and is reset upon system (re)initialization." | when the DAS module (re)starts as indicated by the value | |||
| of radiusDynAuthServerCounterDiscontinuity." | ||||
| ::= { radiusDynAuthServerScalars 2 } | ::= { radiusDynAuthServerScalars 2 } | |||
| radiusDynAuthServerIdentifier OBJECT-TYPE | radiusDynAuthServerIdentifier OBJECT-TYPE | |||
| SYNTAX SnmpAdminString | SYNTAX SnmpAdminString | |||
| MAX-ACCESS read-only | MAX-ACCESS read-only | |||
| STATUS current | STATUS current | |||
| DESCRIPTION | DESCRIPTION | |||
| "The NAS-Identifier of the RADIUS Dynamic Authorization | "The NAS-Identifier of the RADIUS Dynamic Authorization | |||
| Server. This is not necessarily the same as sysName in | Server. This is not necessarily the same as sysName in | |||
| MIB II." | MIB II." | |||
| REFERENCE | REFERENCE | |||
| "RFC 2865, Section 5.32, NAS-Identifier." | "RFC 2865, Section 5.32, NAS-Identifier." | |||
| ::= { radiusDynAuthServerScalars 3 } | ::= { radiusDynAuthServerScalars 3 } | |||
| radiusDynAuthServerCounterDiscontinuity OBJECT-TYPE | ||||
| SYNTAX TimeTicks | ||||
| UNITS "hundredths of a second" | ||||
| MAX-ACCESS read-only | ||||
| STATUS current | ||||
| DESCRIPTION | ||||
| "The time (in hundredths of a second) since the | ||||
| DAS module was last re-initialized." | ||||
| ::= { radiusDynAuthServerScalars 4 } | ||||
| radiusDynAuthClientTable OBJECT-TYPE | radiusDynAuthClientTable OBJECT-TYPE | |||
| SYNTAX SEQUENCE OF RadiusDynAuthClientEntry | SYNTAX SEQUENCE OF RadiusDynAuthClientEntry | |||
| MAX-ACCESS not-accessible | MAX-ACCESS not-accessible | |||
| STATUS current | STATUS current | |||
| DESCRIPTION | DESCRIPTION | |||
| "The (conceptual) table listing the RADIUS Dynamic | "The (conceptual) table listing the RADIUS Dynamic | |||
| Authorization Clients with which the server shares a | Authorization Clients with which the server shares a | |||
| secret." | secret." | |||
| ::= { radiusDynAuthServerMIBObjects 2 } | ::= { radiusDynAuthServerMIBObjects 2 } | |||
| skipping to change at page 10, line 34 | skipping to change at page 10, line 48 | |||
| Authorization Client referred to in this table entry." | Authorization Client referred to in this table entry." | |||
| ::= { radiusDynAuthClientEntry 2 } | ::= { radiusDynAuthClientEntry 2 } | |||
| radiusDynAuthClientAddress OBJECT-TYPE | radiusDynAuthClientAddress OBJECT-TYPE | |||
| SYNTAX InetAddress | SYNTAX InetAddress | |||
| MAX-ACCESS read-only | MAX-ACCESS read-only | |||
| STATUS current | STATUS current | |||
| DESCRIPTION | DESCRIPTION | |||
| "The IP address value of the RADIUS Dynamic | "The IP address value of the RADIUS Dynamic | |||
| Authorization Client referred to in this table entry, | Authorization Client referred to in this table entry, | |||
| using the version neutral IP address format." | using the version neutral IP address format. The type | |||
| of this address is determined by the value of | ||||
| the radiusDynAuthClientAddressType object." | ||||
| ::= { radiusDynAuthClientEntry 3 } | ::= { radiusDynAuthClientEntry 3 } | |||
| radiusDynAuthServDisconRequests OBJECT-TYPE | radiusDynAuthServDisconRequests OBJECT-TYPE | |||
| SYNTAX Counter32 | SYNTAX Counter32 | |||
| UNITS "requests" | UNITS "requests" | |||
| MAX-ACCESS read-only | MAX-ACCESS read-only | |||
| STATUS current | STATUS current | |||
| DESCRIPTION | DESCRIPTION | |||
| "The number of RADIUS Disconnect-Requests received | "The number of RADIUS Disconnect-Requests received | |||
| from this Dynamic Authorization Client. This also | from this Dynamic Authorization Client. This also | |||
| includes the RADIUS Disconnect-Requests that have a | includes the RADIUS Disconnect-Requests that have a | |||
| Service-Type attribute with value 'Authorize Only'. | Service-Type attribute with value 'Authorize Only'. | |||
| This counter wraps from the maximum value to zero and | This counter may experience a discontinuity when the | |||
| is reset upon system (re)initialization." | DAS module (re)starts as indicated by the value of | |||
| radiusDynAuthServerCounterDiscontinuity." | ||||
| REFERENCE | REFERENCE | |||
| "RFC 3576, Section 2.1, Disconnect Messages (DM)." | "RFC 3576, Section 2.1, Disconnect Messages (DM)." | |||
| ::= { radiusDynAuthClientEntry 4 } | ::= { radiusDynAuthClientEntry 4 } | |||
| radiusDynAuthServDisconAuthOnlyRequests OBJECT-TYPE | radiusDynAuthServDisconAuthOnlyRequests OBJECT-TYPE | |||
| SYNTAX Counter32 | SYNTAX Counter32 | |||
| UNITS "requests" | UNITS "requests" | |||
| MAX-ACCESS read-only | MAX-ACCESS read-only | |||
| STATUS current | STATUS current | |||
| DESCRIPTION | DESCRIPTION | |||
| "The number of RADIUS Disconnect-Requests that include | "The number of RADIUS Disconnect-Requests that include | |||
| a Service-Type attribute with value 'Authorize Only' | a Service-Type attribute with value 'Authorize Only' | |||
| received from this Dynamic Authorization Client. This | received from this Dynamic Authorization Client. This | |||
| counter wraps from the maximum value to zero and is | counter may experience a discontinuity when the DAS | |||
| reset upon system (re)initialization." | module (re)starts as indicated by the value of | |||
| radiusDynAuthServerCounterDiscontinuity." | ||||
| REFERENCE | REFERENCE | |||
| "RFC 3576, Section 2.1, Disconnect Messages (DM)." | "RFC 3576, Section 2.1, Disconnect Messages (DM)." | |||
| ::= { radiusDynAuthClientEntry 5 } | ::= { radiusDynAuthClientEntry 5 } | |||
| radiusDynAuthServDupDisconRequests OBJECT-TYPE | radiusDynAuthServDupDisconRequests OBJECT-TYPE | |||
| SYNTAX Counter32 | SYNTAX Counter32 | |||
| UNITS "requests" | UNITS "requests" | |||
| MAX-ACCESS read-only | MAX-ACCESS read-only | |||
| STATUS current | STATUS current | |||
| DESCRIPTION | DESCRIPTION | |||
| "The number of duplicate RADIUS Disconnect-Request | "The number of duplicate RADIUS Disconnect-Request | |||
| packets received from this Dynamic Authorization | packets received from this Dynamic Authorization | |||
| Client. This counter wraps from the maximum value to | Client. This counter may experience a discontinuity | |||
| zero and is reset upon system (re)initialization." | when the DAS module (re)starts as indicated by the | |||
| value of radiusDynAuthServerCounterDiscontinuity." | ||||
| REFERENCE | REFERENCE | |||
| "RFC 3576, Section 2.1, Disconnect Messages (DM)." | "RFC 3576, Section 2.1, Disconnect Messages (DM)." | |||
| ::= { radiusDynAuthClientEntry 6 } | ::= { radiusDynAuthClientEntry 6 } | |||
| radiusDynAuthServDisconAcks OBJECT-TYPE | radiusDynAuthServDisconAcks OBJECT-TYPE | |||
| SYNTAX Counter32 | SYNTAX Counter32 | |||
| UNITS "replies" | UNITS "replies" | |||
| MAX-ACCESS read-only | MAX-ACCESS read-only | |||
| STATUS current | STATUS current | |||
| DESCRIPTION | DESCRIPTION | |||
| "The number of RADIUS Disconnect-ACK packets sent to | "The number of RADIUS Disconnect-ACK packets sent to | |||
| this Dynamic Authorization Client. This counter wraps | this Dynamic Authorization Client. This counter may | |||
| from the maximum value to zero and is reset upon system | experience a discontinuity when the DAS module | |||
| (re)initialization." | (re)starts as indicated by the value of | |||
| radiusDynAuthServerCounterDiscontinuity." | ||||
| REFERENCE | REFERENCE | |||
| "RFC 3576, Section 2.1, Disconnect Messages (DM)." | "RFC 3576, Section 2.1, Disconnect Messages (DM)." | |||
| ::= { radiusDynAuthClientEntry 7 } | ::= { radiusDynAuthClientEntry 7 } | |||
| radiusDynAuthServDisconNaks OBJECT-TYPE | radiusDynAuthServDisconNaks OBJECT-TYPE | |||
| SYNTAX Counter32 | SYNTAX Counter32 | |||
| UNITS "replies" | UNITS "replies" | |||
| MAX-ACCESS read-only | MAX-ACCESS read-only | |||
| STATUS current | STATUS current | |||
| DESCRIPTION | DESCRIPTION | |||
| "The number of RADIUS Disconnect-NAK packets | "The number of RADIUS Disconnect-NAK packets | |||
| sent to this Dynamic Authorization Client. This | sent to this Dynamic Authorization Client. This | |||
| includes the RADIUS Disconnect-NAK packets sent | includes the RADIUS Disconnect-NAK packets sent | |||
| with a Service-Type attribute with value 'Authorize | with a Service-Type attribute with value 'Authorize | |||
| Only' and the RADIUS Disconnect-NAK packets sent | Only' and the RADIUS Disconnect-NAK packets sent | |||
| because no session context was found. This counter | because no session context was found. This counter | |||
| wraps from the maximum value to zero and is reset | may experience a discontinuity when the DAS module | |||
| upon system (re)initialization." | (re)starts as indicated by the value of | |||
| radiusDynAuthServerCounterDiscontinuity." | ||||
| REFERENCE | REFERENCE | |||
| "RFC 3576, Section 2.1, Disconnect Messages (DM)." | "RFC 3576, Section 2.1, Disconnect Messages (DM)." | |||
| ::= { radiusDynAuthClientEntry 8 } | ::= { radiusDynAuthClientEntry 8 } | |||
| radiusDynAuthServDisconNakAuthOnlyRequests OBJECT-TYPE | radiusDynAuthServDisconNakAuthOnlyRequests OBJECT-TYPE | |||
| SYNTAX Counter32 | SYNTAX Counter32 | |||
| UNITS "replies" | UNITS "replies" | |||
| MAX-ACCESS read-only | MAX-ACCESS read-only | |||
| STATUS current | STATUS current | |||
| DESCRIPTION | DESCRIPTION | |||
| "The number of RADIUS Disconnect-NAK packets that | "The number of RADIUS Disconnect-NAK packets that | |||
| include a Service-Type attribute with value | include a Service-Type attribute with value | |||
| 'Authorize Only' sent to this Dynamic Authorization | 'Authorize Only' sent to this Dynamic Authorization | |||
| Client. This counter wraps from the maximum value to | Client. This counter may experience a discontinuity | |||
| zero and is reset upon system (re)initialization." | when the DAS module (re)starts as indicated by the | |||
| value of radiusDynAuthServerCounterDiscontinuity." | ||||
| REFERENCE | REFERENCE | |||
| "RFC 3576, Section 2.1, Disconnect Messages (DM)." | "RFC 3576, Section 2.1, Disconnect Messages (DM)." | |||
| ::= { radiusDynAuthClientEntry 9 } | ::= { radiusDynAuthClientEntry 9 } | |||
| radiusDynAuthServDisconNakSessNoContext OBJECT-TYPE | radiusDynAuthServDisconNakSessNoContext OBJECT-TYPE | |||
| SYNTAX Counter32 | SYNTAX Counter32 | |||
| UNITS "replies" | UNITS "replies" | |||
| MAX-ACCESS read-only | MAX-ACCESS read-only | |||
| STATUS current | STATUS current | |||
| DESCRIPTION | DESCRIPTION | |||
| "The number of RADIUS Disconnect-NAK packets | "The number of RADIUS Disconnect-NAK packets | |||
| sent to this Dynamic Authorization Client | sent to this Dynamic Authorization Client | |||
| because no session context was found. This counter | because no session context was found. This counter may | |||
| wraps from the maximum value to zero and is reset | experience a discontinuity when the DAS module | |||
| upon system (re)initialization." | (re)starts as indicated by the value of | |||
| radiusDynAuthServerCounterDiscontinuity." | ||||
| REFERENCE | REFERENCE | |||
| "RFC 3576, Section 2.1, Disconnect Messages (DM)." | "RFC 3576, Section 2.1, Disconnect Messages (DM)." | |||
| ::= { radiusDynAuthClientEntry 10 } | ::= { radiusDynAuthClientEntry 10 } | |||
| radiusDynAuthServDisconUserSessRemoved OBJECT-TYPE | radiusDynAuthServDisconUserSessRemoved OBJECT-TYPE | |||
| SYNTAX Counter32 | SYNTAX Counter32 | |||
| UNITS "sessions" | UNITS "sessions" | |||
| MAX-ACCESS read-only | MAX-ACCESS read-only | |||
| STATUS current | STATUS current | |||
| DESCRIPTION | DESCRIPTION | |||
| "The number of user sessions removed for the | "The number of user sessions removed for the | |||
| Disconnect-Requests received from this | Disconnect-Requests received from this | |||
| Dynamic Authorization Client. Depending on site | Dynamic Authorization Client. Depending on site | |||
| specific policies, a single Disconnect request | specific policies, a single Disconnect request | |||
| can remove multiple user sessions. In the case | can remove multiple user sessions. In the case | |||
| that this Dynamic Authorization Server has no | that this Dynamic Authorization Server has no | |||
| knowledge of the number of user sessions that | knowledge of the number of user sessions that | |||
| are affected by a single request, for each such | are affected by a single request, for each such | |||
| Disconnect-Request, it will count as a single | Disconnect-Request, it will count as a single | |||
| affected user session only. This counter wraps from | affected user session only. This counter may experience | |||
| the maximum value to zero and is reset upon system | a discontinuity when the DAS module (re)starts as | |||
| (re)initialization." | indicated by the value of | |||
| radiusDynAuthServerCounterDiscontinuity." | ||||
| REFERENCE | REFERENCE | |||
| "RFC 3576, Section 2.1, Disconnect Messages (DM)." | "RFC 3576, Section 2.1, Disconnect Messages (DM)." | |||
| ::= { radiusDynAuthClientEntry 11 } | ::= { radiusDynAuthClientEntry 11 } | |||
| radiusDynAuthServMalformedDisconRequests OBJECT-TYPE | radiusDynAuthServMalformedDisconRequests OBJECT-TYPE | |||
| SYNTAX Counter32 | SYNTAX Counter32 | |||
| UNITS "requests" | UNITS "requests" | |||
| MAX-ACCESS read-only | MAX-ACCESS read-only | |||
| STATUS current | STATUS current | |||
| DESCRIPTION | DESCRIPTION | |||
| "The number of malformed RADIUS Disconnect-Request | "The number of malformed RADIUS Disconnect-Request | |||
| packets received from this Dynamic Authorization | packets received from this Dynamic Authorization | |||
| Client. Bad authenticators and unknown types are not | Client. Bad authenticators and unknown types are not | |||
| included as malformed Disconnect-Requests. This counter | included as malformed Disconnect-Requests. This counter | |||
| wraps from the maximum value to zero and is reset upon | may experience a discontinuity when the DAS module | |||
| system (re)initialization." | (re)starts as indicated by the value of | |||
| radiusDynAuthServerCounterDiscontinuity." | ||||
| REFERENCE | REFERENCE | |||
| "RFC 3576, Section 2.1, Disconnect Messages (DM), and | "RFC 3576, Section 2.1, Disconnect Messages (DM), and | |||
| Section 2.3, Packet Format." | Section 2.3, Packet Format." | |||
| ::= { radiusDynAuthClientEntry 12 } | ::= { radiusDynAuthClientEntry 12 } | |||
| radiusDynAuthServDisconBadAuthenticators OBJECT-TYPE | radiusDynAuthServDisconBadAuthenticators OBJECT-TYPE | |||
| SYNTAX Counter32 | SYNTAX Counter32 | |||
| UNITS "requests" | UNITS "requests" | |||
| MAX-ACCESS read-only | MAX-ACCESS read-only | |||
| STATUS current | STATUS current | |||
| DESCRIPTION | DESCRIPTION | |||
| "The number of RADIUS Disconnect-Request packets | "The number of RADIUS Disconnect-Request packets | |||
| which contained invalid Authenticator field | which contained invalid Authenticator field | |||
| received from this Dynamic Authorization Client. This | received from this Dynamic Authorization Client. This | |||
| counter wraps from the maximum value to zero and is | counter may experience a discontinuity when the DAS | |||
| reset upon system (re)initialization." | module (re)starts as indicated by the value of | |||
| radiusDynAuthServerCounterDiscontinuity." | ||||
| REFERENCE | REFERENCE | |||
| "RFC 3576, Section 2.1, Disconnect Messages (DM), and | "RFC 3576, Section 2.1, Disconnect Messages (DM), and | |||
| Section 2.3, Packet Format." | Section 2.3, Packet Format." | |||
| ::= { radiusDynAuthClientEntry 13 } | ::= { radiusDynAuthClientEntry 13 } | |||
| radiusDynAuthServDisconPacketsDropped OBJECT-TYPE | radiusDynAuthServDisconPacketsDropped OBJECT-TYPE | |||
| SYNTAX Counter32 | SYNTAX Counter32 | |||
| UNITS "requests" | UNITS "requests" | |||
| MAX-ACCESS read-only | MAX-ACCESS read-only | |||
| STATUS current | STATUS current | |||
| DESCRIPTION | DESCRIPTION | |||
| "The number of incoming Disconnect-Requests | "The number of incoming Disconnect-Requests | |||
| from this Dynamic Authorization Client silently | from this Dynamic Authorization Client silently | |||
| discarded by the server application for some reason | discarded by the server application for some reason | |||
| other than malformed, bad authenticators or unknown | other than malformed, bad authenticators or unknown | |||
| types. This counter wraps from the maximum value to | types. This counter may experience a discontinuity | |||
| zero and is reset upon system (re)initialization." | when the DAS module (re)starts as indicated by the | |||
| value of radiusDynAuthServerCounterDiscontinuity." | ||||
| REFERENCE | REFERENCE | |||
| "RFC 3576, Section 2.1, Disconnect Messages (DM), and | "RFC 3576, Section 2.1, Disconnect Messages (DM), and | |||
| Section 2.3, Packet Format." | Section 2.3, Packet Format." | |||
| ::= { radiusDynAuthClientEntry 14 } | ::= { radiusDynAuthClientEntry 14 } | |||
| radiusDynAuthServCoARequests OBJECT-TYPE | radiusDynAuthServCoARequests OBJECT-TYPE | |||
| SYNTAX Counter32 | SYNTAX Counter32 | |||
| UNITS "requests" | UNITS "requests" | |||
| MAX-ACCESS read-only | MAX-ACCESS read-only | |||
| STATUS current | STATUS current | |||
| DESCRIPTION | DESCRIPTION | |||
| "The number of RADIUS CoA-requests received from this | "The number of RADIUS CoA-requests received from this | |||
| Dynamic Authorization Client. This also includes | Dynamic Authorization Client. This also includes | |||
| the CoA requests that have a Service-Type attribute | the CoA requests that have a Service-Type attribute | |||
| with value 'Authorize Only'. This counter wraps from | with value 'Authorize Only'. This counter may | |||
| the maximum value to zero and is reset upon system | experience a discontinuity when the DAS module | |||
| (re)initialization." | (re)starts as indicated by the value of | |||
| radiusDynAuthServerCounterDiscontinuity." | ||||
| REFERENCE | REFERENCE | |||
| "RFC 3576, Section 2.2, Change-of-Authorization | "RFC 3576, Section 2.2, Change-of-Authorization | |||
| Messages (CoA)." | Messages (CoA)." | |||
| ::= { radiusDynAuthClientEntry 15 } | ::= { radiusDynAuthClientEntry 15 } | |||
| radiusDynAuthServCoAAuthOnlyRequests OBJECT-TYPE | radiusDynAuthServCoAAuthOnlyRequests OBJECT-TYPE | |||
| SYNTAX Counter32 | SYNTAX Counter32 | |||
| UNITS "requests" | UNITS "requests" | |||
| MAX-ACCESS read-only | MAX-ACCESS read-only | |||
| STATUS current | STATUS current | |||
| DESCRIPTION | DESCRIPTION | |||
| "The number of RADIUS CoA-requests that include a | "The number of RADIUS CoA-requests that include a | |||
| Service-Type attribute with value 'Authorize Only' | Service-Type attribute with value 'Authorize Only' | |||
| received from this Dynamic Authorization Client. This | received from this Dynamic Authorization Client. This | |||
| counter wraps from the maximum value to zero and is | counter may experience a discontinuity when the DAS | |||
| reset upon system (re)initialization." | module (re)starts as indicated by the value of | |||
| radiusDynAuthServerCounterDiscontinuity." | ||||
| REFERENCE | REFERENCE | |||
| "RFC 3576, Section 2.2, Change-of-Authorization | "RFC 3576, Section 2.2, Change-of-Authorization | |||
| Messages (CoA)." | Messages (CoA)." | |||
| ::= { radiusDynAuthClientEntry 16 } | ::= { radiusDynAuthClientEntry 16 } | |||
| radiusDynAuthServDupCoARequests OBJECT-TYPE | radiusDynAuthServDupCoARequests OBJECT-TYPE | |||
| SYNTAX Counter32 | SYNTAX Counter32 | |||
| UNITS "requests" | UNITS "requests" | |||
| MAX-ACCESS read-only | MAX-ACCESS read-only | |||
| STATUS current | STATUS current | |||
| DESCRIPTION | DESCRIPTION | |||
| "The number of duplicate RADIUS CoA-Request packets | "The number of duplicate RADIUS CoA-Request packets | |||
| received from this Dynamic Authorization Client. This | received from this Dynamic Authorization Client. This | |||
| counter wraps from the maximum value to zero and is | counter may experience a discontinuity when the DAS | |||
| reset upon system (re)initialization." | module (re)starts as indicated by the value of | |||
| radiusDynAuthServerCounterDiscontinuity." | ||||
| REFERENCE | REFERENCE | |||
| "RFC 3576, Section 2.2, Change-of-Authorization | "RFC 3576, Section 2.2, Change-of-Authorization | |||
| Messages (CoA)." | Messages (CoA)." | |||
| ::= { radiusDynAuthClientEntry 17 } | ::= { radiusDynAuthClientEntry 17 } | |||
| radiusDynAuthServCoAAcks OBJECT-TYPE | radiusDynAuthServCoAAcks OBJECT-TYPE | |||
| SYNTAX Counter32 | SYNTAX Counter32 | |||
| UNITS "replies" | UNITS "replies" | |||
| MAX-ACCESS read-only | MAX-ACCESS read-only | |||
| STATUS current | STATUS current | |||
| DESCRIPTION | DESCRIPTION | |||
| "The number of RADIUS CoA-ACK packets sent to this | "The number of RADIUS CoA-ACK packets sent to this | |||
| Dynamic Authorization Client. This counter wraps from | Dynamic Authorization Client. This counter may | |||
| the maximum value to zero and is reset upon system | experience a discontinuity when the DAS module | |||
| (re)initialization." | (re)starts as indicated by the value of | |||
| radiusDynAuthServerCounterDiscontinuity." | ||||
| REFERENCE | REFERENCE | |||
| "RFC 3576, Section 2.2, Change-of-Authorization | "RFC 3576, Section 2.2, Change-of-Authorization | |||
| Messages (CoA)." | Messages (CoA)." | |||
| ::= { radiusDynAuthClientEntry 18 } | ::= { radiusDynAuthClientEntry 18 } | |||
| radiusDynAuthServCoANaks OBJECT-TYPE | radiusDynAuthServCoANaks OBJECT-TYPE | |||
| SYNTAX Counter32 | SYNTAX Counter32 | |||
| UNITS "replies" | UNITS "replies" | |||
| MAX-ACCESS read-only | MAX-ACCESS read-only | |||
| STATUS current | STATUS current | |||
| DESCRIPTION | DESCRIPTION | |||
| "The number of RADIUS CoA-NAK packets sent to | "The number of RADIUS CoA-NAK packets sent to | |||
| this Dynamic Authorization Client. This includes | this Dynamic Authorization Client. This includes | |||
| the RADIUS CoA-NAK packets sent with a Service-Type | the RADIUS CoA-NAK packets sent with a Service-Type | |||
| attribute with value 'Authorize Only' and the RADIUS | attribute with value 'Authorize Only' and the RADIUS | |||
| CoA-NAK packets sent because no session context was | CoA-NAK packets sent because no session context was | |||
| found. This counter wraps from the maximum value to | found. This counter may experience a discontinuity | |||
| zero and is reset upon system (re)initialization." | when the DAS module (re)starts as indicated by the | |||
| value of radiusDynAuthServerCounterDiscontinuity." | ||||
| REFERENCE | REFERENCE | |||
| "RFC 3576, Section 2.2, Change-of-Authorization | "RFC 3576, Section 2.2, Change-of-Authorization | |||
| Messages (CoA)." | Messages (CoA)." | |||
| ::= { radiusDynAuthClientEntry 19 } | ::= { radiusDynAuthClientEntry 19 } | |||
| radiusDynAuthServCoANakAuthOnlyRequests OBJECT-TYPE | radiusDynAuthServCoANakAuthOnlyRequests OBJECT-TYPE | |||
| SYNTAX Counter32 | SYNTAX Counter32 | |||
| UNITS "replies" | UNITS "replies" | |||
| MAX-ACCESS read-only | MAX-ACCESS read-only | |||
| STATUS current | STATUS current | |||
| DESCRIPTION | DESCRIPTION | |||
| "The number of RADIUS CoA-NAK packets that include a | "The number of RADIUS CoA-NAK packets that include a | |||
| Service-Type attribute with value 'Authorize Only' | Service-Type attribute with value 'Authorize Only' | |||
| sent to this Dynamic Authorization Client. This counter | sent to this Dynamic Authorization Client. This counter | |||
| wraps from the maximum value to zero and is reset upon | may experience a discontinuity when the DAS module | |||
| system (re)initialization." | (re)starts as indicated by the value of | |||
| radiusDynAuthServerCounterDiscontinuity." | ||||
| REFERENCE | REFERENCE | |||
| "RFC 3576, Section 2.2, Change-of-Authorization | "RFC 3576, Section 2.2, Change-of-Authorization | |||
| Messages (CoA)." | Messages (CoA)." | |||
| ::= { radiusDynAuthClientEntry 20 } | ::= { radiusDynAuthClientEntry 20 } | |||
| radiusDynAuthServCoANakSessNoContext OBJECT-TYPE | radiusDynAuthServCoANakSessNoContext OBJECT-TYPE | |||
| SYNTAX Counter32 | SYNTAX Counter32 | |||
| UNITS "replies" | UNITS "replies" | |||
| MAX-ACCESS read-only | MAX-ACCESS read-only | |||
| STATUS current | STATUS current | |||
| DESCRIPTION | DESCRIPTION | |||
| "The number of RADIUS CoA-NAK packets sent to this | "The number of RADIUS CoA-NAK packets sent to this | |||
| Dynamic Authorization Client because no session context | Dynamic Authorization Client because no session context | |||
| was found. This counter wraps from the maximum value to | was found. This counter may experience a discontinuity | |||
| zero and is reset upon system (re)initialization." | when the DAS module (re)starts as indicated by the | |||
| value of radiusDynAuthServerCounterDiscontinuity." | ||||
| REFERENCE | REFERENCE | |||
| "RFC 3576, Section 2.2, Change-of-Authorization | "RFC 3576, Section 2.2, Change-of-Authorization | |||
| Messages (CoA)." | Messages (CoA)." | |||
| ::= { radiusDynAuthClientEntry 21 } | ::= { radiusDynAuthClientEntry 21 } | |||
| radiusDynAuthServCoAUserSessChanged OBJECT-TYPE | radiusDynAuthServCoAUserSessChanged OBJECT-TYPE | |||
| SYNTAX Counter32 | SYNTAX Counter32 | |||
| UNITS "sessions" | UNITS "sessions" | |||
| MAX-ACCESS read-only | MAX-ACCESS read-only | |||
| STATUS current | STATUS current | |||
| DESCRIPTION | DESCRIPTION | |||
| "The number of user sessions authorization | "The number of user sessions authorization | |||
| changed for the CoA-Requests received from this | changed for the CoA-Requests received from this | |||
| Dynamic Authorization Client. Depending on site | Dynamic Authorization Client. Depending on site | |||
| specific policies, a single CoA request can change | specific policies, a single CoA request can change | |||
| multiple user sessions' authorization. In the case | multiple user sessions' authorization. In the case | |||
| this Dynamic Authorization Server has no knowledge of | this Dynamic Authorization Server has no knowledge of | |||
| the number of user sessions that are affected by a | the number of user sessions that are affected by a | |||
| single request, for each such CoA-Request, it will | single request, for each such CoA-Request, it will | |||
| count as a single affected user session only. This | count as a single affected user session only. This | |||
| counter wraps from the maximum value to zero and is | counter may experience a discontinuity when the DAS | |||
| reset upon system (re)initialization." | module (re)starts as indicated by the value of | |||
| radiusDynAuthServerCounterDiscontinuity." | ||||
| REFERENCE | REFERENCE | |||
| "RFC 3576, Section 2.2, Change-of-Authorization | "RFC 3576, Section 2.2, Change-of-Authorization | |||
| Messages (CoA)." | Messages (CoA)." | |||
| ::= { radiusDynAuthClientEntry 22 } | ::= { radiusDynAuthClientEntry 22 } | |||
| radiusDynAuthServMalformedCoARequests OBJECT-TYPE | radiusDynAuthServMalformedCoARequests OBJECT-TYPE | |||
| SYNTAX Counter32 | SYNTAX Counter32 | |||
| UNITS "requests" | UNITS "requests" | |||
| MAX-ACCESS read-only | MAX-ACCESS read-only | |||
| STATUS current | STATUS current | |||
| DESCRIPTION | DESCRIPTION | |||
| "The number of malformed RADIUS CoA-Request packets | "The number of malformed RADIUS CoA-Request packets | |||
| received from this Dynamic Authorization Client. Bad | received from this Dynamic Authorization Client. Bad | |||
| authenticators and unknown types are not included as | authenticators and unknown types are not included as | |||
| malformed CoA-Requests. This counter wraps from the | malformed CoA-Requests. This counter may experience a | |||
| maximum value to zero and is reset upon system | discontinuity when the DAS module (re)starts as | |||
| (re)initialization." | indicated by the value of | |||
| radiusDynAuthServerCounterDiscontinuity." | ||||
| REFERENCE | REFERENCE | |||
| "RFC 3576, Section 2.2, Change-of-Authorization | "RFC 3576, Section 2.2, Change-of-Authorization | |||
| Messages (CoA), and Section 2.3, Packet Format." | Messages (CoA), and Section 2.3, Packet Format." | |||
| ::= { radiusDynAuthClientEntry 23 } | ::= { radiusDynAuthClientEntry 23 } | |||
| radiusDynAuthServCoABadAuthenticators OBJECT-TYPE | radiusDynAuthServCoABadAuthenticators OBJECT-TYPE | |||
| SYNTAX Counter32 | SYNTAX Counter32 | |||
| UNITS "requests" | UNITS "requests" | |||
| MAX-ACCESS read-only | MAX-ACCESS read-only | |||
| STATUS current | STATUS current | |||
| DESCRIPTION | DESCRIPTION | |||
| "The number of RADIUS CoA-Request packets which | "The number of RADIUS CoA-Request packets which | |||
| contained invalid Authenticator field received | contained invalid Authenticator field received | |||
| from this Dynamic Authorization Client. This counter | from this Dynamic Authorization Client. This counter | |||
| wraps from the maximum value to zero and is reset | may experience a discontinuity when the DAS module | |||
| upon system (re)initialization." | (re)starts as indicated by the value of | |||
| radiusDynAuthServerCounterDiscontinuity." | ||||
| REFERENCE | REFERENCE | |||
| "RFC 3576, Section 2.2, Change-of-Authorization | "RFC 3576, Section 2.2, Change-of-Authorization | |||
| Messages (CoA), and Section 2.3, Packet Format." | Messages (CoA), and Section 2.3, Packet Format." | |||
| ::= { radiusDynAuthClientEntry 24 } | ::= { radiusDynAuthClientEntry 24 } | |||
| radiusDynAuthServCoAPacketsDropped OBJECT-TYPE | radiusDynAuthServCoAPacketsDropped OBJECT-TYPE | |||
| SYNTAX Counter32 | SYNTAX Counter32 | |||
| UNITS "requests" | UNITS "requests" | |||
| MAX-ACCESS read-only | MAX-ACCESS read-only | |||
| STATUS current | STATUS current | |||
| DESCRIPTION | DESCRIPTION | |||
| "The number of incoming CoA packets from this | "The number of incoming CoA packets from this | |||
| Dynamic Authorization Client silently discarded | Dynamic Authorization Client silently discarded | |||
| by the server application for some reason other than | by the server application for some reason other than | |||
| malformed, bad authenticators or unknown types. This | malformed, bad authenticators or unknown types. This | |||
| counter wraps from the maximum value to zero and is | counter may experience a discontinuity when the DAS | |||
| reset upon system (re)initialization." | module (re)starts as indicated by the value of | |||
| radiusDynAuthServerCounterDiscontinuity." | ||||
| REFERENCE | REFERENCE | |||
| "RFC 3576, Section 2.2, Change-of-Authorization | "RFC 3576, Section 2.2, Change-of-Authorization | |||
| Messages (CoA), and Section 2.3, Packet Format." | Messages (CoA), and Section 2.3, Packet Format." | |||
| ::= { radiusDynAuthClientEntry 25 } | ::= { radiusDynAuthClientEntry 25 } | |||
| radiusDynAuthServUnknownTypes OBJECT-TYPE | radiusDynAuthServUnknownTypes OBJECT-TYPE | |||
| SYNTAX Counter32 | SYNTAX Counter32 | |||
| UNITS "requests" | UNITS "requests" | |||
| MAX-ACCESS read-only | MAX-ACCESS read-only | |||
| STATUS current | STATUS current | |||
| DESCRIPTION | DESCRIPTION | |||
| "The number of incoming packets of unknown types which | "The number of incoming packets of unknown types which | |||
| were received on the Dynamic Authorization port. This | were received on the Dynamic Authorization port. This | |||
| counter wraps from the maximum value to zero and is | counter may experience a discontinuity when the DAS | |||
| reset upon system (re)initialization." | module (re)starts as indicated by the value of | |||
| radiusDynAuthServerCounterDiscontinuity." | ||||
| REFERENCE | REFERENCE | |||
| "RFC 3576, Section 2.3, Packet Format." | "RFC 3576, Section 2.3, Packet Format." | |||
| ::= { radiusDynAuthClientEntry 26 } | ::= { radiusDynAuthClientEntry 26 } | |||
| -- conformance information | -- conformance information | |||
| radiusDynAuthServerMIBConformance | radiusDynAuthServerMIBConformance | |||
| OBJECT IDENTIFIER ::= { radiusDynAuthServerMIB 2 } | OBJECT IDENTIFIER ::= { radiusDynAuthServerMIB 2 } | |||
| radiusDynAuthServerMIBCompliances | radiusDynAuthServerMIBCompliances | |||
| OBJECT IDENTIFIER ::= { radiusDynAuthServerMIBConformance 1 } | OBJECT IDENTIFIER ::= { radiusDynAuthServerMIBConformance 1 } | |||
| radiusDynAuthServerMIBGroups | radiusDynAuthServerMIBGroups | |||
| OBJECT IDENTIFIER ::= { radiusDynAuthServerMIBConformance 2 } | OBJECT IDENTIFIER ::= { radiusDynAuthServerMIBConformance 2 } | |||
| -- compliance statements | -- compliance statements | |||
| radiusAuthServerMIBCompliance MODULE-COMPLIANCE | radiusAuthServerMIBCompliance MODULE-COMPLIANCE | |||
| STATUS current | STATUS current | |||
| DESCRIPTION | DESCRIPTION | |||
| "The compliance statement for entities implementing | "The compliance statement for entities implementing | |||
| the RADIUS Dynamic Authorization Server." | the RADIUS Dynamic Authorization Server. Implementation | |||
| of this module is for entities that support IPv4 and/or | ||||
| IPv6." | ||||
| MODULE -- this module | MODULE -- this module | |||
| MANDATORY-GROUPS { radiusDynAuthServerMIBGroup } | MANDATORY-GROUPS { radiusDynAuthServerMIBGroup } | |||
| OBJECT radiusDynAuthClientAddressType | ||||
| SYNTAX InetAddressType { ipv4(1), ipv6(2) } | ||||
| DESCRIPTION | ||||
| "An implementation is only required to support IPv4 and | ||||
| globally unique IPv6 addresses." | ||||
| OBJECT radiusDynAuthClientAddress | ||||
| SYNTAX InetAddress (SIZE(4|16)) | ||||
| DESCRIPTION | ||||
| "An implementation is only required to support IPv4 and | ||||
| globally unique IPv6 addresses." | ||||
| GROUP radiusDynAuthServerAuthOnlyGroup | GROUP radiusDynAuthServerAuthOnlyGroup | |||
| DESCRIPTION | DESCRIPTION | |||
| "Only required for Dynamic Authorization Clients that | "Only required for Dynamic Authorization Clients that | |||
| are supporting Service-Type attributes with value | are supporting Service-Type attributes with value | |||
| 'Authorize-Only'." | 'Authorize-Only'." | |||
| GROUP radiusDynAuthServerNoSessGroup | GROUP radiusDynAuthServerNoSessGroup | |||
| DESCRIPTION | DESCRIPTION | |||
| "This group is not required in case the Dynamic | "This group is not required in case the Dynamic | |||
| Authorization Server can not easily determine whether | Authorization Server can not easily determine whether | |||
| skipping to change at page 19, line 24 | skipping to change at page 20, line 29 | |||
| proxy)." | proxy)." | |||
| ::= { radiusDynAuthServerMIBCompliances 1 } | ::= { radiusDynAuthServerMIBCompliances 1 } | |||
| -- units of conformance | -- units of conformance | |||
| radiusDynAuthServerMIBGroup OBJECT-GROUP | radiusDynAuthServerMIBGroup OBJECT-GROUP | |||
| OBJECTS { radiusDynAuthServerDisconInvalidClientAddresses, | OBJECTS { radiusDynAuthServerDisconInvalidClientAddresses, | |||
| radiusDynAuthServerCoAInvalidClientAddresses, | radiusDynAuthServerCoAInvalidClientAddresses, | |||
| radiusDynAuthServerIdentifier, | radiusDynAuthServerIdentifier, | |||
| radiusDynAuthServerCounterDiscontinuity, | ||||
| radiusDynAuthClientAddressType, | radiusDynAuthClientAddressType, | |||
| radiusDynAuthClientAddress, | radiusDynAuthClientAddress, | |||
| radiusDynAuthServDisconRequests, | radiusDynAuthServDisconRequests, | |||
| radiusDynAuthServDupDisconRequests, | radiusDynAuthServDupDisconRequests, | |||
| radiusDynAuthServDisconAcks, | radiusDynAuthServDisconAcks, | |||
| radiusDynAuthServDisconNaks, | radiusDynAuthServDisconNaks, | |||
| radiusDynAuthServDisconUserSessRemoved, | radiusDynAuthServDisconUserSessRemoved, | |||
| radiusDynAuthServMalformedDisconRequests, | radiusDynAuthServMalformedDisconRequests, | |||
| radiusDynAuthServDisconBadAuthenticators, | radiusDynAuthServDisconBadAuthenticators, | |||
| radiusDynAuthServDisconPacketsDropped, | radiusDynAuthServDisconPacketsDropped, | |||
| skipping to change at page 23, line 9 | skipping to change at page 24, line 9 | |||
| rights to indeed GET or SET (change/create/delete) them. | rights to indeed GET or SET (change/create/delete) them. | |||
| 6. IANA considerations | 6. IANA considerations | |||
| IANA is requested to assign an OID xxx under mib-2. | IANA is requested to assign an OID xxx under mib-2. | |||
| 7. Acknowledgements | 7. Acknowledgements | |||
| The authors would also like to acknowledge the following people for | The authors would also like to acknowledge the following people for | |||
| their comments on this document: Bernard Aboba, Alan DeKok, David | their comments on this document: Bernard Aboba, Alan DeKok, David | |||
| Nelson, Anjaneyulu Pata, Dan Romascanu, Greg Weber, Bert Wijnen, and | Nelson, Anjaneyulu Pata, Dan Romascanu, Juergen Schoenwaelder, Greg | |||
| Glen Zorn. | Weber, Bert Wijnen and Glen Zorn. | |||
| 8. References | 8. References | |||
| 8.1. Normative References | 8.1. Normative References | |||
| [RFC2119] Bradner, S., "Key words for use in RFCs to Indicate | [RFC2119] Bradner, S., "Key words for use in RFCs to Indicate | |||
| Requirement Levels", RFC 2119, March 1997. | Requirement Levels", RFC 2119, March 1997. | |||
| [RFC2578] McCloghrie, K., Perkins, D., Schoenwaelder, J., Case, J., | [RFC2578] McCloghrie, K., Perkins, D., Schoenwaelder, J., Case, J., | |||
| Rose, M., and S. Waldbusser, "Structure of Management | Rose, M., and S. Waldbusser, "Structure of Management | |||
| skipping to change at page 24, line 42 | skipping to change at page 25, line 42 | |||
| Authentication Dial In User Service (RADIUS)", RFC 3576, | Authentication Dial In User Service (RADIUS)", RFC 3576, | |||
| July 2003. | July 2003. | |||
| [RFC4001] Daniele, M. and et al., "Textual Conventions for Internet | [RFC4001] Daniele, M. and et al., "Textual Conventions for Internet | |||
| Network Addresses", RFC 4001, February 2005. | Network Addresses", RFC 4001, February 2005. | |||
| 8.2. Informative References | 8.2. Informative References | |||
| [DYNCLNT] De Cnodder, S., Jonnala, N., and M. Chiba, "RADIUS Dynamic | [DYNCLNT] De Cnodder, S., Jonnala, N., and M. Chiba, "RADIUS Dynamic | |||
| Authorization Client MIB", | Authorization Client MIB", | |||
| draft-ietf-radext-dynauth-client-mib-03.txt, work in | draft-ietf-radext-dynauth-client-mib-05.txt, work in | |||
| progress, December 2005. | progress, December 2005. | |||
| [RFC2618bis] | [RFC2618bis] | |||
| Nelson, D., "RADIUS Auth Client MIB (IPv6)", | Nelson, D., "RADIUS Auth Client MIB (IPv6)", | |||
| draft-ietf-radext-rfc2618bis-01.txt work in progress, | draft-ietf-radext-rfc2618bis-01.txt work in progress, | |||
| October 2005. | October 2005. | |||
| [RFC2619bis] | [RFC2619bis] | |||
| Nelson, D., "RADIUS Auth Server MIB (IPv6)", | Nelson, D., "RADIUS Auth Server MIB (IPv6)", | |||
| draft-ietf-radext-rfc2619bis-01.txt work in progress, | draft-ietf-radext-rfc2619bis-01.txt work in progress, | |||
| skipping to change at page 26, line 21 | skipping to change at page 27, line 21 | |||
| Belgium | Belgium | |||
| Phone: +32 3 240 85 15 | Phone: +32 3 240 85 15 | |||
| Email: stefaan.de_cnodder@alcatel.be | Email: stefaan.de_cnodder@alcatel.be | |||
| Nagi Reddy Jonnala | Nagi Reddy Jonnala | |||
| Cisco Systems, Inc. | Cisco Systems, Inc. | |||
| Divyasree Chambers, B Wing, O'Shaugnessy Road | Divyasree Chambers, B Wing, O'Shaugnessy Road | |||
| Bangalore-560027, India | Bangalore-560027, India | |||
| Phone: +91 98456 99445 | Phone: +91 94487 60828 | |||
| Email: njonnala@cisco.com | Email: njonnala@cisco.com | |||
| Murtaza Chiba | Murtaza Chiba | |||
| Cisco Systems, Inc. | Cisco Systems, Inc. | |||
| 170 West Tasman Dr. | 170 West Tasman Dr. | |||
| San Jose CA, 95134 | San Jose CA, 95134 | |||
| Phone: +1 408 525 7198 | Phone: +1 408 525 7198 | |||
| Email: mchiba@cisco.com | Email: mchiba@cisco.com | |||
| End of changes. 45 change blocks. | ||||
| 82 lines changed or deleted | 135 lines changed or added | |||
This html diff was produced by rfcdiff 1.29, available from http://www.levkowetz.com/ietf/tools/rfcdiff/ | ||||