RADIUS for Authentication

RADIUS for Authentication

The usage of RADIUS for network access authentication follows the common practice in the remote access servers industry. However, a few remarks are in order. It has become common practice to include the MSIDSN of the MS in the CALLING-STATION-ID attribute, and the value of the APN in the CALLED STATION-ID attribute.

The use of ACCESS-CHALLENGE message has some limitations. If the PPP PDP type is used, this message can be used in a normal manner. However, when the message is received for an APN in IP with Protocol Configuration Options access mode (see Chapter 6), then it is not possible for the system to challenge the MS and for the MS to return a challenge response. Therefore, the message is interpreted as an Access Reject. To avoid undesirable disconnection events, it may be wise not to enable the AAA server to issue challenge messages.

When using RADIUS authentication in a 3GPP system, you should consult the 3GPP specification [TS29.061] to gather information on how to best configure and use RADIUS authentication in GPRS/UMTS. The specification is extremely helpful for using the RADIUS authentication features appropriately.



 
ASPTreeView.com
 
Evaluation has ЅРЗexpired.
Info...