draft-ietf-radius-auth-servmib-00.txt   draft-ietf-radius-auth-servmib-01.txt 
RADIUS Working Group Glen Zorn RADIUS Working Group Glen Zorn
INTERNET-DRAFT Microsoft INTERNET-DRAFT Microsoft
Category: Standards Track Bernard Aboba Category: Standards Track Bernard Aboba
<draft-ietf-radius-auth-servmib-00.txt> Microsoft <draft-ietf-radius-auth-servmib-01.txt> Microsoft
9 August 1997 12 February 1998
RADIUS Authentication Server MIB RADIUS Authentication Server MIB
1. Status of this Memo 1. Status of this Memo
This document is an Internet-Draft. Internet-Drafts are working docu- This document is an Internet-Draft. Internet-Drafts are working docu-
ments of the Internet Engineering Task Force (IETF), its areas, and ments of the Internet Engineering Task Force (IETF), its areas, and
its working groups. Note that other groups may also distribute work- its working groups. Note that other groups may also distribute work-
ing documents as Internet-Drafts. ing documents as Internet-Drafts.
skipping to change at page 1, line 29 skipping to change at page 1, line 29
and may be updated, replaced, or obsoleted by other documents at any and may be updated, replaced, or obsoleted by other documents at any
time. It is inappropriate to use Internet-Drafts as reference mate- time. It is inappropriate to use Internet-Drafts as reference mate-
rial or to cite them other than as ``work in progress.'' rial or to cite them other than as ``work in progress.''
To learn the current status of any Internet-Draft, please check the To learn the current status of any Internet-Draft, please check the
``1id-abstracts.txt'' listing contained in the Internet-Drafts Shadow ``1id-abstracts.txt'' listing contained in the Internet-Drafts Shadow
Directories on ds.internic.net (US East Coast), nic.nordu.net Directories on ds.internic.net (US East Coast), nic.nordu.net
(Europe), ftp.isi.edu (US West Coast), or munnari.oz.au (Pacific Rim). (Europe), ftp.isi.edu (US West Coast), or munnari.oz.au (Pacific Rim).
The distribution of this memo is unlimited. It is filed as <draft- The distribution of this memo is unlimited. It is filed as <draft-
ietf-radius-auth-servmib-00.txt>, and expires February 1, 1998. ietf-radius-auth-servmib-01.txt>, and expires August 1, 1998. Please
Please send comments to the authors. send comments to the authors.
2. Abstract 2. Abstract
This memo defines a set of extensions which instrument RADIUS authen- This memo defines a set of extensions which instrument RADIUS authen-
tication server functions. These extensions represent a portion of the tication server functions. These extensions represent a portion of the
Management Information Base (MIB) for use with network management pro- Management Information Base (MIB) for use with network management pro-
tocols in the Internet community. Using these extensions IP-based tocols in the Internet community. Using these extensions IP-based
management stations can manage RADIUS authentication servers. management stations can manage RADIUS authentication servers.
3. Introduction 3. Introduction
skipping to change at page 3, line 24 skipping to change at page 3, line 24
server. server.
6. Definitions 6. Definitions
RADIUS-AUTH-SERVER-MIB DEFINITIONS ::= BEGIN RADIUS-AUTH-SERVER-MIB DEFINITIONS ::= BEGIN
IMPORTS IMPORTS
MODULE-IDENTITY, OBJECT-TYPE, MODULE-IDENTITY, OBJECT-TYPE,
OBJECT-IDENTITY, experimental, OBJECT-IDENTITY, experimental,
Counter32, Gauge32, Integer32, Counter32, Gauge32, Integer32,
IpAddress, TimeTicks FROM SNMPv2-SMI IpAddress FROM SNMPv2-SMI
TEXTUAL-CONVENTION, RowStatus, TEXTUAL-CONVENTION, DisplayString FROM SNMPv2-TC
TruthValue, DisplayString FROM SNMPv2-TC
MODULE-COMPLIANCE, OBJECT-GROUP FROM SNMPv2-CONF; MODULE-COMPLIANCE, OBJECT-GROUP FROM SNMPv2-CONF;
radius OBJECT-IDENTITY
STATUS current
DESCRIPTION
"The OID assigned to RADIUS MIB work by the IANA."
::= { experimental 79 }
radiusAuthentication OBJECT-IDENTIFIER ::= {radius 1}
radiusAuthServMIB MODULE-IDENTITY radiusAuthServMIB MODULE-IDENTITY
LAST-UPDATED "9708211659Z" LAST-UPDATED "9802121659Z"
ORGANIZATION "IETF RADIUS Working Group." ORGANIZATION "IETF RADIUS Working Group."
CONTACT-INFO CONTACT-INFO
" Glen Zorn " Glen Zorn
Microsoft Microsoft
One Microsoft Way One Microsoft Way
Redmond, WA 98052 Redmond, WA 98052
US US
Phone: +1 425 703 1559 Phone: +1 425 703 1559
EMail: glennz@microsoft.com" EMail: glennz@microsoft.com"
DESCRIPTION DESCRIPTION
"The MIB module for entities implementing the server "The MIB module for entities implementing the server
side of the Remote Access Dialin User Service (RADIUS) side of the Remote Access Dialin User Service (RADIUS)
authentication protocol." authentication protocol."
::= { radiusAuthentication 1 } ::= { radiusAuthentication 1 }
radius OBJECT-IDENTITY
STATUS current
DESCRIPTION
"The OID assigned to RADIUS MIB work by the IANA."
::= { experimental 79 }
radiusAuthentication OBJECT IDENTIFIER ::= {radius 1}
radiusAuthServMIBObjects OBJECT IDENTIFIER ::= { radiusAuthServMIB 1 } radiusAuthServMIBObjects OBJECT IDENTIFIER ::= { radiusAuthServMIB 1 }
radiusAuthServ OBJECT IDENTIFIER ::= { radiusAuthServMIBObjects 1 }
radiusAuthServ OBJECT IDENTIFIER ::= { radiusAuthServMIBObjects 1 }
-- Textual conventions -- Textual conventions
RadiusTime ::= TEXTUAL-CONVENTION RadiusTime ::= TEXTUAL-CONVENTION
DISPLAY-HINT "4d" DISPLAY-HINT "4d"
STATUS current STATUS current
DESCRIPTION DESCRIPTION
"RadiusTime values are 32-bit unsigned integers which "RadiusTime values are 32-bit unsigned integers which
measure time in seconds." measure time in seconds."
SYNTAX Gauge32 SYNTAX Gauge32
skipping to change at page 5, line 16 skipping to change at page 5, line 14
server state. When set to reset(2), any persistent server state. When set to reset(2), any persistent
server state (such as a process) is reinitialized as if server state (such as a process) is reinitialized as if
the server had just been started. This value will the server had just been started. This value will
never be returned by a read operation. When read, one of never be returned by a read operation. When read, one of
the following values will be returned: the following values will be returned:
other(1) - server in some unknown state; other(1) - server in some unknown state;
initializing(3) - server (re)initializing; initializing(3) - server (re)initializing;
running(4) - server currently running." running(4) - server currently running."
::= {radiusAuthServ 4} ::= {radiusAuthServ 4}
radiusAuthServInvalidClientAddresses OBJECT-TYPE -- New Stats proposed by Dale E. Reed Jr (daler@iea-software.com)
radiusAuthServTotalAccessRequests OBJECT-TYPE
SYNTAX Counter32 SYNTAX Counter32
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS current STATUS current
DESCRIPTION DESCRIPTION
"The total number of RADIUS Access-Request packets "The total number of RADIUS Access-Request packets
received from unknown addresses since server start-up." received since server start-up."
::= {radiusAuthServ 5} ::= {radiusAuthServ 5}
radiusAuthServTotalInvalidRequests OBJECT-TYPE
SYNTAX Counter32
MAX-ACCESS read-only
STATUS current
DESCRIPTION
"The total number of RADIUS Access-Request packets
received from unknown addresses since server start-up."
::= { radiusAuthServ 6 }
radiusAuthServTotalDupAccessRequests OBJECT-TYPE
SYNTAX Counter32
MAX-ACCESS read-only
STATUS current
DESCRIPTION
"The total number of duplicate RADIUS Access-Request
packets received since server start-up."
::= { radiusAuthServ 7 }
radiusAuthServTotalAccessAccepts OBJECT-TYPE
SYNTAX Counter32
MAX-ACCESS read-only
STATUS current
DESCRIPTION
"The total number of RADIUS Access-Accept packets
sent since server start-up."
::= { radiusAuthServ 8 }
radiusAuthServTotalAccessRejects OBJECT-TYPE
SYNTAX Counter32
MAX-ACCESS read-only
STATUS current
DESCRIPTION
"The total number of RADIUS Access-Reject packets
sent since server start-up."
::= { radiusAuthServ 9 }
radiusAuthServTotalAccessChallenges OBJECT-TYPE
SYNTAX Counter32
MAX-ACCESS read-only
STATUS current
DESCRIPTION
"The total number of RADIUS Access-Challenge packets
sent since server start-up."
::= { radiusAuthServ 10 }
radiusAuthServTotalMalformedAccessRequests OBJECT-TYPE
SYNTAX Counter32
MAX-ACCESS read-only
STATUS current
DESCRIPTION
"The total number of malformed RADIUS Access-Request
packets received since server start-up. Bad authenticators
are not included as malformed Access-Requests."
::= { radiusAuthServ 11 }
radiusAuthServTotalBadAuthenticators OBJECT-TYPE
SYNTAX Counter32
MAX-ACCESS read-only
STATUS current
DESCRIPTION
"The total number of RADIUS Authentication-Request packets
which contained invalid Signature attributes received
since server start-up."
::= { radiusAuthServ 12 }
radiusAuthServTotalPacketsDropped OBJECT-TYPE
SYNTAX Counter32
MAX-ACCESS read-only
STATUS current
DESCRIPTION
"The total number of packets dropped with no reply sent."
::= { radiusAuthServ 13 }
radiusAuthServTotalUnknownType OBJECT-TYPE
SYNTAX Counter32
MAX-ACCESS read-only
STATUS current
DESCRIPTION
"The total number of RADIUS packets of unknown type which
were received since server start-up."
::= { radiusAuthServ 14 }
-- End of new
radiusAuthClientTable OBJECT-TYPE radiusAuthClientTable OBJECT-TYPE
SYNTAX SEQUENCE OF RadiusAuthClientEntry SYNTAX SEQUENCE OF RadiusAuthClientEntry
MAX-ACCESS not-accessible MAX-ACCESS not-accessible
STATUS current STATUS current
DESCRIPTION DESCRIPTION
"The (conceptual) table listing the RADIUS authentication "The (conceptual) table listing the RADIUS authentication
clients with which the server shares a secret." clients with which the server shares a secret."
::= { radiusAuthServ 6 } ::= { radiusAuthServ 15 }
radiusAuthClientEntry OBJECT-TYPE radiusAuthClientEntry OBJECT-TYPE
SYNTAX RadiusAuthClientEntry SYNTAX RadiusAuthClientEntry
MAX-ACCESS not-accessible MAX-ACCESS not-accessible
STATUS current STATUS current
DESCRIPTION DESCRIPTION
"An entry (conceptual row) representing a RADIUS "An entry (conceptual row) representing a RADIUS
authentication client with which the server shares a secret." authentication client with which the server shares a secret."
INDEX { radiusAuthClientIndex } INDEX { radiusAuthClientIndex }
::= { radiusAuthClientTable 1 } ::= { radiusAuthClientTable 1 }
skipping to change at page 5, line 54 skipping to change at page 7, line 31
RadiusAuthClientEntry ::= SEQUENCE { RadiusAuthClientEntry ::= SEQUENCE {
radiusAuthClientIndex Integer32, radiusAuthClientIndex Integer32,
radiusAuthClientAddress IpAddress, radiusAuthClientAddress IpAddress,
radiusAuthClientID DisplayString, radiusAuthClientID DisplayString,
radiusAuthServAccessRequests Counter32, radiusAuthServAccessRequests Counter32,
radiusAuthServDupAccessRequests Counter32, radiusAuthServDupAccessRequests Counter32,
radiusAuthServAccessAccepts Counter32, radiusAuthServAccessAccepts Counter32,
radiusAuthServAccessRejects Counter32, radiusAuthServAccessRejects Counter32,
radiusAuthServAccessChallenges Counter32, radiusAuthServAccessChallenges Counter32,
radiusAuthServMalformedAccessRequests Counter32, radiusAuthServMalformedAccessRequests Counter32,
radiusAuthServAuthenticationBadAuthenticators Counter32, radiusAuthServBadAuthenticators Counter32,
radiusAuthServPacketsDropped Counter32, radiusAuthServPacketsDropped Counter32,
radiusAuthServUnknownType Counter32 radiusAuthServUnknownType Counter32
} }
radiusAuthClientIndex OBJECT-TYPE radiusAuthClientIndex OBJECT-TYPE
SYNTAX Integer32 SYNTAX Integer32 (0..MAX)
MAX-ACCESS not-accessible MAX-ACCESS not-accessible
STATUS current STATUS current
DESCRIPTION DESCRIPTION
"The RADIUS authentication client referred to in this "A number uniquely identifying each RADIUS
table entry." authentication client with which this server
communicates."
::= { radiusAuthClientEntry 1 } ::= { radiusAuthClientEntry 1 }
radiusAuthClientAddress OBJECT-TYPE radiusAuthClientAddress OBJECT-TYPE
SYNTAX IpAddress SYNTAX IpAddress
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS current STATUS current
DESCRIPTION DESCRIPTION
"The NAS-IP-Address of the RADIUS authentication client "The NAS-IP-Address of the RADIUS authentication client
referred to in this table entry." referred to in this table entry."
::= { radiusAuthClientEntry 2 } ::= { radiusAuthClientEntry 2 }
radiusAuthClientID OBJECT-TYPE radiusAuthClientID OBJECT-TYPE
SYNTAX DisplayString SYNTAX DisplayString
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS current STATUS current
DESCRIPTION DESCRIPTION
"The NAS-Identifier of the RADIUS authentication client "The NAS-Identifier of the RADIUS authentication client
referred to in this table entry." referred to in this table entry. This is not necessarily
the same as sysName in MIB II."
::= { radiusAuthClientEntry 3 } ::= { radiusAuthClientEntry 3 }
-- Server Counters -- Server Counters
radiusAuthServAccessRequests OBJECT-TYPE radiusAuthServAccessRequests OBJECT-TYPE
SYNTAX Counter32 SYNTAX Counter32
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS current STATUS current
DESCRIPTION DESCRIPTION
"The total number of RADIUS Access-Request packets "The total number of RADIUS Access-Request packets
skipping to change at page 7, line 35 skipping to change at page 9, line 15
SYNTAX Counter32 SYNTAX Counter32
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS current STATUS current
DESCRIPTION DESCRIPTION
"The total number of malformed RADIUS Access-Request "The total number of malformed RADIUS Access-Request
packets received from this client since server start-up. packets received from this client since server start-up.
Bad authenticators are not included as Bad authenticators are not included as
malformed Access-Requests." malformed Access-Requests."
::= { radiusAuthClientEntry 9 } ::= { radiusAuthClientEntry 9 }
radiusAuthServAuthenticationBadAuthenticators OBJECT-TYPE radiusAuthServBadAuthenticators OBJECT-TYPE
SYNTAX Counter32 SYNTAX Counter32
MAX-ACCESS read-only MAX-ACCESS read-only
STATUS current STATUS current
DESCRIPTION DESCRIPTION
"The total number of RADIUS Authentication-Request packets "The total number of RADIUS Authentication-Request packets
which contained invalid Signature attributes received which contained invalid Signature attributes received
from this client since server start-up." from this client since server start-up."
::= { radiusAuthClientEntry 10 } ::= { radiusAuthClientEntry 10 }
radiusAuthServPacketsDropped OBJECT-TYPE radiusAuthServPacketsDropped OBJECT-TYPE
skipping to change at page 8, line 38 skipping to change at page 10, line 20
::= { radiusAuthServMIBCompliances 1 } ::= { radiusAuthServMIBCompliances 1 }
-- units of conformance -- units of conformance
radiusAuthServMIBGroup OBJECT-GROUP radiusAuthServMIBGroup OBJECT-GROUP
OBJECTS {radiusAuthServIdent, OBJECTS {radiusAuthServIdent,
radiusAuthServUpTime, radiusAuthServUpTime,
radiusAuthServResetTime, radiusAuthServResetTime,
radiusAuthServConfigReset, radiusAuthServConfigReset,
radiusAuthServInvalidClientAddresses, radiusAuthServTotalAccessRequests,
radiusAuthServTotalInvalidRequests,
radiusAuthServTotalDupAccessRequests,
radiusAuthServTotalAccessAccepts,
radiusAuthServTotalAccessRejects,
radiusAuthServTotalAccessChallenges,
radiusAuthServTotalMalformedAccessRequests,
radiusAuthServTotalBadAuthenticators,
radiusAuthServTotalPacketsDropped,
radiusAuthServTotalUnknownType,
radiusAuthClientAddress, radiusAuthClientAddress,
radiusAuthClientID, radiusAuthClientID,
radiusAuthServAccessRequests, radiusAuthServAccessRequests,
radiusAuthServDupAccessRequests, radiusAuthServDupAccessRequests,
radiusAuthServAccessAccepts, radiusAuthServAccessAccepts,
radiusAuthServAccessRejects, radiusAuthServAccessRejects,
radiusAuthServAccessChallenges, radiusAuthServAccessChallenges,
radiusAuthServMalformedAccessRequests, radiusAuthServMalformedAccessRequests,
radiusAuthServAuthenticationBadAuthenticators, radiusAuthServBadAuthenticators,
radiusAuthServPacketsDropped, radiusAuthServPacketsDropped,
radiusAuthServUnknownType radiusAuthServUnknownType
} }
STATUS current STATUS current
DESCRIPTION DESCRIPTION
"The collection of objects providing management of "The collection of objects providing management of
a RADIUS Authentication Server." a RADIUS Authentication Server."
::= { radiusAuthServMIBGroups 1 } ::= { radiusAuthServMIBGroups 1 }
END END
 End of changes. 20 change blocks. 
28 lines changed or deleted 126 lines changed or added

This html diff was produced by rfcdiff 1.34. The latest version is available from http://tools.ietf.org/tools/rfcdiff/