1 RADIUS-AUTH-SERVER-MIB DEFINITIONS ::= BEGIN
4 MODULE-IDENTITY, OBJECT-TYPE, OBJECT-IDENTITY,
6 IpAddress, TimeTicks, mib-2 FROM SNMPv2-SMI
7 SnmpAdminString FROM SNMP-FRAMEWORK-MIB
8 MODULE-COMPLIANCE, OBJECT-GROUP FROM SNMPv2-CONF;
10 radiusAuthServMIB MODULE-IDENTITY
11 LAST-UPDATED "9906110000Z"
12 ORGANIZATION "IETF RADIUS Working Group."
20 Phone: +1 425 936 6605
21 EMail: bernarda@microsoft.com"
23 "The MIB module for entities implementing the server
24 side of the Remote Access Dialin User Service (RADIUS)
25 authentication protocol."
26 REVISION "9906110000Z" -- 11 Jun 1999
27 DESCRIPTION "Initial version as published in RFC 2619"
28 ::= { radiusAuthentication 1 }
30 radiusMIB OBJECT-IDENTITY
33 "The OID assigned to RADIUS MIB work by the IANA."
36 radiusAuthentication OBJECT IDENTIFIER ::= {radiusMIB 1}
38 radiusAuthServMIBObjects OBJECT IDENTIFIER ::=
39 { radiusAuthServMIB 1 }
41 radiusAuthServ OBJECT IDENTIFIER ::= { radiusAuthServMIBObjects 1 }
43 radiusAuthServIdent OBJECT-TYPE
44 SYNTAX SnmpAdminString
48 "The implementation identification string for the
49 RADIUS authentication server software in use on the
50 system, for example; `FNS-2.1'"
51 ::= {radiusAuthServ 1}
53 radiusAuthServUpTime OBJECT-TYPE
58 "If the server has a persistent state (e.g., a process),
59 this value will be the time elapsed (in hundredths of a
60 seco) since the server process was started.
61 For software without persistent state, this value will
63 ::= {radiusAuthServ 2}
65 radiusAuthServResetTime OBJECT-TYPE
70 "If the server has a persistent state (e.g., a process)
71 and supports a `reset' operation (e.g., can be told to
72 re-read configuration files), this value will be the
73 time elapsed (in hundredths of a second) since the
74 server was `reset.' For software that does not
75 have persistence or does not support a `reset' operation,
76 this value will be zero."
77 ::= {radiusAuthServ 3}
79 radiusAuthServConfigReset OBJECT-TYPE
80 SYNTAX INTEGER { other(1),
87 "Status/action object to reinitialize any persistent
88 server state. When set to reset(2), any persistent
89 server state (such as a process) is reinitialized as if
90 the server had just been started. This value will
91 never be returned by a read operation. When read, one of
92 the following values will be returned:
93 other(1) - server in some unknown state;
94 initializing(3) - server (re)initializing;
95 running(4) - server currently running."
96 ::= {radiusAuthServ 4}
98 -- New Stats proposed by Dale E. Reed Jr (daler@iea-software.com)
100 radiusAuthServTotalAccessRequests OBJECT-TYPE
105 "The number of packets received on the
106 authentication port."
107 ::= { radiusAuthServ 5}
109 radiusAuthServTotalInvalidRequests OBJECT-TYPE
114 "The number of RADIUS Access-Request packets
115 received from unknown addresses."
116 ::= { radiusAuthServ 6 }
118 radiusAuthServTotalDupAccessRequests OBJECT-TYPE
123 "The number of duplicate RADIUS Access-Request
125 ::= { radiusAuthServ 7 }
127 radiusAuthServTotalAccessAccepts OBJECT-TYPE
132 "The number of RADIUS Access-Accept packets sent."
133 ::= { radiusAuthServ 8 }
135 radiusAuthServTotalAccessRejects OBJECT-TYPE
140 "The number of RADIUS Access-Reject packets sent."
141 ::= { radiusAuthServ 9 }
143 radiusAuthServTotalAccessChallenges OBJECT-TYPE
148 "The number of RADIUS Access-Challenge packets sent."
149 ::= { radiusAuthServ 10 }
151 radiusAuthServTotalMalformedAccessRequests OBJECT-TYPE
156 "The number of malformed RADIUS Access-Request
157 packets received. Bad authenticators
158 and unknown types are not included as
159 malformed Access-Requests."
160 ::= { radiusAuthServ 11 }
162 radiusAuthServTotalBadAuthenticators OBJECT-TYPE
167 "The number of RADIUS Authentication-Request packets
168 which contained invalid Signature attributes received."
169 ::= { radiusAuthServ 12 }
171 radiusAuthServTotalPacketsDropped OBJECT-TYPE
176 "The number of incoming packets
177 silently discarded for some reason other
178 than malformed, bad authenticators or
180 ::= { radiusAuthServ 13 }
182 radiusAuthServTotalUnknownTypes OBJECT-TYPE
187 "The number of RADIUS packets of unknown type which
189 ::= { radiusAuthServ 14 }
193 radiusAuthClientTable OBJECT-TYPE
194 SYNTAX SEQUENCE OF RadiusAuthClientEntry
195 MAX-ACCESS not-accessible
198 "The (conceptual) table listing the RADIUS authentication
199 clients with which the server shares a secret."
200 ::= { radiusAuthServ 15 }
202 radiusAuthClientEntry OBJECT-TYPE
203 SYNTAX RadiusAuthClientEntry
204 MAX-ACCESS not-accessible
207 "An entry (conceptual row) representing a RADIUS
208 authentication client with which the server shares a
210 INDEX { radiusAuthClientIndex }
211 ::= { radiusAuthClientTable 1 }
213 RadiusAuthClientEntry ::= SEQUENCE {
214 radiusAuthClientIndex Integer32,
215 radiusAuthClientAddress IpAddress,
216 radiusAuthClientID SnmpAdminString,
217 radiusAuthServAccessRequests Counter32,
218 radiusAuthServDupAccessRequests Counter32,
219 radiusAuthServAccessAccepts Counter32,
220 radiusAuthServAccessRejects Counter32,
221 radiusAuthServAccessChallenges Counter32,
222 radiusAuthServMalformedAccessRequests Counter32,
223 radiusAuthServBadAuthenticators Counter32,
224 radiusAuthServPacketsDropped Counter32,
225 radiusAuthServUnknownTypes Counter32
228 radiusAuthClientIndex OBJECT-TYPE
229 SYNTAX Integer32 (1..2147483647)
230 MAX-ACCESS not-accessible
233 "A number uniquely identifying each RADIUS
234 authentication client with which this server
236 ::= { radiusAuthClientEntry 1 }
238 radiusAuthClientAddress OBJECT-TYPE
243 "The NAS-IP-Address of the RADIUS authentication client
244 referred to in this table entry."
245 ::= { radiusAuthClientEntry 2 }
247 radiusAuthClientID OBJECT-TYPE
248 SYNTAX SnmpAdminString
252 "The NAS-Identifier of the RADIUS authentication client
253 referred to in this table entry. This is not necessarily
254 the same as sysName in MIB II."
255 ::= { radiusAuthClientEntry 3 }
260 -- Responses = AccessAccepts + AccessRejects + AccessChallenges
262 -- Requests - DupRequests - BadAuthenticators - MalformedRequests -
263 -- UnknownTypes - PacketsDropped - Responses = Pending
265 -- Requests - DupRequests - BadAuthenticators - MalformedRequests -
266 -- UnknownTypes - PacketsDropped = entries logged
268 radiusAuthServAccessRequests OBJECT-TYPE
273 "The number of packets received on the authentication
274 port from this client."
275 ::= { radiusAuthClientEntry 4 }
277 radiusAuthServDupAccessRequests OBJECT-TYPE
282 "The number of duplicate RADIUS Access-Request
283 packets received from this client."
284 ::= { radiusAuthClientEntry 5 }
286 radiusAuthServAccessAccepts OBJECT-TYPE
291 "The number of RADIUS Access-Accept packets
292 sent to this client."
293 ::= { radiusAuthClientEntry 6 }
295 radiusAuthServAccessRejects OBJECT-TYPE
300 "The number of RADIUS Access-Reject packets
301 sent to this client."
302 ::= { radiusAuthClientEntry 7 }
304 radiusAuthServAccessChallenges OBJECT-TYPE
309 "The number of RADIUS Access-Challenge packets
310 sent to this client."
311 ::= { radiusAuthClientEntry 8 }
313 radiusAuthServMalformedAccessRequests OBJECT-TYPE
318 "The number of malformed RADIUS Access-Request
319 packets received from this client.
320 Bad authenticators and unknown types are not included as
321 malformed Access-Requests."
322 ::= { radiusAuthClientEntry 9 }
324 radiusAuthServBadAuthenticators OBJECT-TYPE
329 "The number of RADIUS Authentication-Request packets
330 which contained invalid Signature attributes received
332 ::= { radiusAuthClientEntry 10 }
334 radiusAuthServPacketsDropped OBJECT-TYPE
339 "The number of incoming packets from this
340 client silently discarded for some reason other
341 than malformed, bad authenticators or
343 ::= { radiusAuthClientEntry 11 }
345 radiusAuthServUnknownTypes OBJECT-TYPE
350 "The number of RADIUS packets of unknown type which
351 were received from this client."
352 ::= { radiusAuthClientEntry 12 }
354 -- conformance information
356 radiusAuthServMIBConformance
357 OBJECT IDENTIFIER ::= { radiusAuthServMIB 2 }
358 radiusAuthServMIBCompliances
359 OBJECT IDENTIFIER ::= { radiusAuthServMIBConformance 1 }
360 radiusAuthServMIBGroups
361 OBJECT IDENTIFIER ::= { radiusAuthServMIBConformance 2 }
364 -- compliance statements
366 radiusAuthServMIBCompliance MODULE-COMPLIANCE
369 "The compliance statement for authentication servers
370 implementing the RADIUS Authentication Server MIB."
371 MODULE -- this module
372 MANDATORY-GROUPS { radiusAuthServMIBGroup }
374 OBJECT radiusAuthServConfigReset
375 WRITE-SYNTAX INTEGER { reset(2) }
376 DESCRIPTION "The only SETable value is 'reset' (2)."
378 ::= { radiusAuthServMIBCompliances 1 }
380 -- units of conformance
382 radiusAuthServMIBGroup OBJECT-GROUP
383 OBJECTS {radiusAuthServIdent,
384 radiusAuthServUpTime,
385 radiusAuthServResetTime,
386 radiusAuthServConfigReset,
387 radiusAuthServTotalAccessRequests,
388 radiusAuthServTotalInvalidRequests,
389 radiusAuthServTotalDupAccessRequests,
390 radiusAuthServTotalAccessAccepts,
391 radiusAuthServTotalAccessRejects,
392 radiusAuthServTotalAccessChallenges,
393 radiusAuthServTotalMalformedAccessRequests,
394 radiusAuthServTotalBadAuthenticators,
395 radiusAuthServTotalPacketsDropped,
396 radiusAuthServTotalUnknownTypes,
397 radiusAuthClientAddress,
399 radiusAuthServAccessRequests,
400 radiusAuthServDupAccessRequests,
401 radiusAuthServAccessAccepts,
402 radiusAuthServAccessRejects,
403 radiusAuthServAccessChallenges,
404 radiusAuthServMalformedAccessRequests,
405 radiusAuthServBadAuthenticators,
406 radiusAuthServPacketsDropped,
407 radiusAuthServUnknownTypes
411 "The collection of objects providing management of
412 a RADIUS Authentication Server."
413 ::= { radiusAuthServMIBGroups 1 }