share/dictionary

   1 #
   2 # Version $Id$
   3 #
   4 #       DO NOT EDIT THE FILES IN THIS DIRECTORY
   5 #
   6 #       The files in this directory are maintained and updated by
   7 #       the FreeRADIUS project.  Newer releases of software may update
   8 #       or change these files.
   9 #
  10 #       Use the main dictionary file (usually /etc/raddb/dictionary)
  11 #       for local system attributes and $INCLUDEs.
  12 #
  13 #
  14 #
  15 #       This file contains dictionary translations for parsing
  16 #       requests and generating responses.  All transactions are
  17 #       composed of Attribute/Value Pairs.  The value of each attribute
  18 #       is specified as one of 4 data types.  Valid data types are:
  19 #
  20 #       string  - 0-253 octets
  21 #       ipaddr  - 4 octets in network byte order
  22 #       integer - 32 bit value in big endian order (high byte first)
  23 #       date    - 32 bit value in big endian order - seconds since
  24 #                                       00:00:00 GMT,  Jan.  1,  1970
  25 #       ifid    - 8 octets in network byte order
  26 #       ipv6addr   - 16 octets in network byte order
  27 #       ipv6prefix - 18 octets in network byte order
  28 #
  29 #       FreeRADIUS includes extended data types which are not defined
  30 #       in RFC 2865 or RFC 2866, or RFC 3162.  These data types are:
  31 #
  32 #       abinary - Ascend's binary filter format.
  33 #       octets  - raw octets, printed and input as hex strings.
  34 #                 e.g.: 0x123456789abcdef
  35 #
  36 #
  37 #       Enumerated values are stored in the user file with dictionary
  38 #       VALUE translations for easy administration.
  39 #
  40 #       Example:
  41 #
  42 #       ATTRIBUTE         VALUE
  43 #       ---------------   -----
  44 #       Framed-Protocol = PPP
  45 #       7               = 1     (integer encoding)
  46 #
  47
  48 #
  49 #       Include compatibility dictionary for older users file. Move this
  50 #       directive to the end of the file if you want to see the old names
  51 #       in the logfiles, INSTEAD OF the new names.
  52 #
  53 $INCLUDE dictionary.compat      # compability issues
  54 $INCLUDE dictionary.3com
  55 $INCLUDE dictionary.3gpp
  56 $INCLUDE dictionary.acc
  57 $INCLUDE dictionary.alcatel
  58 $INCLUDE dictionary.alteon
  59 $INCLUDE dictionary.ascend
  60 $INCLUDE dictionary.bay
  61 $INCLUDE dictionary.bintec
  62 $INCLUDE dictionary.cabletron
  63 $INCLUDE dictionary.cisco
  64 #
  65 #  This is the same as the altiga dictionary.
  66 #
  67 #$INCLUDE dictionary.cisco.vpn3000
  68 $INCLUDE dictionary.cisco.vpn5000
  69 $INCLUDE dictionary.cisco.bbsm
  70 $INCLUDE dictionary.colubris
  71 $INCLUDE dictionary.erx
  72 $INCLUDE dictionary.extreme
  73 $INCLUDE dictionary.freeradius
  74 $INCLUDE dictionary.gandalf
  75 $INCLUDE dictionary.itk
  76 $INCLUDE dictionary.juniper
  77 $INCLUDE dictionary.livingston
  78 $INCLUDE dictionary.microsoft
  79 $INCLUDE dictionary.nomadix
  80 $INCLUDE dictionary.quintum
  81 $INCLUDE dictionary.redback
  82 $INCLUDE dictionary.redcreek
  83 $INCLUDE dictionary.shasta
  84 $INCLUDE dictionary.shiva
  85 $INCLUDE dictionary.sonicwall
  86 $INCLUDE dictionary.springtide
  87 $INCLUDE dictionary.telebit
  88 $INCLUDE dictionary.tunnel
  89 $INCLUDE dictionary.usr
  90 $INCLUDE dictionary.versanet
  91 $INCLUDE dictionary.wispr
  92 $INCLUDE dictionary.xedia
  93
  94 #
  95 #       The following are the proper new names. Use these.
  96 #
  97 #       http://www.iana.org/assignments/radius-types
  98 #
  99 ATTRIBUTE       User-Name               1       string
 100 ATTRIBUTE       User-Password           2       string encrypt=1
 101 ATTRIBUTE       CHAP-Password           3       octets
 102 ATTRIBUTE       NAS-IP-Address          4       ipaddr
 103 ATTRIBUTE       NAS-Port                5       integer
 104 ATTRIBUTE       Service-Type            6       integer
 105 ATTRIBUTE       Framed-Protocol         7       integer
 106 ATTRIBUTE       Framed-IP-Address       8       ipaddr
 107 ATTRIBUTE       Framed-IP-Netmask       9       ipaddr
 108 ATTRIBUTE       Framed-Routing          10      integer
 109 ATTRIBUTE       Filter-Id               11      string
 110 ATTRIBUTE       Framed-MTU              12      integer
 111 ATTRIBUTE       Framed-Compression      13      integer
 112 ATTRIBUTE       Login-IP-Host           14      ipaddr
 113 ATTRIBUTE       Login-Service           15      integer
 114 ATTRIBUTE       Login-TCP-Port          16      integer
 115 ATTRIBUTE       Reply-Message           18      string
 116 ATTRIBUTE       Callback-Number         19      string
 117 ATTRIBUTE       Callback-Id             20      string
 118 ATTRIBUTE       Framed-Route            22      string
 119 ATTRIBUTE       Framed-IPX-Network      23      ipaddr
 120 ATTRIBUTE       State                   24      octets
 121 ATTRIBUTE       Class                   25      octets
 122 ATTRIBUTE       Vendor-Specific         26      octets
 123 ATTRIBUTE       Session-Timeout         27      integer
 124 ATTRIBUTE       Idle-Timeout            28      integer
 125 ATTRIBUTE       Termination-Action      29      integer
 126 ATTRIBUTE       Called-Station-Id       30      string
 127 ATTRIBUTE       Calling-Station-Id      31      string
 128 ATTRIBUTE       NAS-Identifier          32      string
 129 ATTRIBUTE       Proxy-State             33      octets
 130 ATTRIBUTE       Login-LAT-Service       34      string
 131 ATTRIBUTE       Login-LAT-Node          35      string
 132 ATTRIBUTE       Login-LAT-Group         36      octets
 133 ATTRIBUTE       Framed-AppleTalk-Link   37      integer
 134 ATTRIBUTE       Framed-AppleTalk-Network 38     integer
 135 ATTRIBUTE       Framed-AppleTalk-Zone   39      string
 136
 137 ATTRIBUTE       Acct-Status-Type        40      integer
 138 ATTRIBUTE       Acct-Delay-Time         41      integer
 139 ATTRIBUTE       Acct-Input-Octets       42      integer
 140 ATTRIBUTE       Acct-Output-Octets      43      integer
 141 ATTRIBUTE       Acct-Session-Id         44      string
 142 ATTRIBUTE       Acct-Authentic          45      integer
 143 ATTRIBUTE       Acct-Session-Time       46      integer
 144 ATTRIBUTE       Acct-Input-Packets      47      integer
 145 ATTRIBUTE       Acct-Output-Packets     48      integer
 146 ATTRIBUTE       Acct-Terminate-Cause    49      integer
 147 ATTRIBUTE       Acct-Multi-Session-Id   50      string
 148 ATTRIBUTE       Acct-Link-Count         51      integer
 149 ATTRIBUTE       Acct-Input-Gigawords    52      integer
 150 ATTRIBUTE       Acct-Output-Gigawords   53      integer
 151 ATTRIBUTE       Event-Timestamp         55      date
 152
 153 ATTRIBUTE       CHAP-Challenge          60      octets
 154 ATTRIBUTE       NAS-Port-Type           61      integer
 155 ATTRIBUTE       Port-Limit              62      integer
 156 ATTRIBUTE       Login-LAT-Port          63      integer
 157
 158 ATTRIBUTE       Acct-Tunnel-Connection  68      string
 159
 160 ATTRIBUTE       ARAP-Password           70      string
 161 ATTRIBUTE       ARAP-Features           71      string
 162 ATTRIBUTE       ARAP-Zone-Access        72      integer
 163 ATTRIBUTE       ARAP-Security           73      integer
 164 ATTRIBUTE       ARAP-Security-Data      74      string
 165 ATTRIBUTE       Password-Retry          75      integer
 166 ATTRIBUTE       Prompt                  76      integer
 167 ATTRIBUTE       Connect-Info            77      string
 168 ATTRIBUTE       Configuration-Token     78      string
 169 ATTRIBUTE       EAP-Message             79      octets
 170 ATTRIBUTE       Message-Authenticator   80      octets
 171 ATTRIBUTE       ARAP-Challenge-Response 84      string  # 10 octets
 172 ATTRIBUTE       Acct-Interim-Interval   85      integer
 173 ATTRIBUTE       NAS-Port-Id             87      string
 174 ATTRIBUTE       Framed-Pool             88      string
 175 ATTRIBUTE       NAS-IPv6-Address        95      ipv6addr
 176 ATTRIBUTE       Framed-Interface-Id     96      ifid
 177 ATTRIBUTE       Framed-IPv6-Prefix      97      octets # ipv6prefix
 178 ATTRIBUTE       Login-IPv6-Host         98      ipv6addr
 179 ATTRIBUTE       Framed-IPv6-Route       99      string
 180 ATTRIBUTE       Framed-IPv6-Pool        100     string
 181
 182 ATTRIBUTE       Digest-Response         206     string
 183 ATTRIBUTE       Digest-Attributes       207     octets  # stupid format
 184
 185 #
 186 #       Experimental Non Protocol Attributes used by FreeRADIUS
 187 #
 188
 189 #       These attributes CAN go in the reply item list.
 190 ATTRIBUTE       Fall-Through            500     integer
 191 ATTRIBUTE       Exec-Program            502     string
 192 ATTRIBUTE       Exec-Program-Wait       503     string
 193
 194 #       These attributes CANNOT go in the reply item list.
 195 ATTRIBUTE       User-Category           1029    string
 196 ATTRIBUTE       Group-Name              1030    string
 197 ATTRIBUTE       Huntgroup-Name          1031    string
 198 ATTRIBUTE       Simultaneous-Use        1034    integer
 199 ATTRIBUTE       Strip-User-Name         1035    integer
 200 ATTRIBUTE       Hint                    1040    string
 201 ATTRIBUTE       Pam-Auth                1041    string
 202 ATTRIBUTE       Login-Time              1042    string
 203 ATTRIBUTE       Stripped-User-Name      1043    string
 204 ATTRIBUTE       Current-Time            1044    string
 205 ATTRIBUTE       Realm                   1045    string
 206 ATTRIBUTE       No-Such-Attribute       1046    string
 207 ATTRIBUTE       Packet-Type             1047    integer
 208 ATTRIBUTE       Proxy-To-Realm          1048    string
 209 ATTRIBUTE       Replicate-To-Realm      1049    string
 210 ATTRIBUTE       Acct-Session-Start-Time 1050    date
 211 ATTRIBUTE       Acct-Unique-Session-Id  1051    string
 212 ATTRIBUTE       Client-IP-Address       1052    ipaddr
 213 ATTRIBUTE       Ldap-UserDn             1053    string
 214 ATTRIBUTE       NS-MTA-MD5-Password     1054    string
 215 ATTRIBUTE       SQL-User-Name           1055    string
 216 ATTRIBUTE       LM-Password             1057    octets
 217 ATTRIBUTE       NT-Password             1058    octets
 218 ATTRIBUTE       SMB-Account-CTRL        1059    integer
 219 ATTRIBUTE       SMB-Account-CTRL-TEXT   1061    string
 220 ATTRIBUTE       User-Profile            1062    string
 221 ATTRIBUTE       Digest-Realm            1063    string
 222 ATTRIBUTE       Digest-Nonce            1064    string
 223 ATTRIBUTE       Digest-Method           1065    string
 224 ATTRIBUTE       Digest-URI              1066    string
 225 ATTRIBUTE       Digest-QOP              1067    string
 226 ATTRIBUTE       Digest-Algorithm        1068    string
 227 ATTRIBUTE       Digest-Body-Digest      1069    string
 228 ATTRIBUTE       Digest-CNonce           1070    string
 229 ATTRIBUTE       Digest-Nonce-Count      1071    string
 230 ATTRIBUTE       Digest-User-Name        1072    string
 231 ATTRIBUTE       Pool-Name               1073    string
 232 ATTRIBUTE       Ldap-Group              1074    string
 233 ATTRIBUTE       Module-Success-Message  1075    string
 234 ATTRIBUTE       Module-Failure-Message  1076    string
 235 #               X99-Fast                1077    integer
 236 ATTRIBUTE       Rewrite-Rule            1078    string
 237 ATTRIBUTE       Sql-Group               1079    string
 238 ATTRIBUTE       Response-Packet-Type    1080    integer
 239
 240 #
 241 #       Non-Protocol Attributes
 242 #       These attributes are used internally by the server
 243 #
 244 ATTRIBUTE       Auth-Type               1000    integer
 245 ATTRIBUTE       Menu                    1001    string
 246 ATTRIBUTE       Termination-Menu        1002    string
 247 ATTRIBUTE       Prefix                  1003    string
 248 ATTRIBUTE       Suffix                  1004    string
 249 ATTRIBUTE       Group                   1005    string
 250 ATTRIBUTE       Crypt-Password          1006    string
 251 ATTRIBUTE       Connect-Rate            1007    integer
 252 ATTRIBUTE       Add-Prefix              1008    string
 253 ATTRIBUTE       Add-Suffix              1009    string
 254 ATTRIBUTE       Expiration              1010    date
 255 ATTRIBUTE       Autz-Type               1011    integer
 256 ATTRIBUTE       Acct-Type               1012    integer
 257 ATTRIBUTE       Session-Type            1013    integer
 258 ATTRIBUTE       Post-Auth-Type          1014    integer
 259 ATTRIBUTE       Pre-Proxy-Type          1015    integer
 260 ATTRIBUTE       Post-Proxy-Type         1016    integer
 261 ATTRIBUTE       Pre-Acct-Type           1017    integer
 262
 263 #
 264 #       This is the EAP type of authentication, which is set
 265 #       by the EAP module, for informational purposed only.
 266 #
 267 ATTRIBUTE       EAP-Type                1018    integer
 268 ATTRIBUTE       EAP-TLS-Require-Client-Cert     1019    integer
 269
 270 #
 271 #       Integer Translations
 272 #
 273
 274 #       User Types
 275
 276 VALUE           Service-Type            Login-User              1
 277 VALUE           Service-Type            Framed-User             2
 278 VALUE           Service-Type            Callback-Login-User     3
 279 VALUE           Service-Type            Callback-Framed-User    4
 280 VALUE           Service-Type            Outbound-User           5
 281 VALUE           Service-Type            Administrative-User     6
 282 VALUE           Service-Type            NAS-Prompt-User         7
 283 VALUE           Service-Type            Authenticate-Only       8
 284 VALUE           Service-Type            Callback-NAS-Prompt     9
 285 VALUE           Service-Type            Call-Check              10
 286 VALUE           Service-Type            Callback-Administrative 11
 287 VALUE           Service-Type            Voice                   12
 288 VALUE           Service-Type            Fax                     13
 289 VALUE           Service-Type            Modem-Relay             14
 290 VALUE           Service-Type            IAPP-Register           15
 291 VALUE           Service-Type            IAPP-AP-Check           16
 292
 293 #       Framed Protocols
 294
 295 VALUE           Framed-Protocol         PPP                     1
 296 VALUE           Framed-Protocol         SLIP                    2
 297 VALUE           Framed-Protocol         ARAP                    3
 298 VALUE           Framed-Protocol         Gandalf-SLML            4
 299 VALUE           Framed-Protocol         Xylogics-IPX-SLIP       5
 300 VALUE           Framed-Protocol         X.75-Synchronous        6
 301 VALUE           Framed-Protocol         GPRS-PDP-Context        7
 302
 303 #       Framed Routing Values
 304
 305 VALUE           Framed-Routing          None                    0
 306 VALUE           Framed-Routing          Broadcast               1
 307 VALUE           Framed-Routing          Listen                  2
 308 VALUE           Framed-Routing          Broadcast-Listen        3
 309
 310 #       Framed Compression Types
 311
 312 VALUE           Framed-Compression      None                    0
 313 VALUE           Framed-Compression      Van-Jacobson-TCP-IP     1
 314 VALUE           Framed-Compression      IPX-Header-Compression  2
 315 VALUE           Framed-Compression      Stac-LZS                3
 316
 317 #       Login Services
 318
 319 VALUE           Login-Service           Telnet                  0
 320 VALUE           Login-Service           Rlogin                  1
 321 VALUE           Login-Service           TCP-Clear               2
 322 VALUE           Login-Service           PortMaster              3
 323 VALUE           Login-Service           LAT                     4
 324 VALUE           Login-Service           X25-PAD                 5
 325 VALUE           Login-Service           X25-T3POS               6
 326 VALUE           Login-Service           TCP-Clear-Quiet         7
 327
 328 #       Login-TCP-Port          (see /etc/services for more examples)
 329
 330 VALUE           Login-TCP-Port          Telnet                  23
 331 VALUE           Login-TCP-Port          Rlogin                  513
 332 VALUE           Login-TCP-Port          Rsh                     514
 333
 334 #       Status Types
 335
 336 VALUE           Acct-Status-Type        Start                   1
 337 VALUE           Acct-Status-Type        Stop                    2
 338 VALUE           Acct-Status-Type        Interim-Update          3
 339 VALUE           Acct-Status-Type        Alive                   3
 340 VALUE           Acct-Status-Type        Accounting-On           7
 341 VALUE           Acct-Status-Type        Accounting-Off          8
 342 #       RFC 2867 Additional Status-Type Values
 343 VALUE           Acct-Status-Type        Tunnel-Start            9
 344 VALUE           Acct-Status-Type        Tunnel-Stop             10
 345 VALUE           Acct-Status-Type        Tunnel-Reject           11
 346 VALUE           Acct-Status-Type        Tunnel-Link-Start       12
 347 VALUE           Acct-Status-Type        Tunnel-Link-Stop        13
 348 VALUE           Acct-Status-Type        Tunnel-Link-Reject      14
 349 VALUE           Acct-Status-Type        Failed                  15
 350
 351 #       Authentication Types
 352
 353 VALUE           Acct-Authentic          RADIUS                  1
 354 VALUE           Acct-Authentic          Local                   2
 355 VALUE           Acct-Authentic          Remote                  3
 356 VALUE           Acct-Authentic          Diameter                4
 357
 358 #       Termination Options
 359
 360 VALUE           Termination-Action      Default                 0
 361 VALUE           Termination-Action      RADIUS-Request          1
 362
 363 #       NAS Port Types
 364
 365 VALUE           NAS-Port-Type           Async                   0
 366 VALUE           NAS-Port-Type           Sync                    1
 367 VALUE           NAS-Port-Type           ISDN                    2
 368 VALUE           NAS-Port-Type           ISDN-V120               3
 369 VALUE           NAS-Port-Type           ISDN-V110               4
 370 VALUE           NAS-Port-Type           Virtual                 5
 371 VALUE           NAS-Port-Type           PIAFS                   6
 372 VALUE           NAS-Port-Type           HDLC-Clear-Channel      7
 373 VALUE           NAS-Port-Type           X.25                    8
 374 VALUE           NAS-Port-Type           X.75                    9
 375 VALUE           NAS-Port-Type           G.3-Fax                 10
 376 VALUE           NAS-Port-Type           SDSL                    11
 377 VALUE           NAS-Port-Type           ADSL-CAP                12
 378 VALUE           NAS-Port-Type           ADSL-DMT                13
 379 VALUE           NAS-Port-Type           IDSL                    14
 380 VALUE           NAS-Port-Type           Ethernet                15
 381 VALUE           NAS-Port-Type           xDSL                    16
 382 VALUE           NAS-Port-Type           Cable                   17
 383 VALUE           NAS-Port-Type           Wireless-Other          18
 384 VALUE           NAS-Port-Type           Wireless-802.11         19
 385 VALUE           NAS-Port-Type           Token-Ring              20
 386 VALUE           NAS-Port-Type           FDDI                    21
 387 VALUE           NAS-Port-Type           Wireless-CDMA2000       22
 388 VALUE           NAS-Port-Type           Wireless-UMTS           23
 389 VALUE           NAS-Port-Type           Wireless-1X-EV          24
 390 VALUE           NAS-Port-Type           IAPP                    25
 391
 392 #       Acct Terminate Causes, available in 3.3.2 and later
 393
 394 VALUE           Acct-Terminate-Cause    User-Request            1
 395 VALUE           Acct-Terminate-Cause    Lost-Carrier            2
 396 VALUE           Acct-Terminate-Cause    Lost-Service            3
 397 VALUE           Acct-Terminate-Cause    Idle-Timeout            4
 398 VALUE           Acct-Terminate-Cause    Session-Timeout         5
 399 VALUE           Acct-Terminate-Cause    Admin-Reset             6
 400 VALUE           Acct-Terminate-Cause    Admin-Reboot            7
 401 VALUE           Acct-Terminate-Cause    Port-Error              8
 402 VALUE           Acct-Terminate-Cause    NAS-Error               9
 403 VALUE           Acct-Terminate-Cause    NAS-Request             10
 404 VALUE           Acct-Terminate-Cause    NAS-Reboot              11
 405 VALUE           Acct-Terminate-Cause    Port-Unneeded           12
 406 VALUE           Acct-Terminate-Cause    Port-Preempted          13
 407 VALUE           Acct-Terminate-Cause    Port-Suspended          14
 408 VALUE           Acct-Terminate-Cause    Service-Unavailable     15
 409 VALUE           Acct-Terminate-Cause    Callback                16
 410 VALUE           Acct-Terminate-Cause    User-Error              17
 411 VALUE           Acct-Terminate-Cause    Host-Request            18
 412 VALUE           Acct-Terminate-Cause    Supplicant-Restart      19
 413 VALUE           Acct-Terminate-Cause    Reauthentication-Failure 20
 414 VALUE           Acct-Terminate-Cause    Port-Reinit             21
 415 VALUE           Acct-Terminate-Cause    Port-Disabled           22
 416
 417 #VALUE          Tunnel-Type             L2TP                    3
 418 #VALUE          Tunnel-Medium-Type      IP                      1
 419
 420 VALUE           Prompt                  No-Echo                 0
 421 VALUE           Prompt                  Echo                    1
 422
 423 #
 424 #       Non-Protocol Integer Translations
 425 #
 426
 427 VALUE           Auth-Type               Local                   0
 428 VALUE           Auth-Type               System                  1
 429 VALUE           Auth-Type               SecurID                 2
 430 VALUE           Auth-Type               Crypt-Local             3
 431 VALUE           Auth-Type               Reject                  4
 432 VALUE           Auth-Type               ActivCard               5
 433 VALUE           Auth-Type               EAP                     6
 434 VALUE           Auth-Type               ARAP                    7
 435
 436 #
 437 #       FreeRADIUS extensions (most originally from Cistron)
 438 #
 439 VALUE           Auth-Type               Ldap                    252
 440 VALUE           Auth-Type               Pam                     253
 441 VALUE           Auth-Type               Accept                  254
 442
 443 VALUE           Auth-Type               PAP                     1024
 444 VALUE           Auth-Type               CHAP                    1025
 445 VALUE           Auth-Type               LDAP                    1026
 446 VALUE           Auth-Type               PAM                     1027
 447 VALUE           Auth-Type               MS-CHAP                 1028
 448 VALUE           Auth-Type               Kerberos                1029
 449 VALUE           Auth-Type               CRAM                    1030
 450 VALUE           Auth-Type               NS-MTA-MD5              1031
 451 VALUE           Auth-Type               CRAM                    1032
 452 VALUE           Auth-Type               SMB                     1033
 453
 454 #
 455 #       Authorization type, too.
 456 #
 457 VALUE           Autz-Type               Local                   0
 458
 459 #
 460 #       And accounting
 461 #
 462 VALUE           Acct-Type               Local                   0
 463
 464 #
 465 #       And Session handling
 466 #
 467 VALUE           Session-Type            Local                   0
 468
 469 #
 470 #       And Post-Auth
 471 VALUE           Post-Auth-Type          Local                   0
 472
 473 #
 474 #       Experimental Non-Protocol Integer Translations for FreeRADIUS
 475 #
 476 VALUE           Fall-Through            No                      0
 477 VALUE           Fall-Through            Yes                     1
 478
 479 VALUE           Packet-Type     Access-Request                  1
 480 VALUE           Packet-Type     Access-Accept                   2
 481 VALUE           Packet-Type     Access-Reject                   3
 482 VALUE           Packet-Type     Accounting-Request              4
 483 VALUE           Packet-Type     Accounting-Response             5
 484 VALUE           Packet-Type     Accounting-Status               6
 485 VALUE           Packet-Type     Password-Request                7
 486 VALUE           Packet-Type     Password-Accept                 8
 487 VALUE           Packet-Type     Password-Reject                 9
 488 VALUE           Packet-Type     Accounting-Message              10
 489 VALUE           Packet-Type     Access-Challenge                11
 490 VALUE           Packet-Type     Status-Server                   12
 491 VALUE           Packet-Type     Status-Client                   13
 492
 493 #
 494 #       The following packet types are described in RFC 2882,
 495 #       but they are NOT part of the RADIUS standard.  Instead,
 496 #       they are informational about vendor-specific extensions
 497 #       to the RADIUS standard.
 498 #
 499 VALUE           Packet-Type     Resource-Free-Request           21
 500 VALUE           Packet-Type     Resource-Free-Response          22
 501 VALUE           Packet-Type     Resource-Query-Request          23
 502 VALUE           Packet-Type     Resource-Query-Response         24
 503 VALUE           Packet-Type     Alternate-Resource-Reclaim-Request 25
 504 VALUE           Packet-Type     NAS-Reboot-Request              26
 505 VALUE           Packet-Type     NAS-Reboot-Response             27
 506 VALUE           Packet-Type     Next-Passcode                   29
 507 VALUE           Packet-Type     New-Pin                         30
 508 VALUE           Packet-Type     Terminate-Session               31
 509 VALUE           Packet-Type     Password-Expired                32
 510 VALUE           Packet-Type     Event-Request                   33
 511 VALUE           Packet-Type     Event-Response                  34
 512 VALUE           Packet-Type     Disconnect-Request              40
 513 VALUE           Packet-Type     Disconnect-ACK                  41
 514 VALUE           Packet-Type     Disconnect-NAK                  42
 515 VALUE           Packet-Type     CoF-Request                     43
 516 VALUE           Packet-Type     CoF-ACK                         44
 517 VALUE           Packet-Type     CoF-NAK                         45
 518 VALUE           Packet-Type     IP-Address-Allocate             50
 519 VALUE           Packet-Type     IP-Address-Release              51
 520
 521 VALUE           Response-Packet-Type    Access-Request                  1
 522 VALUE           Response-Packet-Type    Access-Accept                   2
 523 VALUE           Response-Packet-Type    Access-Reject                   3
 524 VALUE           Response-Packet-Type    Accounting-Request              4
 525 VALUE           Response-Packet-Type    Accounting-Response             5
 526 VALUE           Response-Packet-Type    Accounting-Status               6
 527 VALUE           Response-Packet-Type    Password-Request                7
 528 VALUE           Response-Packet-Type    Password-Accept                 8
 529 VALUE           Response-Packet-Type    Password-Reject                 9
 530 VALUE           Response-Packet-Type    Accounting-Message              10
 531 VALUE           Response-Packet-Type    Access-Challenge                11
 532 VALUE           Response-Packet-Type    Status-Server                   12
 533 VALUE           Response-Packet-Type    Status-Client                   13
 534
 535 #
 536 #       EAP Sub-types, inside of Request and Response packets
 537 #
 538 #       http://www.iana.org/assignments/ppp-numbers
 539 #               "PPP EAP REQUEST/RESPONSE TYPES"
 540 #
 541 #
 542 #       See dictionary.microsoft, MS-Acct-EAP-Type for similar definitions
 543 #
 544 VALUE           EAP-Type        None                    0
 545 VALUE           EAP-Type        Identity                1
 546 VALUE           EAP-Type        Notification            2
 547 VALUE           EAP-Type        NAK                     3
 548 VALUE           EAP-Type        MD5-Challenge           4
 549 VALUE           EAP-Type        One-Time-Password       5
 550 VALUE           EAP-Type        Generic-Token-Card      6
 551 VALUE           EAP-Type        RSA-Public-Key          9
 552 VALUE           EAP-Type        DSS-Unilateral          10
 553 VALUE           EAP-Type        KEA                     11
 554 VALUE           EAP-Type        KEA-Validate            12
 555 VALUE           EAP-Type        KEA                     11
 556 VALUE           EAP-Type        EAP-TLS                 13
 557 VALUE           EAP-Type        Defender-Token          14
 558 VALUE           EAP-Type        RSA-SecurID-EAP         15
 559 VALUE           EAP-Type        Arcot-Systems-EAP       16
 560 VALUE           EAP-Type        Cisco-LEAP              17
 561 VALUE           EAP-Type        Nokia-IP-Smart-Card     18
 562 VALUE           EAP-Type        SRP-SHA1-Part-1         19
 563 VALUE           EAP-Type        SRP-SHA1-Part-2         20
 564 VALUE           EAP-Type        EAP-TTLS                21
 565 VALUE           EAP-Type        Remote-Access-Service   22
 566 VALUE           EAP-Type        UMTS                    23
 567 VALUE           EAP-Type        EAP-3Com-Wireless       24
 568 VALUE           EAP-Type        PEAP                    25
 569 VALUE           EAP-Type        MS-EAP-Authentication   26
 570 VALUE           EAP-Type        MAKE                    27
 571 VALUE           EAP-Type        CRYPTOCard              28
 572 VALUE           EAP-Type        EAP-MSCHAP-V2           29
 573 VALUE           EAP-Type        DynamID                 30
 574 VALUE           EAP-Type        Rob-EAP                 31
 575 VALUE           EAP-Type        SecurID-EAP             32
 576 VALUE           EAP-Type        MS-Authentication-TLV   33
 577 VALUE           EAP-Type        SentriNET               34
 578 VALUE           EAP-Type        EAP-Actiontec-Wireless  35
 579 VALUE           EAP-Type        Cogent-Biomentric-EAP   36
 580 VALUE           EAP-Type        AirFortress-EAP         37
 581 VALUE           EAP-Type        EAP-HTTP-Digest         38
 582 VALUE           EAP-Type        SecuriSuite-EAP         39
 583 VALUE           EAP-Type        DeviceConnect-EAP       40
 584 VALUE           EAP-Type        EAP-SPEKE               41
 585 VALUE           EAP-Type        EAP-MOBAC               42
 586
 587 #
 588 #       These are duplicate values, to get around the problem of
 589 #       having two MS-CHAPv2 EAP types.
 590 #
 591 VALUE           EAP-Type        Microsoft-MS-CHAPv2     26
 592 VALUE           EAP-Type        Cisco-MS-CHAPv2         29
 593
 594 #
 595 #       And this is what most people mean by MS-CHAPv2
 596 #
 597 VALUE           EAP-Type        MS-CHAP-V2              26
 598
 599
 600 #
 601 #       This says TLS, but it's only valid for TTLS & PEAP.
 602 #       EAP-TLS *always* requires a client certificate.
 603 #
 604 VALUE   EAP-TLS-Require-Client-Cert No  0
 605 VALUE   EAP-TLS-Require-Client-Cert Yes 1