2 * radius.h Constants of the radius protocol.
9 PW_TYPE_INVALID = 0, //!< Invalid (uninitialised) attribute type.
10 PW_TYPE_STRING, //!< String of printable characters.
11 PW_TYPE_INTEGER, //!< 32 Bit unsigned integer.
12 PW_TYPE_IPV4_ADDR, //!< 32 Bit IPv4 Address.
13 PW_TYPE_DATE, //!< 32 Bit Unix timestamp.
14 PW_TYPE_ABINARY, //!< Ascend binary format a packed data structure.
15 PW_TYPE_OCTETS, //!< Raw octets.
16 PW_TYPE_IFID, //!< Interface ID.
17 PW_TYPE_IPV6_ADDR, //!< 128 Bit IPv6 Address.
18 PW_TYPE_IPV6_PREFIX, //!< IPv6 Prefix.
19 PW_TYPE_BYTE, //!< 8 Bit unsigned integer.
20 PW_TYPE_SHORT, //!< 16 Bit unsigned integer.
21 PW_TYPE_ETHERNET, //!< 48 Bit Mac-Address.
22 PW_TYPE_SIGNED, //!< 32 Bit signed integer.
23 PW_TYPE_IP_ADDR, //!< WiMAX IPv4 or IPv6 address depending on length.
24 PW_TYPE_TLV, //!< Contains nested attributes.
25 PW_TYPE_EXTENDED, //!< Extended attribute space attribute.
26 PW_TYPE_LONG_EXTENDED, //!< Long extended attribute space attribute.
27 PW_TYPE_EVS, //!< Extended attribute, vendor specific.
28 PW_TYPE_INTEGER64, //!< 64 Bit unsigned integer.
29 PW_TYPE_IPV4_PREFIX, //!< IPv4 Prefix.
30 PW_TYPE_VSA, //!< Vendor-Specific, for RADIUS attribute 26.
31 PW_TYPE_TIMEVAL, //!< Time value (struct timeval), only for config items.
32 PW_TYPE_BOOLEAN, //!< A truth value.
33 PW_TYPE_IP_PREFIX, //!< WiMAX IPv4 or IPv6 address prefix depending on length.
34 PW_TYPE_MAX //!< Number of defined data types.
38 PW_CODE_UNDEFINED = 0, //!< Packet code has not been set
39 PW_CODE_AUTHENTICATION_REQUEST = 1, //!< RFC2865 - Access-Request
40 PW_CODE_AUTHENTICATION_ACK = 2, //!< RFC2865 - Access-Accept
41 PW_CODE_AUTHENTICATION_REJECT = 3, //!< RFC2865 - Access-Reject
42 PW_CODE_ACCOUNTING_REQUEST = 4, //!< RFC2866 - Accounting-Request
43 PW_CODE_ACCOUNTING_RESPONSE = 5, //!< RFC2866 - Accounting-Response
44 PW_CODE_ACCOUNTING_STATUS = 6, //!< RFC3575 - Reserved
45 PW_CODE_PASSWORD_REQUEST = 7, //!< RFC3575 - Reserved
46 PW_CODE_PASSWORD_ACK = 8, //!< RFC3575 - Reserved
47 PW_CODE_PASSWORD_REJECT = 9, //!< RFC3575 - Reserved
48 PW_CODE_ACCOUNTING_MESSAGE = 10, //!< RFC3575 - Reserved
49 PW_CODE_ACCESS_CHALLENGE = 11, //!< RFC2865 - Access-Challenge
50 PW_CODE_STATUS_SERVER = 12, //!< RFC2865/RFC5997 - Status Server (request)
51 PW_CODE_STATUS_CLIENT = 13, //!< RFC2865/RFC5997 - Status Server (response)
52 PW_CODE_DISCONNECT_REQUEST = 40, //!< RFC3575/RFC5176 - Disconnect-Request
53 PW_CODE_DISCONNECT_ACK = 41, //!< RFC3575/RFC5176 - Disconnect-Ack (positive)
54 PW_CODE_DISCONNECT_NAK = 42, //!< RFC3575/RFC5176 - Disconnect-Nak (not willing to perform)
55 PW_CODE_COA_REQUEST = 43, //!< RFC3575/RFC5176 - CoA-Request
56 PW_CODE_COA_ACK = 44, //!< RFC3575/RFC5176 - CoA-Ack (positive)
57 PW_CODE_COA_NAK = 45, //!< RFC3575/RFC5176 - CoA-Nak (not willing to perform)
58 PW_CODE_MAX = 255, //!< Maximum possible code
61 #define PW_AUTH_UDP_PORT 1812
62 #define PW_ACCT_UDP_PORT 1813
63 #define PW_POD_UDP_PORT 1700
64 #define PW_RADIUS_TLS_PORT 2083
65 #define PW_COA_UDP_PORT 3799
67 #define PW_USER_NAME 1
68 #define PW_USER_PASSWORD 2
70 #define PW_CHAP_PASSWORD 3
71 #define PW_NAS_IP_ADDRESS 4
73 #define PW_SERVICE_TYPE 6
74 #define PW_FRAMED_PROTOCOL 7
75 #define PW_FRAMED_IP_ADDRESS 8
76 #define PW_FRAMED_IP_NETMASK 9
77 #define PW_FRAMED_ROUTING 10
78 #define PW_FILTER_ID 11
79 #define PW_FRAMED_MTU 12
80 #define PW_FRAMED_COMPRESSION 13
81 #define PW_LOGIN_IP_HOST 14
82 #define PW_LOGIN_SERVICE 15
83 #define PW_LOGIN_TCP_PORT 16
84 #define PW_OLD_PASSWORD 17
85 #define PW_REPLY_MESSAGE 18
86 #define PW_CALLBACK_NUMBER 19
87 #define PW_CALLBACK_ID 20
90 * Deprecated, and no longer used.
92 #define PW_EXPIRATION 21
94 #define PW_FRAMED_ROUTE 22
95 #define PW_FRAMED_IPXNET 23
98 #define PW_VENDOR_SPECIFIC 26
99 #define PW_SESSION_TIMEOUT 27
100 #define PW_IDLE_TIMEOUT 28
101 #define PW_CALLED_STATION_ID 30
102 #define PW_CALLING_STATION_ID 31
103 #define PW_NAS_IDENTIFIER 32
104 #define PW_PROXY_STATE 33
106 #define PW_ACCT_STATUS_TYPE 40
107 #define PW_ACCT_DELAY_TIME 41
108 #define PW_ACCT_INPUT_OCTETS 42
109 #define PW_ACCT_OUTPUT_OCTETS 43
110 #define PW_ACCT_SESSION_ID 44
111 #define PW_ACCT_AUTHENTIC 45
112 #define PW_ACCT_SESSION_TIME 46
113 #define PW_ACCT_INPUT_PACKETS 47
114 #define PW_ACCT_OUTPUT_PACKETS 48
115 #define PW_ACCT_TERMINATE_CAUSE 49
117 #define PW_EVENT_TIMESTAMP 55
119 #define PW_CHAP_CHALLENGE 60
120 #define PW_NAS_PORT_TYPE 61
121 #define PW_PORT_LIMIT 62
123 #define PW_ARAP_PASSWORD 70
124 #define PW_ARAP_FEATURES 71
125 #define PW_ARAP_ZONE_ACCESS 72
126 #define PW_ARAP_SECURITY 73
127 #define PW_ARAP_SECURITY_DATA 74
128 #define PW_PASSWORD_RETRY 75
130 #define PW_CONNECT_INFO 77
131 #define PW_CONFIGURATION_TOKEN 78
132 #define PW_EAP_MESSAGE 79
133 #define PW_MESSAGE_AUTHENTICATOR 80
135 #define PW_ARAP_CHALLENGE_RESPONSE 84
136 #define PW_NAS_PORT_ID_STRING 87
137 #define PW_FRAMED_POOL 88
138 #define PW_CHARGEABLE_USER_IDENTITY 89
139 #define PW_NAS_IPV6_ADDRESS 95
140 #define PW_OPERATOR_NAME 126
142 #define PW_EXTENDED_ATTRIBUTE 192
144 #define PW_DIGEST_RESPONSE 206
145 #define PW_DIGEST_ATTRIBUTES 207
147 #define PW_FALL_THROUGH 500
148 #define PW_RELAX_FILTER 501
149 #define PW_EXEC_PROGRAM 502
150 #define PW_EXEC_PROGRAM_WAIT 503
152 #define PW_AUTH_TYPE 1000
153 #define PW_PREFIX 1003
154 #define PW_SUFFIX 1004
155 #define PW_GROUP 1005
156 #define PW_CRYPT_PASSWORD 1006
157 #define PW_CONNECT_RATE 1007
158 #define PW_ADD_PREFIX 1008
159 #define PW_ADD_SUFFIX 1009
160 #define PW_EXPIRATION 1010
161 #define PW_AUTZ_TYPE 1011
162 #define PW_ACCT_TYPE 1012
163 #define PW_SESSION_TYPE 1013
164 #define PW_POST_AUTH_TYPE 1014
165 #define PW_PRE_PROXY_TYPE 1015
166 #define PW_POST_PROXY_TYPE 1016
167 #define PW_PRE_ACCT_TYPE 1017
168 #define PW_EAP_TYPE 1018
169 #define PW_EAP_TLS_REQUIRE_CLIENT_CERT 1019
170 #define PW_EAP_MD5_PASSWORD 1022
171 #define PW_CLIENT_SHORTNAME 1024
172 #define PW_LOAD_BALANCE_KEY 1025
173 #define PW_RAW_ATTRIBUTE 1026
174 #define PW_TNC_VLAN_ACCESS 1027
175 #define PW_TNC_VLAN_ISOLATE 1028
176 #define PW_USER_CATEGORY 1029
177 #define PW_GROUP_NAME 1030
178 #define PW_HUNTGROUP_NAME 1031
179 #define PW_SIMULTANEOUS_USE 1034
180 #define PW_STRIP_USER_NAME 1035
182 #define PAM_AUTH_ATTR 1041
183 #define PW_LOGIN_TIME 1042
184 #define PW_STRIPPED_USER_NAME 1043
185 #define PW_CURRENT_TIME 1044
186 #define PW_REALM 1045
187 #define PW_NO_SUCH_ATTRIBUTE 1046
188 #define PW_PACKET_TYPE 1047
189 #define PW_PROXY_TO_REALM 1048
190 #define PW_REPLICATE_TO_REALM 1049
191 #define PW_ACCT_SESSION_START_TIME 1050
192 #define PW_ACCT_UNIQUE_SESSION_ID 1051
193 #define PW_CLIENT_IP_ADDRESS 1052
194 #define PW_LDAP_USERDN 1053
195 #define PW_NS_MTA_MD5_PASSWORD 1054
196 #define PW_SQL_USER_NAME 1055
197 #define PW_LM_PASSWORD 1057
198 #define PW_NT_PASSWORD 1058
199 #define PW_SMB_ACCOUNT_CTRL 1059
200 #define PW_SMB_ACCOUNT_CTRL_TEXT 1061
201 #define PW_USER_PROFILE 1062
202 #define PW_DIGEST_REALM 1063
203 #define PW_DIGEST_NONCE 1064
204 #define PW_DIGEST_METHOD 1065
205 #define PW_DIGEST_URI 1066
206 #define PW_DIGEST_QOP 1067
207 #define PW_DIGEST_ALGORITHM 1068
208 #define PW_DIGEST_BODY_DIGEST 1069
209 #define PW_DIGEST_CNONCE 1070
210 #define PW_DIGEST_NONCE_COUNT 1071
211 #define PW_DIGEST_USER_NAME 1072
212 #define PW_POOL_NAME 1073
213 #define PW_LDAP_GROUP 1074
214 #define PW_MODULE_SUCCESS_MESSAGE 1075
215 #define PW_MODULE_FAILURE_MESSAGE 1076
216 #if 0 /* no longer used */
217 #define PW_X99_FAST 1077
219 #define PW_REWRITE_RULE 1078
220 #define PW_SQL_GROUP 1079
221 #define PW_RESPONSE_PACKET_TYPE 1080
222 #define PW_DIGEST_HA1 1081
223 #define PW_MS_CHAP_USE_NTLM_AUTH 1082
224 #define PW_MS_CHAP_USER_NAME 1083
225 #define PW_PACKET_SRC_IP_ADDRESS 1084
226 #define PW_PACKET_DST_IP_ADDRESS 1085
227 #define PW_PACKET_SRC_PORT 1086
228 #define PW_PACKET_DST_PORT 1087
229 #define PW_PACKET_AUTHENTICATION_VECTOR 1088
230 #define PW_TIME_OF_DAY 1089
231 #define PW_REQUEST_PROCESSING_STAGE 1090
233 #define PW_SHA2_PASSWORD 1092
234 #define PW_SHA_PASSWORD 1093
235 #define PW_SSHA_PASSWORD 1094
236 #define PW_MD5_PASSWORD 1095
237 #define PW_SMD5_PASSWORD 1096
239 #define PW_PACKET_SRC_IPV6_ADDRESS 1097
240 #define PW_PACKET_DST_IPV6_ADDRESS 1098
241 #define PW_VIRTUAL_SERVER 1099
242 #define PW_CLEARTEXT_PASSWORD 1100
243 #define PW_PASSWORD_WITH_HEADER 1101
244 #define PW_SEND_COA_REQUEST 1107
245 #define PW_MODULE_RETURN_CODE 1108
246 #define PW_PACKET_ORIGINAL_TIMESTAMP 1109
247 #define PW_HOME_SERVER_POOL 1111
248 #define PW_FREERADIUS_CLIENT_IP_ADDRESS 1120
249 #define PW_FREERADIUS_CLIENT_IPV6_ADDRESS 1121
250 #define PW_FREERADIUS_CLIENT_IP_PREFIX 1150
251 #define PW_FREERADIUS_CLIENT_IPV6_PREFIX 1151
252 #define PW_RECV_COA_TYPE 1131
253 #define PW_SEND_COA_TYPE 1132
254 #define PW_MSCHAP_PASSWORD 1133
255 #define PW_PACKET_TRANSMIT_COUNTER 1134
256 #define PW_CACHED_SESSION_POLICY 1135
258 #define PW_OTP_CHALLENGE 1145
259 #define PW_EAP_SESSION_ID 1146
261 #define PW_FREERADIUS_RESPONSE_DELAY 1152
262 #define PW_FREERADIUS_CLIENT_SRC_IP_ADDRESS 1153
263 #define PW_FREERADIUS_CLIENT_SRC_IPV6_ADDRESS 1154
265 * Integer Translations
270 #define PW_LOGIN_USER 1
271 #define PW_FRAMED_USER 2
272 #define PW_CALLBACK_LOGIN_USER 3
273 #define PW_CALLBACK_FRAMED_USER 4
274 #define PW_OUTBOUND_USER 5
275 #define PW_ADMINISTRATIVE_USER 6
276 #define PW_NAS_PROMPT_USER 7
277 #define PW_AUTHENTICATE_ONLY 8
278 #define PW_CALLBACK_NAS_PROMPT 9
280 /* Framed Protocols */
285 /* Framed Routing Values */
288 #define PW_BROADCAST 1
290 #define PW_BROADCAST_LISTEN 3
292 /* Framed Compression Types */
294 #define PW_VAN_JACOBSEN_TCP_IP 1
300 #define PW_TCP_CLEAR 2
301 #define PW_PORTMASTER 3
303 /* Authentication Level */
305 #define PW_AUTHTYPE_LOCAL 0
306 #define PW_AUTHTYPE_SYSTEM 1
307 #define PW_AUTHTYPE_SECURID 2
308 #define PW_AUTHTYPE_CRYPT 3
309 #define PW_AUTHTYPE_REJECT 4
310 #define PW_AUTHTYPE_ACTIVCARD 5
311 #define PW_AUTHTYPE_EAP 6
312 #define PW_AUTHTYPE_ACCEPT 254
313 #define PW_AUTHTYPE_MS_CHAP 1028
315 /* Post-auth types */
316 #define PW_POSTAUTHTYPE_LOCAL 0
317 #define PW_POSTAUTHTYPE_REJECT 1
321 #define PW_NAS_PORT_ASYNC 0
322 #define PW_NAS_PORT_SYNC 1
323 #define PW_NAS_PORT_ISDN 2
324 #define PW_NAS_PORT_ISDN_V120 3
325 #define PW_NAS_PORT_ISDN_V110 4
329 #define PW_STATUS_START 1
330 #define PW_STATUS_STOP 2
331 #define PW_STATUS_ALIVE 3
332 #define PW_STATUS_ACCOUNTING_ON 7
333 #define PW_STATUS_ACCOUNTING_OFF 8
336 * Vendor Private Enterprise Codes
338 #define VENDORPEC_MICROSOFT 311
339 #define VENDORPEC_FREERADIUS 11344
340 #define VENDORPEC_WIMAX 24757
343 * Vendor specific attributes
345 #define PW_FREERADIUS_PROXIED_TO 1
348 * Microsoft has vendor code 311.
350 #define PW_MSCHAP_RESPONSE 1
351 #define PW_MSCHAP_ERROR 2
352 #define PW_MSCHAP_CPW_1 3
353 #define PW_MSCHAP_CPW_2 4
354 #define PW_MSCHAP_NT_ENC_PW 6
355 #define PW_MSCHAP_CHALLENGE 11
356 #define PW_MSCHAP2_RESPONSE 25
357 #define PW_MSCHAP2_SUCCESS 26
358 #define PW_MSCHAP2_CPW 27
361 * Old nonsense. Will be deleted ASAP
363 #define PW_AUTHTYPE 1000
364 #define PW_AUTZTYPE 1011
365 #define PW_ACCTTYPE 1012
366 #define PW_SESSTYPE 1013
367 #define PW_POSTAUTHTYPE 1014
370 * Cisco's VLAN Query Protocol.
372 #define PW_VQP_PACKET_TYPE 0x2b00
373 #define PW_VQP_ERROR_CODE 0x2b01
374 #define PW_VQP_SEQUENCE_NUMBER 0x2b02
376 #define PW_VQP_CLIENT_IP_ADDRESS 0x2c01
377 #define PW_VQP_PORT_NAME 0x2c02
378 #define PW_VQP_VLAN_NAME 0x2c03
379 #define PW_VQP_DOMAIN_NAME 0x2c04
380 #define PW_VQP_ETHERNET_FRAME 0x2c05
381 #define PW_VQP_MAC 0x2c06
382 #define PW_VQP_UNKNOWN 0x2c07
383 #define PW_VQP_COOKIE 0x2c08