Cisco SCMS SM LEGs User Guide, Release 3.5.5 - About the SCE-Sniffer RADIUS LEG [Cisco Service Control Subscriber Manager]

Table Of Contents

About the SCE-Sniffer RADIUS LEG

Introduction

Information About the SCE-Sniffer RADIUS LEG

RADIUS Integration Overview

About the SCE-Sniffer RADIUS LEG

Revised: July 28, 2009, OL-15752-05

Introduction

The Service Control Management Suite (SCMS) Subscriber Manager (SM) SCE-Sniffer RADIUS Login Event Generator (LEG) is a software module that receives Raw Data Record (RDR) messages containing RADIUS information from Service Control Engine (SCE) devices configured with a RADIUS Sniffer service. The SCE-Sniffer RADIUS LEG is an extension of the SM software and runs as part of the SM process.

Information About the SCE-Sniffer RADIUS LEG

The SCE device analyzes RADIUS traffic that traverses it (1) and reports the RADIUS transactions to the LEG using the RDR protocol (2). The LEG associates the RDR data to subscriber properties (name, subscriber IP, domain, and policies) and triggers a login or logout operation to the SM (3) as shown in Figure 20-1.

Figure 20-1 SCE-Sniffer RADIUS LEG Operation

RADIUS Integration Overview

This implementation of the SCE-Sniffer RADIUS LEG supports RFC 2865 (RADIUS protocol) and RFC 2866 (RADIUS Accounting).

The LEG uses the following packet types:

•Accounting-Start—Initiates login operations (with subscriber IP, domain, and policies)

•Accounting-Interim-Update—Initiates login operations (with subscriber IP, domain, and policies)

•Accounting-Stop—Initiates logout operations

•Access-Request—Initiates domain and policies associations

•Access-Accept—Initiates login operations (with subscriber IP and policies)

The LEG uses the following attributes:

•User Name (Attribute #1)—Default attribute for subscriber ID

•NAS-IP-Address (Attribute #4)—Associates the NAS IP address as the subscriber's domain (optional)

•Framed-IP-Address (Attribute #8)—Associates an IP address to the subscriber

•Framed-IP-Netmask (Attribute #9)—Associates an IP netmask to the subscriber

•Framed-Route (Attribute #22)—Associates an IP/IP-range to the subscriber

•NAS-Identifier (Attribute #32)—Associates the NAS identifier as the subscriber's domain (optional)

•Acct-Status-Type (Attribute #40)—Distinguishes between the different accounting transactions.

To associate policies to the subscribers, configure the LEG with the attribute that contains the policy information. The Vendor Specific attribute (Attribute #26) can be used to associate policies to the subscribers in addition to all other RADIUS attributes of type string or integer.

To determine the subscriber ID, configure the LEG with the attribute that contains the subscriber ID information. The Vendor Specific attribute (Attribute #26) can be used to determine the subscriber ID in addition to all other RADIUS attributes of type string. By default, the User-Name (Attribute #1) is configured to hold the subscriber ID.

	Cisco SCMS SM LEGs User Guide, Release 3.5.5
	About the SCE-Sniffer RADIUS LEG
Cisco SCMS SM LEGs User Guide, Release 3.5.5 About this Guide Terms and Concepts CNR LEG About the CNR LEG Installing the CNR LEG Configuring the CNR LEG and the SM CNR Log Messages CNR LEG Functional Specification DHCP Lease Query LEG About the DHCP Lease Query LEG Subscriber Manager Integration - Configuration SCE Integration - Configuration DHCP Forwarder Application SCE-Sniffer DHCP LEG About the SCE-Sniffer DHCP LEG Configuring the SCE-Sniffer DHCP LEG Using the SCE-Sniffer DHCP LEG CLU RADIUS Listener LEG About the RADIUS Listener LEG Installing the RADIUS Listener LEG Configuring the RADIUS Listener LEG Configuring the RADIUS Client Using the RADIUS Listener LEG CLU Domain Association Algorithm SCE-Sniffer RADIUS LEG About the SCE-Sniffer RADIUS LEG SCE-Sniffer RADIUS LEG Functionality Configuring the SCE-Sniffer RADIUS LEG Using the SCE-Sniffer RADIUS LEG CLU MPLS/VPN BGP LEG About the MPLS/VPN BGP LEG Installing the MPLS/VPN BGP LEG Configuring the MPLS/VPN BGP LEG Using the MPLS/VPN BGP LEG CLU SOAP LEG About the SOAP LEG Configuring the SOAP LEG Using the SOAP LEG CLU Cisco WSDL	Download this chapter About the SCE-Sniffer RADIUS LEG Download the complete book Cisco SCMS SM LEGs User Guide, Release 3.5.5 (PDF - 2 MB) Feedback Table Of Contents About the SCE-Sniffer RADIUS LEG Introduction Information About the SCE-Sniffer RADIUS LEG RADIUS Integration Overview About the SCE-Sniffer RADIUS LEG Revised: July 28, 2009, OL-15752-05 Introduction The Service Control Management Suite (SCMS) Subscriber Manager (SM) SCE-Sniffer RADIUS Login Event Generator (LEG) is a software module that receives Raw Data Record (RDR) messages containing RADIUS information from Service Control Engine (SCE) devices configured with a RADIUS Sniffer service. The SCE-Sniffer RADIUS LEG is an extension of the SM software and runs as part of the SM process. Information About the SCE-Sniffer RADIUS LEG The SCE device analyzes RADIUS traffic that traverses it (1) and reports the RADIUS transactions to the LEG using the RDR protocol (2). The LEG associates the RDR data to subscriber properties (name, subscriber IP, domain, and policies) and triggers a login or logout operation to the SM (3) as shown in Figure 20-1. Figure 20-1 SCE-Sniffer RADIUS LEG Operation RADIUS Integration Overview This implementation of the SCE-Sniffer RADIUS LEG supports RFC 2865 (RADIUS protocol) and RFC 2866 (RADIUS Accounting). The LEG uses the following packet types: •Accounting-Start—Initiates login operations (with subscriber IP, domain, and policies) •Accounting-Interim-Update—Initiates login operations (with subscriber IP, domain, and policies) •Accounting-Stop—Initiates logout operations •Access-Request—Initiates domain and policies associations •Access-Accept—Initiates login operations (with subscriber IP and policies) The LEG uses the following attributes: •User Name (Attribute #1)—Default attribute for subscriber ID •NAS-IP-Address (Attribute #4)—Associates the NAS IP address as the subscriber's domain (optional) •Framed-IP-Address (Attribute #8)—Associates an IP address to the subscriber •Framed-IP-Netmask (Attribute #9)—Associates an IP netmask to the subscriber •Framed-Route (Attribute #22)—Associates an IP/IP-range to the subscriber •NAS-Identifier (Attribute #32)—Associates the NAS identifier as the subscriber's domain (optional) •Acct-Status-Type (Attribute #40)—Distinguishes between the different accounting transactions. To associate policies to the subscribers, configure the LEG with the attribute that contains the policy information. The Vendor Specific attribute (Attribute #26) can be used to associate policies to the subscribers in addition to all other RADIUS attributes of type string or integer. To determine the subscriber ID, configure the LEG with the attribute that contains the subscriber ID information. The Vendor Specific attribute (Attribute #26) can be used to determine the subscriber ID in addition to all other RADIUS attributes of type string. By default, the User-Name (Attribute #1) is configured to hold the subscriber ID.
	Terms & Conditions \| Privacy Statement \| Cookie Policy \| Trademarks