Explore Cisco
How to Buy

Have an account?

  •   Personalized content
  •   Your products and support

Need an account?

Create an account

Cisco SCMS SM LEGs User Guide, Release 3.6.x

Bias-Free Language

The documentation set for this product strives to use bias-free language. For the purposes of this documentation set, bias-free is defined as language that does not imply discrimination based on age, disability, gender, racial identity, ethnic identity, sexual orientation, socioeconomic status, and intersectionality. Exceptions may be present in the documentation due to language that is hardcoded in the user interfaces of the product software, language used based on RFP documentation, or language that is used by a referenced third-party product. Learn more about how Cisco is using Inclusive Language.

Book Contents
Find Matches in This Book
Available Languages
Download Options

Book Title

Cisco SCMS SM LEGs User Guide, Release 3.6.x

Chapter Title

About the SCE-Sniffer RADIUS LEG

Results

Chapter: About the SCE-Sniffer RADIUS LEG


About the SCE-Sniffer RADIUS Login Event Generator

Revised: November 8, 2010, OL-21081-02

Introduction

The Service Control Management Suite (SCMS) Subscriber Manager (SM) SCE-Sniffer RADIUS Login Event Generator (LEG) is a software module that receives Raw Data Record (RDR) messages containing RADIUS information from Service Control Engine (SCE) devices configured with a RADIUS sniffer service. The SCE-Sniffer RADIUS LEG is an extension of the SM software and runs as part of the SM process.

Information About the SCE-Sniffer RADIUS LEG

The SCE device analyzes RADIUS traffic that traverses it (1) and reports the RADIUS transactions to the LEG using the RDR protocol (2). The LEG associates the RDR data to subscriber properties (name, subscriber IP, domain, and policies) and triggers a login or logout operation to the SM (3) as shown in Figure 20-1.

Figure 20-1 SCE-Sniffer RADIUS LEG Operation

RADIUS Integration Overview

This implementation of the SCE-Sniffer RADIUS LEG supports RFC 2865 (RADIUS Protocol) and RFC 2866 (RADIUS Accounting).

The LEG uses the following packet types:

Accounting-Start—Initiates login operations (with subscriber IP, domain, and policies).

Accounting-Interim-Update—Initiates login operations (with subscriber IP, domain, and policies).

Accounting-Stop—Initiates logout operations.

Access-Request—Initiates domain and policies associations.

Access-Accept—Initiates login operations (with subscriber IP and policies).

The LEG uses the following attributes:

User Name (Attribute no. 1)—Default attribute for subscriber ID.

NAS-IP-Address (Attribute no. 4)—Associates the NAS IP address as the subscriber's domain (optional).

Framed-IP-Address (Attribute no. 8)—Associates an IP address to the subscriber.

Framed-IP-Netmask (Attribute no. 9)—Associates an IP netmask to the subscriber.

Framed-Route (Attribute no. 22)—Associates an IP/IP-range to the subscriber.

NAS-Identifier (Attribute no. 32)—Associates the NAS identifier as the subscriber's domain (optional).

Acct-Status-Type (Attribute no. 40)—Distinguishes between the different accounting transactions.

To associate policies to the subscribers, configure the LEG with the attribute that contains the policy information. The Vendor Specific attribute (Attribute no. 26) can be used to associate policies to the subscribers in addition to all other RADIUS attributes of type string or integer.

To determine the subscriber ID, configure the LEG with the attribute that contains the subscriber ID information. The Vendor Specific attribute (Attribute no. 26) can be used to determine the subscriber ID in addition to all other RADIUS attributes of type string. By default, the User-Name (Attribute no. 1) is configured to hold the subscriber ID.

Was this Document Helpful?

FeedbackFeedback

Contact Cisco