-- Network Working Group B. Aboba
-- Request for Comments: 2618 G. Zorn
-- Category: Standards Track Microsoft
-- June 1999
--
--
-- RADIUS Authentication Client MIBRADIUS-AUTH-CLIENT-MIB DEFINITIONS::=BEGINIMPORTSMODULE-IDENTITY,OBJECT-TYPE,OBJECT-IDENTITY,Counter32,Integer32,Gauge32,IpAddress,TimeTicks, mib-2 FROM SNMPv2-SMI
SnmpAdminStringFROM SNMP-FRAMEWORK-MIB
MODULE-COMPLIANCE,OBJECT-GROUPFROM SNMPv2-CONF;radiusAuthClientMIB MODULE-IDENTITYLAST-UPDATED"9906110000Z"-- 11 Jun 1999
ORGANIZATION"IETF RADIUS Working Group."CONTACT-INFO" Bernard Aboba
Microsoft
One Microsoft Way
Redmond, WA 98052
US
Phone: +1 425 936 6605
EMail: bernarda@microsoft.com"DESCRIPTION"The MIB module for entities implementing the client
side of the Remote Access Dialin User Service (RADIUS)
authentication protocol."REVISION"9906110000Z"-- 11 Jun 1999DESCRIPTION"Initial version as published in RFC 2618"::={ radiusAuthentication 2}radiusMIB OBJECT-IDENTITYSTATUScurrentDESCRIPTION"The OID assigned to RADIUS MIB work by the IANA."::={ mib-2 67}
radiusAuthentication OBJECTIDENTIFIER::={radiusMIB 1}radiusAuthClientMIBObjects OBJECTIDENTIFIER::={ radiusAuthClientMIB 1}radiusAuthClient OBJECTIDENTIFIER::={ radiusAuthClientMIBObjects 1}radiusAuthClientInvalidServerAddresses OBJECT-TYPESYNTAXCounter32MAX-ACCESSread-onlySTATUScurrentDESCRIPTION"The number of RADIUS Access-Response packets
received from unknown addresses."::={ radiusAuthClient 1}radiusAuthClientIdentifier OBJECT-TYPESYNTAXSnmpAdminString
MAX-ACCESSread-onlySTATUScurrentDESCRIPTION"The NAS-Identifier of the RADIUS authentication client.
This is not necessarily the same as sysName in MIB II."::={ radiusAuthClient 2}radiusAuthServerTable OBJECT-TYPESYNTAXSEQUENCEOF RadiusAuthServerEntry
MAX-ACCESSnot-accessibleSTATUScurrentDESCRIPTION"The (conceptual) table listing the RADIUS authentication
servers with which the client shares a secret."::={ radiusAuthClient 3}radiusAuthServerEntry OBJECT-TYPESYNTAX RadiusAuthServerEntry
MAX-ACCESSnot-accessibleSTATUScurrentDESCRIPTION
"An entry (conceptual row) representing a RADIUS
authentication server with which the client shares
a secret."INDEX{ radiusAuthServerIndex }::={ radiusAuthServerTable 1}
RadiusAuthServerEntry ::=SEQUENCE{
radiusAuthServerIndex Integer32,
radiusAuthServerAddress IpAddress,
radiusAuthClientServerPortNumber Integer32,
radiusAuthClientRoundTripTime TimeTicks,
radiusAuthClientAccessRequests Counter32,
radiusAuthClientAccessRetransmissions Counter32,
radiusAuthClientAccessAccepts Counter32,
radiusAuthClientAccessRejects Counter32,
radiusAuthClientAccessChallenges Counter32,
radiusAuthClientMalformedAccessResponses Counter32,
radiusAuthClientBadAuthenticators Counter32,
radiusAuthClientPendingRequests Gauge32,
radiusAuthClientTimeouts Counter32,
radiusAuthClientUnknownTypes Counter32,
radiusAuthClientPacketsDropped Counter32}radiusAuthServerIndex OBJECT-TYPESYNTAXInteger32(1..2147483647)MAX-ACCESSnot-accessibleSTATUScurrentDESCRIPTION"A number uniquely identifying each RADIUS
Authentication server with which this client
communicates."::={ radiusAuthServerEntry 1}
radiusAuthServerAddress OBJECT-TYPESYNTAXIpAddressMAX-ACCESSread-onlySTATUScurrentDESCRIPTION"The IP address of the RADIUS authentication server
referred to in this table entry."::={ radiusAuthServerEntry 2}radiusAuthClientServerPortNumber OBJECT-TYPESYNTAXInteger32(0..65535)MAX-ACCESSread-onlySTATUScurrentDESCRIPTION"The UDP port the client is using to send requests to
this server."::={ radiusAuthServerEntry 3}radiusAuthClientRoundTripTime OBJECT-TYPESYNTAXTimeTicks
MAX-ACCESSread-onlySTATUScurrentDESCRIPTION"The time interval (in hundredths of a second) between
the most recent Access-Reply/Access-Challenge and the
Access-Request that matched it from this RADIUS
authentication server."::={ radiusAuthServerEntry 4}-- Request/Response statistics
--
-- TotalIncomingPackets = Accepts + Rejects + Challenges + UnknownTypes
--
-- TotalIncomingPackets - MalformedResponses - BadAuthenticators -
-- UnknownTypes - PacketsDropped = Successfully received
--
-- AccessRequests + PendingRequests + ClientTimeouts =
-- Successfully Received
--
--radiusAuthClientAccessRequests OBJECT-TYPESYNTAXCounter32MAX-ACCESSread-onlySTATUScurrentDESCRIPTION"The number of RADIUS Access-Request packets sent
to this server. This does not include retransmissions."::={ radiusAuthServerEntry 5}
radiusAuthClientAccessRetransmissions OBJECT-TYPESYNTAXCounter32MAX-ACCESSread-onlySTATUScurrentDESCRIPTION"The number of RADIUS Access-Request packets
retransmitted to this RADIUS authentication server."::={ radiusAuthServerEntry 6}radiusAuthClientAccessAccepts OBJECT-TYPESYNTAXCounter32MAX-ACCESSread-onlySTATUScurrentDESCRIPTION"The number of RADIUS Access-Accept packets
(valid or invalid) received from this server."::={ radiusAuthServerEntry 7}radiusAuthClientAccessRejects OBJECT-TYPESYNTAXCounter32
MAX-ACCESSread-onlySTATUScurrentDESCRIPTION"The number of RADIUS Access-Reject packets
(valid or invalid) received from this server."::={ radiusAuthServerEntry 8}radiusAuthClientAccessChallenges OBJECT-TYPESYNTAXCounter32MAX-ACCESSread-onlySTATUScurrentDESCRIPTION"The number of RADIUS Access-Challenge packets
(valid or invalid) received from this server."::={ radiusAuthServerEntry 9}-- "Access-Response" includes an Access-Accept, Access-Challenge
-- or Access-RejectradiusAuthClientMalformedAccessResponses OBJECT-TYPESYNTAXCounter32MAX-ACCESSread-onlySTATUScurrent
DESCRIPTION"The number of malformed RADIUS Access-Response
packets received from this server.
Malformed packets include packets with
an invalid length. Bad authenticators or
Signature attributes or unknown types are not
included as malformed access responses."::={ radiusAuthServerEntry 10}radiusAuthClientBadAuthenticators OBJECT-TYPESYNTAXCounter32MAX-ACCESSread-onlySTATUScurrentDESCRIPTION"The number of RADIUS Access-Response packets
containing invalid authenticators or Signature
attributes received from this server."::={ radiusAuthServerEntry 11}radiusAuthClientPendingRequests OBJECT-TYPESYNTAXGauge32MAX-ACCESSread-only
STATUScurrentDESCRIPTION"The number of RADIUS Access-Request packets
destined for this server that have not yet timed out
or received a response. This variable is incremented
when an Access-Request is sent and decremented due to
receipt of an Acess-Accept, Access-Reject or
Access-Challenge, a timeout or retransmission."::={ radiusAuthServerEntry 12}radiusAuthClientTimeouts OBJECT-TYPESYNTAXCounter32MAX-ACCESSread-onlySTATUScurrentDESCRIPTION"The number of authentication timeouts to this server.
After a timeout the client may retry to the same
server, send to a different server, or
give up. A retry to the same server is counted as a
retransmit as well as a timeout. A send to a different
server is counted as a Request as well as a timeout."::={ radiusAuthServerEntry 13}
radiusAuthClientUnknownTypes OBJECT-TYPESYNTAXCounter32MAX-ACCESSread-onlySTATUScurrentDESCRIPTION"The number of RADIUS packets of unknown type which
were received from this server on the authentication port."::={ radiusAuthServerEntry 14}radiusAuthClientPacketsDropped OBJECT-TYPESYNTAXCounter32MAX-ACCESSread-onlySTATUScurrentDESCRIPTION"The number of RADIUS packets of which were
received from this server on the authentication port
and dropped for some other reason."::={ radiusAuthServerEntry 15}-- conformance informationradiusAuthClientMIBConformance
OBJECTIDENTIFIER::={ radiusAuthClientMIB 2}radiusAuthClientMIBCompliances
OBJECTIDENTIFIER::={ radiusAuthClientMIBConformance 1}radiusAuthClientMIBGroups
OBJECTIDENTIFIER::={ radiusAuthClientMIBConformance 2}-- compliance statementsradiusAuthClientMIBCompliance MODULE-COMPLIANCESTATUScurrentDESCRIPTION"The compliance statement for authentication clients
implementing the RADIUS Authentication Client MIB."MODULE-- this moduleMANDATORY-GROUPS{ radiusAuthClientMIBGroup }::={ radiusAuthClientMIBCompliances 1}
-- units of conformanceradiusAuthClientMIBGroup OBJECT-GROUPOBJECTS{ radiusAuthClientIdentifier,
radiusAuthClientInvalidServerAddresses,
radiusAuthServerAddress,
radiusAuthClientServerPortNumber,
radiusAuthClientRoundTripTime,
radiusAuthClientAccessRequests,
radiusAuthClientAccessRetransmissions,
radiusAuthClientAccessAccepts,
radiusAuthClientAccessRejects,
radiusAuthClientAccessChallenges,
radiusAuthClientMalformedAccessResponses,
radiusAuthClientBadAuthenticators,
radiusAuthClientPendingRequests,
radiusAuthClientTimeouts,
radiusAuthClientUnknownTypes,
radiusAuthClientPacketsDropped
}STATUScurrentDESCRIPTION"The basic collection of objects providing management of
RADIUS Authentication Clients."::={ radiusAuthClientMIBGroups 1}END