Date: Fri, 16 Oct 2015 18:21:19 +0000 From: "Mattson III, Ken V." <[email protected]> Subject: Re: Measuring RADIUS AuthsI am pretty sure it is raw ("The number of RADIUS Access-Request packets sent to this server. This does not include retransmissions."). 1.3.6.1.4.1.14179.2.5.3.1.8.3 is the retransmissions. http://tools.cisco.com/Support/SNMP/do/BrowseOID.do?local=en&translate=Translate&objectInput=bsnRadiusAuthClientAccessRetransmissions#oidContent Output from a snmpbulkwalk on one of our controllers: .1.3.6.1.4.1.14179.2.5.3.1.7.3 = Counter32: 93421076 .1.3.6.1.4.1.14179.2.5.3.1.7.4 = Counter32: 0 .1.3.6.1.4.1.14179.2.5.3.1.8.3 = Counter32: 31652 .1.3.6.1.4.1.14179.2.5.3.1.8.4 = Counter32: 0
If you are doing EAP-PEAPv0/MS-CHAPv2 then there will be many (a dozen or so) Access-Request packets sent per user authorization occurrence. The WiSM sends Access-Request (type 1) and the radius server answers with Auth-Challenge (type 11). This repeats back and forth many times until the radius server finally answers the final Auth-Request with either an Auth-Accept (type 2) or Auth-Reject (type 3). Just be clear what you're counting when comparing with other institutions or you will be off by quite a bit. Apples-to-apples, etc. -- Earl Barfield -- Academic & Research Tech / Information Technology Georgia Institute of Technology, Atlanta Georgia, 30332 Internet: [email protected] [email protected] ********** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/.
