The RADIUS server provides a pure JAVA™ API for those of you with needs not met by conventional proprietary servers. The API provides a means to incorporate your present business backend processing into the RADIUS server. If you're not able to provide some programming this is not the server for you.
There are two block diagrams showing the major interactions of the server and sever sessions. The server diagram illustrates how
There are several important points of contact with the server that you'll find useful:
Authentication and Accounting: Providing your own authentication procedures to access your own databases or other authentication backend is reason enough to use the API.
Dynamic Proxy configuration and rerouting: Complete control over proxying as the packet enters the server allows non-standard proxying and modification of the requests attributes to be handled cleanly and transparently. The server API can also add and remove proxy realms on the fly.
Dynamic NAS configuration: The Network Access Servers (NAS) or clients can be granted automatic access either temporarily or permanently by the server using your programming code to grant or deny access to the server.The server API can also add, reconfigure, and remove NAS's on the fly.
Packet Snooping: This is very useful for debugging: You may examine a packet even before it's been checked for correctness by the server. This permits powerful debugging when working with a difficult RADIUS client.
The server is compliant with relevant RFC's including:
Remote Authentication Dial In User Service - RFC 2865
RADIUS Accounting - RFC 2866
RADIUS Attributes for Tunnel Protocol Support - RFC 2868
RADIUS Accounting Modifications for Tunnel Protocol Support - RFC 2867
RADIUS Extensions - RFC 2869
RADIUS Authentication Server MIB - RFC 2619
RADIUS Accounting Server MIB - RFC 2621
Separate Accounting and Authentication servers.
Session thread pool for faster processing.
Adjustable maximum packet sizes.
Message-Authenticator support in both client and server.
Long passwords (up to 128 bytes).
Duplicate packet detection - If a client resends the same packet more than once duplicate packets are silently dropped.
SNMP V2 support - the standard RADIUS MIB's are supported. V2 traps on cold start and Java thread exceptions are available. The API also supports sending traps from your own code as well. SMNP requests can be limited to certain machines.
Extensive packet debugging - Displays the packet at all decision points in the server and dynamic filtering of packets by origin address. Raw packet and decoded attribute data is displayed.
Extended Message Types: message types beyond Access-Request, Access-Accept,
Access-Reject, Access-Challenge, Accounting-Request & Accounting-Response. Packet
types like Password_Request,
Change_Filters_Request, Accounting_Status and any other packet type are supported.