[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Issue 298

To: Bernard Aboba <Bernard_Aboba@hotmail.com>
Subject: Re: Issue 298
From: Alan DeKok <aland@deployingradius.com>
Date: Fri, 02 Jan 2009 16:13:59 +0100
Cc: "'D. B. Nelson'" <d.b.nelson@comcast.net>, radiusext@ops.ietf.org
In-reply-to: <BLU137-DAV6AA76F8F63B83E458C9CF93EB0@phx.gbl>
References: <004901c9664f$d36c4ef0$7a44ecd0$@net> <BLU137-W122031A6C76B26440DFFD293EA0@phx.gbl> <CA94B0A93CF844989E0D87A5304EB991@NEWTON603> <BLU137-DAV6AA76F8F63B83E458C9CF93EB0@phx.gbl>
User-agent: Thunderbird 2.0.0.19 (Macintosh/20081209)

Bernard Aboba wrote:
>> So one question is whether this implies that a NAS should signal its
>> support for Extended Attributes in the Access-Request in some way -- 
>> so as to make it clear to the RADIUS server how those attributes would
>> be interpreted.  
> 
> I think we should make that feature a MUST.
> 
> [BA] That seems sensible to me.  The question is how to do it.  Maybe
> include
> an Extended Attribute of Type 1 with a NUL in it within an Access-Request?

  This gets dangerously close to the old "capabilities" argument.  But I
do agree it would seem to be necessary here.

  Q: What impact does this advertisement have on intermediary proxies?

  i.e. Does it signal that the NAS understands Extended-Attributes, or
that the proxy understands them?  Should the proxy filter out the
advertisement if it doesn't understand Extended-Attributes?

  To answer my own question a bit... it's easier to upgrade proxies than
NASes.  I think it's safe to assume (or require) that proxies be
upgraded before NASes.

  Alan DeKok.

--
to unsubscribe send a message to radiusext-request@ops.ietf.org with
the word 'unsubscribe' in a single line as the message text body.
archive: <http://psg.com/lists/radiusext/>

Follow-Ups:
- RE: Issue 298
  - From: Bernard Aboba <bernard_aboba@hotmail.com>
- RE: Issue 298
  - From: "Dave Nelson" <d.b.nelson@comcast.net>

Prev by Date: Re: [ISSUE] Status-Server
Next by Date: Re: Issue: Use of the term "extended" within the Design Guidelines Document
Previous by thread: Re: [ISSUE] Status-Server
Next by thread: RE: Issue 298
Index(es):
- Date
- Thread