[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Issue: NAS identity

To: <radiusext@ops.ietf.org>
Subject: Issue: NAS identity
From: "Joseph Salowey (jsalowey)" <jsalowey@cisco.com>
Date: Thu, 26 Mar 2009 11:40:29 -0700

Description of issue
Submitter name: Joseph Salowey
Submitter email address: jsalowey@cisco.com
Date first submitted: 3/26/2009
Reference: URL to e-mail describing problem, if available
Document: draft-ietf-radext-radsec-04.txt
Comment type: T
Priority: S
Section: 
Rationale/Explanation of issue:
Current RADIUS specs the NAS identity is tightly coupled with IP address
because this is how the shared secret is referenced.  With new modes of
authentication it seems that the  identity need not be tied to IP
address anymore.   This could help with dynamic addressing and NATS.  

Requested change:
Discuss in the document that the NAS can be identified by something
other than source IP address.  

--
to unsubscribe send a message to radiusext-request@ops.ietf.org with
the word 'unsubscribe' in a single line as the message text body.
archive: <http://psg.com/lists/radiusext/>

Follow-Ups:
- Re: Issue: NAS identity
  - From: Stefan Winter <stefan.winter@restena.lu>

Prev by Date: Issue: RADSEC and DTLS docs
Next by Date: Re: Issue: NAS identity
Previous by thread: Issue: RADSEC and DTLS docs
Next by thread: Re: Issue: NAS identity
Index(es):
- Date
- Thread