RADIUS services supported on switches

Remote Authentication Dial-In User Service (RADIUS) is a networking protocol that provides centralized Authentication, Authorization, and Accounting (AAA) management for users that connect and use a network service. RADIUS is the transport for AAA services. The services can include the user profiles including storing user credentials, user access policies, and user activity statistics which can reside on the same server. Gateway devices that control network access, such as remote access servers, VPN servers, and network switches, can use the RADIUS protocol to communicate with a RADIUS server for:

  • Authentication — verifying user credentials regarding granted access to their networks.

  • Authorization — verifying user access policy on how much and what kind of resources are allowed for an authenticated user.

  • Accounting — keeping statistic information about the user activities for accounting purpose.