File formats:

Status:

EXPERIMENTAL

Authors:

A. Perez-Mendez, Ed.
R. Marin-Lopez
F. Pereniguez-Garcia
G. Lopez-Millan
D. Lopez
A. DeKok

Stream:

IETF

Source:

radext (sec)

Cite this RFC: TXT  |  XML  |   BibTeX

DOI:  https://doi.org/10.17487/RFC7499

Discuss this RFC: Send questions or comments to the mailing list radext@ietf.org

Other actions: Submit Errata  |  Find IPR Disclosures from the IETF  |  View History of RFC 7499

Abstract

The Remote Authentication Dial-In User Service (RADIUS) protocol is limited to a total packet size of 4096 bytes. Provisions exist for fragmenting large amounts of authentication data across multiple packets, via Access-Challenge packets. No similar provisions exist for fragmenting large amounts of authorization data. This document specifies how existing RADIUS mechanisms can be leveraged to provide that functionality. These mechanisms are largely compatible with existing implementations, and they are designed to be invisible to proxies and "fail-safe" to legacy RADIUS Clients and Servers.

For the definition of Status, see RFC 2026.

For the definition of Stream, see RFC 8729.