RADIUS Monitor

The Remote Authentication Dial-In User Service (RADIUS) monitor verifies that an authentication server can perform an internal database lookup and respond to an authentication request.

RADIUS is commonly used to provide authentication and authorization for dial-up, virtual private network, and wireless network access from a centralized server.

The RADIUS monitor performs the following steps:

  1. Tests the ability of the RADIUS server to respond to an authentication request.
  2. Sends user credentials and connection parameters in a RADIUS message to the RADIUS server.
  3. Waits for the RADIUS server to authenticate and authorize the access request.
  4. Validates the RADIUS message response sent back.
  5. Determines the responsiveness of the service by analyzing the round trip time.
  6. Considers the test to have failed if the service does not respond within the Maximum Test Duration.

Test limitations

The RADIUS monitor tests the RADIUS server to verify its availability and responsiveness. It does not log in to the RADIUS server using the account information provided during the initial configuration. It tests the authentication server to ensure it can perform an internal database lookup and respond to an authentication query.

Depending on your RADIUS solution, you may not need to provide account or secret information. If you provide invalid account information, your authentication solution may send negative responses instead of quietly discarding the requests. If this occurs, ipMonitor accepts that the service is available.