Service accounting in a network
First Claim
Patent Images
1. A computer-implemented method comprising:
- in response to a first Authentication, Authorization, and Accounting (AAA) server receiving, from a first network device, a request to authorize a client to access a network resource,said first AAA server obtaining an accounting record for the client from an external resource communicatively coupled to the first AAA server,said first AAA server authorizing said client to access the network resource based on said accounting record, andsaid first AAA server sending, to the first network device, a Remote Authentication Dial In User Service (RADIUS) protocol access accept message that includes the accounting record within the RADIUS access accept message, causing the accounting record to be logged on a second network device, and to be sent by the second network device to a second AAA server within a RADIUS start session message;
wherein the method is performed by one or more processors.
1 Assignment
0 Petitions
Accused Products
Abstract
A method and apparatus are disclosed for improving service accounting in a network. After a client is authorized and authenticated, an accounting record is sent with the authorization accept message, and the account record is logged.
-
Citations
31 Claims
-
1. A computer-implemented method comprising:
in response to a first Authentication, Authorization, and Accounting (AAA) server receiving, from a first network device, a request to authorize a client to access a network resource, said first AAA server obtaining an accounting record for the client from an external resource communicatively coupled to the first AAA server, said first AAA server authorizing said client to access the network resource based on said accounting record, and said first AAA server sending, to the first network device, a Remote Authentication Dial In User Service (RADIUS) protocol access accept message that includes the accounting record within the RADIUS access accept message, causing the accounting record to be logged on a second network device, and to be sent by the second network device to a second AAA server within a RADIUS start session message; wherein the method is performed by one or more processors. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 23, 24, 27, 28)
-
12. A computer-readable non-transitory storage medium storing instructions which, when executed by one or more processors, cause the one or more processors to perform:
in response to a first Authentication, Authorization, and Accounting (AAA) server receiving, from a first network device, a request to authorize a client to access a network resource, said first AAA server obtaining an accounting record for the client from an external resource communicatively coupled to the first AAA server, said first AAA server authorizing said client to access the network resource based on said accounting record, and said first AAA server sending, to the first network device, a Remote Authentication Dial In User Service (RADIUS) protocol access accept message that includes the accounting record within the RADIUS access accept message, causing the accounting record to be logged on a second network device, and to be sent by the second network device to a second AAA server within a RADIUS start session message. - View Dependent Claims (13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 25, 26, 29, 30, 31)
Specification