RADIUS Client Authentication StatisticsRADIUS Client Authentication Statistics

The Security Console displays statistics for the RSA RADIUS clients in RSA Authentication Manager. The statistics contain authentication data for RADIUS clients.

The Security Console begins tracking the statistics after an administrator starts the RADIUS server that is associated with a RADIUS client. When an administrator restarts the RADIUS server, the Security Console clears the statistics and begins the tracking again. You can record statistics in RADIUS log files.

The Security Console displays a summary of RADIUS authentication requests. To view RADIUS client statistics, see View RADIUS Client Authentication Statistics.

Client authentication statistics are not supported for the <ANY> client.

Authentication confirms that valid users request network services. Authentication statistics include the following.

Statistic	Description
Retry packets	Number of duplicate messages sent by the client to its associated RADIUS server.
Challenges	Number of challenges sent by the client to its associated RADIUS server.
Invalid Requests	Number of invalid RADIUS requests made by this RADIUS client. For example, the client is sending incorrectly formed packets to the RADIUS server because there is a configuration error or the device does not conform to the RADIUS standard.
Dropped Packets	Number of RADIUS authentication packets dropped by the RADIUS client because it received more packets than it could handle.
Malformed Requests	Number of requests that are incorrectly formed or corrupt. The server does not understand the request.
Unknown Requests	The number of requests that the server cannot identify.

Administrator Actions to RecordAdministrator Actions to Record

When users authenticate, RADIUS clients send attributes for each user authentication attempt. RADIUS servers collect this information and can save as much or as little as needed for monitoring purposes.

RADIUS log files record administrator actions including authentications and any changes made using the Security Console or Operations Console.

The radiusd file controls whether RADIUS server log files are rotated by date or size. By default, log files are rotated daily with a date extension (year-month-day). For more information, see the RSA Authentication Manager RADIUS Reference Guide.