RADIUS Server Authentication Statistics

The Security Console displays authentication statistics for the RSA RADIUS servers in RSA Authentication Manager. Authentication statistics summarize the number of authentication acceptances and rejections, with summary totals for each type of rejection or retry.

The Security Console begins tracking the statistics after a RADIUS server starts. When an administrator restarts the RADIUS server, the Security Console clears the statistics and begins the tracking again. You can record statistics in RADIUS log files.

The following table describes the authentication statistics fields and the possible causes for some authentication rejections.

Authentication Statistic

Meaning

Transactions

Accepts

The total number of RADIUS transactions that resulted in an accept response.

Rejects

The total number of RADIUS transactions that resulted in a reject response. These are detailed in the Reject Details section.

Overall

Total Transactions

The sum of the Accepts, the Rejects, and the number of requests made on the RADIUS Server Authentication Statistics page.

Challenges

The number of challenges received from RADIUS clients.

Reject Details

Dropped Packet

The number of RADIUS authentication packets dropped by RADIUS because the server was flooded with more packets than it could handle.

Invalid Request

The number of invalid RADIUS requests made.

Possible Cause: A device is sending incorrectly formed packets to RADIUS. Either there is a configuration error or the device does not conform to the RADIUS standard.

Malformed Requests

The number of requests that are incorrectly formed or corrupt. The server does not understand the request.

Unknown Requests

The number of requests that the server cannot identify.

Rejects Sent

Transactions Retried

The number of requests for which one or more duplicates was received.