RADIUS stands for Remote Authentication Dial In User Service. It is an authentication service that was first defined in RFC2058 in 1997. It has been extended significantly in further RFCs since then.
This diagram illustrates an exchange that is using the EAP-MD5 authentication method, which is the simplest authentication method supported by 802.1x. The EAPol logoff message, of course, is not sent immediately after the other messages in the diagram, but is sent later on, at the end of the supplicant’s data session, when it wishes to disconnect from the network.
» 802.1X is an IEEE Standard for port-based Network
Access Control (PNAC). It is part of
the IEEE802.1 group of networking protocols. It provides
an authentication mechanism to devices wishing to
attach to a LAN or WLAN.
Two protocols involved in authentication
EAPoL exchanged between Supplicant and
EAPoL - Extensible Authentication Protocol over
LAN is the protocol defined in IEEE802.1x
RADIUS exchanged between
RADIUS has received specific
extensions to interoperate with
Dynamic Vlan Assigment / Guest Vlan
Allied Telesis & Microsoft NAP
Windows Server 2008
( Network Policy Server
(NPS), Domain Controller)
Windows Vista Windows Vista