Radius (Remote Authentication Dial In User Service) is a multi-user SNMP enabled client-server security tool used in computer networks to provide remote user authentication and accounting. The RADIUS software can read several kinds of password databases, and use several kinds of authentication schemes like PAP and CHAP.
Accounting is built in and can provide text file, unix style and SQL logs. These logs track user's activity. Other schemes can be supported by extending RADIUS.
RADIUS is currently (2003) the de-facto standard for remote authentication. It provides :
- some protection against sniffing an active attack.
- centralised administration.
DIAMETER is the planned(?) IETF replacement for RADIUS.