AAA server is used by RADIUS protocol to authenticate, authorize, and account for remote users accessing a computer network server. It is used by ISPs and companies for security and billing purposes. Users must provide credentials for access, and the server checks against its database. Once authenticated, the server checks if the user is authorized to use specific programs or pages. Accounting is the final process, providing information about the user’s session for billing and security purposes.
An AAA server refers to the authentication, authorization, and accounting process used by the RADIUS (Remote Authentication Dial In User Services) network protocol. RADIUS allows remote users or computers to access a computer network server. When the AAA server process is not required, a server is called “open” or “anonymous”. RADIUS and AAA server protocol are usually used by Internet Service Providers (ISPs) to identify and bill their customers. It is also used by companies to identify and allow network access to their employees when working from a remote location.
When a user sends an access request to a network server from a remote location, he must identify himself with the server. The request is usually made up of “credentials,” which usually take the form of a username and password or passphrase. The request also sends information such as a dial-up phone number or network address for the network to verify the user’s identity. The network checks user information against its own database.
Once the user’s identity has been verified, the network returns an “access denied”, “access denied” or “access accepted” response. If access is denied, the user is completely denied access to the network, usually due to unconfirmed or invalid credentials. If access is contested, the network will request additional information to verify the user. This usually occurs in networks with a higher level of security. If access is accepted, the user is authenticated and granted access to the network.
Once authenticated, the server will check if the user is authorized to log in to use the particular programs or pages that the user requests to use. Some users will be able to access some parts of the server but will not be allowed to use others.
The final process in the AAA server protocol is accounting. When a user is granted access to a network server, a “start accounting” signal is sent to the server. While the user is on the network, temporary logon signals can be sent to the network server for updates about the user’s session. When the user logs out of the network, an “accounting shutdown” signal is transmitted and logged on the network, providing information about the time, data transferred, and other information related to the user’s access. This data is sent so that the user can be charged for its use, but it can also be used for security, monitoring or statistics collection purposes.
Protect your devices with Threat Protection by NordVPN
