IETF Logo Mail Archive

[radext] Re: New I-D: draft-seralathan-radext-persistent-devid-00

Alexander Clouter <alex+ietf@coremem.com> Tue, 26 May 2026 11:21 UTC

Return-Path: <alex+ietf@coremem.com>
X-Original-To: radext@mail2.ietf.org
Delivered-To: radext@mail2.ietf.org
Received: from localhost (localhost [127.0.0.1]) by mail2.ietf.org (Postfix) with ESMTP id B748BF521154 for <radext@mail2.ietf.org>; Tue, 26 May 2026 04:21:42 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=ietf.org; s=ietf1; t=1779794502; bh=QbBcvptLrRGMWRGt/ZDTCj5sC/TE7g/SzPX73a3Hwds=; h=Date:From:To:Cc:In-Reply-To:References:Subject; b=KYZOzc6dJL/hA/n+YUnDwGzi1gTY/CO7FIudULokciVis28lN0SBAbRx+Mk7jOa6o OmWwr/0fpzgB7hWyzTFs7GvbL0+OTIu+8tXi5wpc83OX01FZJDisYUOyCkSqaK91pB +0w6vog4obvcO6+CUFtP/obt5jol44I1I+2bfCN8=
X-Virus-Scanned: amavisd-new at ietf.org
X-Spam-Flag: NO
X-Spam-Score: -2.797
X-Spam-Level:
X-Spam-Status: No, score=-2.797 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_LOW=-0.7, RCVD_IN_MSPIKE_H2=0.001, RCVD_IN_VALIDITY_CERTIFIED_BLOCKED=0.001, RCVD_IN_VALIDITY_RPBL_BLOCKED=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: mail2.ietf.org (amavisd-new); dkim=pass (2048-bit key) header.d=coremem.com header.b="JBl5CrxC"; dkim=pass (2048-bit key) header.d=messagingengine.com header.b="mmCs6wtx"
Received: from mail2.ietf.org ([166.84.6.31]) by localhost (mail2.ietf.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id GYZzBtSTqbvH for <radext@mail2.ietf.org>; Tue, 26 May 2026 04:21:41 -0700 (PDT)
Received: from fhigh-c2-smtp.messagingengine.com (fhigh-b2-smtp.messagingengine.com [202.12.124.153]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by mail2.ietf.org (Postfix) with ESMTPS id 3BFB1F52109B for <radext@ietf.org>; Tue, 26 May 2026 04:20:44 -0700 (PDT)
Received: from phl-compute-12.internal (phl-compute-12.internal [10.202.2.52]) by mailfhigh.stl.internal (Postfix) with ESMTP id 7A75D7A01C5; Tue, 26 May 2026 07:20:37 -0400 (EDT)
Received: from phl-imap-10 ([10.202.2.85]) by phl-compute-12.internal (MEProxy); Tue, 26 May 2026 07:20:37 -0400
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=coremem.com; h= cc:cc:content-transfer-encoding:content-type:content-type:date :date:from:from:in-reply-to:in-reply-to:message-id:mime-version :references:reply-to:subject:subject:to:to; s=fm2; t=1779794437; x=1779880837; bh=6apRCE3sT0vGh3xVwCVsEif4jxL6w6sNSWDmEZuom30=; b= JBl5CrxC4SQFLlLs+n/zEqgnaAv4ODQf7wejoVRLQ3UWirbH4FXb3X7fnhFp+HXB 1i+tQAkHkmVp2qEjGpzpoSYYFsy1aSEBkClD73KCMuxy/mqvtDfV2+kofVk2BS7v 6J3gbfPi3e/Aal3r5B3YCgackzKB/UgxCvEdGcwgjqbrPim4lRAj+WVJ/ZpStHxD VqS3LiIPCHyYdUZ++ojWGoe04e12jYhA4SqAsk41fajTg7q8p91M1pKixIW1b+uh dl4nKCsuHZqZiz7MuWb75cqsREbEmqb5VDU/wdoQraPa+Mae3lSmuYpv0eUDJIae +f/fQTOQgFDhS73ufSIstw==
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= messagingengine.com; h=cc:cc:content-transfer-encoding :content-type:content-type:date:date:feedback-id:feedback-id :from:from:in-reply-to:in-reply-to:message-id:mime-version :references:reply-to:subject:subject:to:to:x-me-proxy :x-me-sender:x-me-sender:x-sasl-enc; s=fm3; t=1779794437; x= 1779880837; bh=6apRCE3sT0vGh3xVwCVsEif4jxL6w6sNSWDmEZuom30=; b=m mCs6wtxm7dr2XXfKMbPe+M64cF+DZ8wy5jNDnm6vTZH9jEvLMCjaNFsMdr0zMtRT GymdLJwkJj1QKu1+IgEzZhiBw273reEGQmT0NUo/gvJ0OG5yohIlFKKpluCPbF+X IGe0JhvMQDS1ZJV245Oo+/f8ddkrDfT1ON6Kebn/H3ofJXJIgw2pIFlphkFawin/ O23xVoECdysNhJz/SibPs1kkUWM5cmP3iMFZEjdcB+hl3oQTO7HPF8EtyUxYg4Vk +fzUAn31Dnj5gdhbdzP2PnwNfX1O7JQqnqGwsllmTw4FKRAtcT90IqmmY4o0SpjY Oop0LmRMnlTunyZU1X/Ug==
X-ME-Sender: <xms:BYIVaozfZjn2JlnwgP_utcKCyPcCQc8lp_yLQ7Qu9l6NV4rZhHvF4Q> <xme:BYIVanHKQzY4ukWhn59kCg_36Gh3FtBhk1LeqSV9AOFvBEdKVfhXlCT9xjUPAPVtA Qq7BiiHUYKiPzS9pXxGqDx30mNq1X73xeiNeVz7UrN4UpnLizh7>
X-ME-Proxy-Cause: dmFkZTF971oWK0mr8hYRdUuDoPZ37YP7MfIHjsRIIg4neUWZEbQYcNKh7pZjmS4+BHiUt0 n0q5GJIQuiMELqXFwL7xuR6vBO2hAp+AJ1a4e9Sr56sPKDv3GmeOy9k3H2+uicVgR/YYEQ /RIf2gO8hz4AGEES9VZs3wP6OmtwiTacUjT5YlpbZ64zjaW4YUCPyHK5iPz5oSmYEAsBWJ /3m4bqGBjEJZ/yofjT8+oQqdZhkvzqM5zi2hf58CnkbzdRT02kXM4C9aiW37FSFv678GRO QNLEArwsp/gPzTJD+T4PXQ8Zi36IkkyudJZEXb5xKe3SKM+fdLz9w4WJqRGs1MMvAP77p2 Upje+AIi6+LmexLXBjGNRuvvWAHTvMy8LHryyawLqSq1VG1SHdb65b2zeU4E3XQFhLA8wZ 7rA4DZte/mpJIvw26XUgymD0aT/x2OVbPy/mbFA+Tc8yKZg1Jcz8UGhRtDPIrPJGXcD7R+ 7sIj952TyhpZr15ECX08Fo3vhgBp3zR5mBKuT+g2DUHtucY8/mCQZQQAfirWu63LZWb6Ly 9sjsCt0Nh9zTiruWSdiK4sJVtzMOdUw1rK15VlBxhiQl5JrHzBMD8DaTui1CgeR4RZm+yB edkRrsGtRiQNph0j0ylqn1h24xt3v6TI46oRtVfa/sn3YgIsIczM2p9l9l6w
X-ME-Proxy: <xmx:BYIVaiU_KZy-LXdHupcy8XcR9pmDU0S_NUh8jG5ttzxNRtUrUwGcSQ> <xmx:BYIVauuh-OIOCSTbQfdp2FaVoIKztvG2CHJOXm92OnWXwNPsBt2QtA> <xmx:BYIVauUczYHJP3eT6FKbQBHNySHwTQ-qux__k4VY0vJ3wx62oCx4Og> <xmx:BYIVahnMlShQTJmI1ygpROcFiS2bfTLUBdrBL-Q68no62KPVOHEcXw> <xmx:BYIVasffVZU3zedAtzTT0zVhMWfa9s3AEWaPHFA-__dNt4LUePCLLzli>
Feedback-ID: ie3614602:Fastmail
Received: by mailuser.phl.internal (Postfix, from userid 501) id EC18E216008A; Tue, 26 May 2026 07:20:36 -0400 (EDT)
X-Mailer: MessagingEngine.com Webmail Interface
MIME-Version: 1.0
X-ThreadId: AphdW0kk-S67
Date: Tue, 26 May 2026 12:20:16 +0100
From: Alexander Clouter <alex+ietf@coremem.com>
To: Alan DeKok <alan.dekok=40inkbridge.io@dmarc.ietf.org>, "Premanand Seralathan (pseralat)" <pseralat=40cisco.com@dmarc.ietf.org>
Message-Id: <861b4431-a032-40ac-8d2b-a0b2c8ef33ee@app.fastmail.com>
In-Reply-To: <4C8F2356-BE1F-43AC-AC9A-3AAAE136D906@inkbridge.io>
References: <BYAPR11MB37689273BC46B447843F3516CC352@BYAPR11MB3768.namprd11.prod.outlook.com> <C035972D-A954-4449-B1AA-194C7954F27B@inkbridge.io> <BYAPR11MB3768995A3F905845409EF032CC0B2@BYAPR11MB3768.namprd11.prod.outlook.com> <4C8F2356-BE1F-43AC-AC9A-3AAAE136D906@inkbridge.io>
Content-Type: text/plain
Content-Transfer-Encoding: 7bit
Message-ID-Hash: UQ5SJ7FPK3UG7CHMPX7AFRRCQKS44RYH
X-Message-ID-Hash: UQ5SJ7FPK3UG7CHMPX7AFRRCQKS44RYH
X-MailFrom: alex+ietf@coremem.com
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-radext.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: "radext@ietf.org" <radext@ietf.org>
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: [radext] Re: New I-D: draft-seralathan-radext-persistent-devid-00
List-Id: RADIUS EXTensions working group discussion list <radext.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/radext/MgGP1N2XsNz635edkXGMyVOCnxM>
List-Archive: <https://mailarchive.ietf.org/arch/browse/radext>
List-Help: <mailto:radext-request@ietf.org?subject=help>
List-Owner: <mailto:radext-owner@ietf.org>
List-Post: <mailto:radext@ietf.org>
List-Subscribe: <mailto:radext-join@ietf.org>
List-Unsubscribe: <mailto:radext-leave@ietf.org>

On Tue, 26 May 2026, at 11:50, Alan DeKok wrote:
>
> [snipped User-Name/CUI suggestion]
>
> And then the functionality works, without changing anything else in 
> RADIUS.  The main downside here is that there's no separate attribute 
> for persistent device ID.  But I think the main goals of the document 
> are met.

Multiple 'Class' attributes are allowed too.

Section 2.3 of the draft is wrong in stating Class is unsuitable as it is not stable, the value is determined by the RADIUS server so can be set to whatever you want.

This could be solved by using a prefix (for example 'devid:') to colour your device ID value and extract it from the accounting data.

Cheers

Alex

v2.45.0 | Report a Bug | By Email | System Status