Post by S. Pidgorny <MVP>Cannot easily do that with RADIUS, as even if you change policy - RRAS will
keep port open until the next authentication event.
You have to be really creative with RAS ... Can yu give details of your
scenario?
Scenario is simple, users are connecting to RADIUS-controlled W2003 RRAS
server. We need a way to disconnect them via RADIUS or SNMP protocol
remotelly, from billing or NMS for example. There are thirdparty SNMP
extension agents for RRAS monitoring but not for control. Also found info
about RFC 3576 RADIUS protocol extension but I think it is not supported
in W2003 RADIUS client.
IMHO simplest way to get things done are SNMP extension agent (DLL) coding
to control RAS directly via RAS API calls. Another way is implementing RFC
3576 RADIUS protocol extension bothside.