Change of Authorization

RADIUS Change of Authorization allows a RADIUS server to send unsolicited messages to the Network Access Server to change the connected client’s authorized state. This could mean anything from disconnecting the client, to sending different attribute value pairs to the Authenticator to change the device’s VLAN/ACL and more.

This feature will allow openNAC to send disconnection requests on the discovered devices (as we can see in the following image), allowing to force re-authentication. If an user device is re-authenticated the plugins will be executed and the information obtained through them will be updated.