The simplest form of authentication is passwords. Packet – Used for Remote network access on async, BRI ec. AAA can be configured for login, exec and enable. Character – Used for remote administrative access to VTY,TTY, Aux and Console. Local Database (running config) – Local ‘username xxx password xxx’ database. AAA can be used for PPP, VTY, Console, AUX VPN and othersĪuthorization - defines what the user can do.Īccounting - logs actions performed by the user. often implemented by large organizations.Īuthentication - what user can log in. fault tolerant because multiple servers can be configured, very scalable because all infrastructure devices access a central server, a Cisco Secure Access Control Server (ACS). a local username and password database, The policy specifies how network administrators, corporate users, remote users, business partners, and clients access network resources.Ĭisco IOS routers can be configured to use AAA to access : These design specifications are identified in the network security policy. RADIUS (Remote Authentication Dial-In User Services).Ī network must be designed to control who is allowed to connect to it and what they are allowed to do when they are connected. TACACS+ (Terminal Access Control Access-Control Server Plus),
0 Comments
Leave a Reply.AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |