Term
| Answers the question "what did you do?" |
|
Definition
|
|
Term
| Answers the question "who are you?" |
|
Definition
|
|
Term
| Usernames and passwords are stored in a central server loc and shared among many dev's |
|
Definition
| Server-based AAA Authentication |
|
|
Term
| Unames and pwords are stored on teh router or switch's memory |
|
Definition
|
|
Term
| A user wants to access teh device for administrative mode |
|
Definition
|
|
Term
|
Definition
|
|
Term
| Answers the question "what are you allowed to do?" |
|
Definition
|
|
Term
Privilege mode access
vty access
network AAA command
login AAA command
ppp AAA command
console access
exec AAA command
enable AAA command |
|
Definition
|
|
Term
|
Definition
|
|
Term
| What is the max number of auth methods permitted using AAA |
|
Definition
|
|
Term
| A system has 2 AAA auth methods configured, if the user is denied access by the first method, the second will be checked. T/F |
|
Definition
|
|
Term
| an admin issues AAA new-model but no other aaa commands. Local uname has been set, which type of login will require a password |
|
Definition
|
|
Term
| What is a primary difference between "AAA local authentication attempts max-fail" and the "login delay" commands? |
|
Definition
| The aaa command locks the user out until teh admin releases the account, whereas login delay does not require intervention |
|
|
Term
Entire packet is encrypted
router command auth per-user or per-group
separates all components of AAA
TCP port 49
Bidirectional challenge and response
Primarily Cisco supported
limited accounting |
|
Definition
|
|
Term
Unidirectional server challenge response
Supports 802.1x and SIP
Uses port 1645 or 1812 for authorization
Combines authenticaiton and authorization, separates accounting
Only the password is encrypted
UDP port 1646 or 1813 for accounting
Extensive Accounting |
|
Definition
|
|
Term
| Cisco's AAA server is called... |
|
Definition
|
|
