Term
| Cisco Secure ACS for Windows server |
|
Definition
| AAA services on the router contacts a Cisco Secure Access Control Server (ACS) system for user and administrator authentication |
|
|
Term
| Cisco Secure ACS Solution engine |
|
Definition
| AAA services on the router or NAS, contact an external Cisco Secure ACS Solution Engine for user and administrator authentication |
|
|
Term
- The client establishes a connection with the router.
- The AAA router prompts the user for a username and password.
- The router authenticates the username and password using a remote AAA server.
- The user is authorized to access the network based on information on the remote AAA Server.
|
|
Definition
| Server based AAA authentication steps |
|
|
Term
|
Definition
Provides the method for collecting and sending security server information.
Used for billing, auditing, and reporting
Router reports user activity to the TACACS+ security server |
|
|
Term
- Increased flexibility and control of access configuration
- Scalability
- Multiple backup systems
- Standardized authentication methods
- RADIUS, TACACS+, Kerberos |
|
Definition
|
|
Term
|
Definition
Standardized authentication methods
|
|
|
Term
|
Definition
| protocols used to communicate between the clients and the AAA servers |
|
|
Term
|
Definition
It does not encrypt user names, accounting information, or any other information carried in the radius message
-only encrypts the user password |
|
|
Term
|
Definition
| combines authentication and authorization as one process which means that when a user is authenticated, that user is also authorized |
|
|
Term
|
Definition
| widely used by VoIP service providers because it passes login credentials of a session initiation protocol (SIP) endpoint, such as a broadband phone |
|
|
Term
|
Definition
| determine which resources the user can access and which operations the user is allowed to perform. |
|
|
Term
|
Definition
A user sends a request to establish an EXEC mode process with the router for administrative purposes
(EXEC authorization) |
|
|
Term
|
Definition
A user sends a request to establish a connection through the router with a device on the network.
(network authorization) |
|
|
Term
| Managing Admin Access Methods |
|
Definition
- Password only
- Local database
- AAA Local Authentication (self-contained AAA)
- AAA Server-based
|
|
|
Term
|
Definition
| is automatically applied to all interfaces if no other method list is defined. |
|
|
Term
|
Definition
must be applied to a specific interface before any of the defined authentication methods will be performed
identifies the list of authentication methods activated when a user logs in. |
|
|
Term
|
Definition
| a sequential list describing the authentication methods to be queried for authenticating a user. Enable an administrator to designate one or more security protocols for authentication |
|
|
Term
|
Definition
| a single solution that offers AAA services using TACACS+ or RADIUS |
|
|
Term
|
Definition
| enables AAA for logins, vty, line con 0, TTY |
|
|
Term
|
Definition
| enables AAA for EXEC mode access |
|
|
