Scribd Logo
Upload

Welcome to Scribd!

  • AAA Characteristics

    Uploaded by

    ssaattf506
    4 views7 pages
    AAA (Authentication, Authorization, and Accounting) is a security framework that provides authentication, authorization and accounting services. There are two common methods for implementing AAA - Local AAA Authentication, where authentication is performed by the device itself using a local database, and Server-Based AAA Authentication, where authentication is performed by an external server using protocols like RADIUS or TACACS+. AAA provides authentication to verify users, authorization to control user access to resources, and accounting to track resource usage.

    Original Description:

    Original Title

    Aaa

    Copyright

    © © All Rights Reserved

    Available Formats

    PPTX, PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    AAA (Authentication, Authorization, and Accounting) is a security framework that provides authentication, authorization and accounting services. There are two common methods for implementing AAA - Local AAA Authentication, where authentication is performed by the device itself using a local database, and Server-Based AAA Authentication, where authentication is performed by an external server using protocols like RADIUS or TACACS+. AAA provides authentication to verify users, authorization to control user access to resources, and accounting to track resource usage.

    Copyright:

    © All Rights Reserved
    Download as PPTX, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    4 views7 pages

    AAA Characteristics

    Uploaded by

    ssaattf506
    AAA (Authentication, Authorization, and Accounting) is a security framework that provides authentication, authorization and accounting services. There are two common methods for implementing AAA - Local AAA Authentication, where authentication is performed by the device itself using a local database, and Server-Based AAA Authentication, where authentication is performed by an external server using protocols like RADIUS or TACACS+. AAA provides authentication to verify users, authorization to control user access to resources, and accounting to track resource usage.

    Copyright:

    © All Rights Reserved
    Download as PPTX, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 7

    AAA 1

    Characteristics
    Lecture 4: ‫ قسم الحاسب اآللي وتقنية المعلومات‬/ ‫كلية التقنية بحائل‬

    1 AAA Characteristics
    2 Configure Local AAA Authentication
    Server-Based AAA Characteristics & Protocols 3
    Configure Server-Based Authentication 4
    Configure Server-Based Authorization & 5
    Accounting
    AAA Characteristics 1 ‫ قسم الحاسب اآللي وتقنية المعلومات‬/ ‫الكلية التقنية بحائل‬

    R1(config)# line vty 0 4


    R1(config-line)# password cisco134
    R1(config-line)# login
    User Access Verification
    Password: cisco
    Password: cisco1
    Internet Password: cisco12
    Bad passwords %

    The simplest method of remote access authentication is to configure a login and


    password combination on console, vty lines, and aux ports, as shown in the figure.
    ‫إن أبس ط طريق ة لمص ادقة الوص ول عن بع د هي تك وين تركيب ة تس جيل ال دخول وكلم ة الم رور على وح دة التحكم‬
    .‫ كما هو موضح في الشكل‬، aux ‫ ومنافذ‬vty ‫وخطوط‬
    AAA Characteristics 1 ‫ قسم الحاسب اآللي وتقنية المعلومات‬/ ‫الكلية التقنية بحائل‬

    R1(config)# username Ali secret Str0ng5rPa55w0rd


    R1(config)# line vty 0 4
    R1(config-line)# login local

    User Access Verification


    Username: Admin
    Password: cisco1
    Internet Login invalid %
    Username: Admin
    Password: cisco12
    Login invalid %

    SSH is a more secure form of remote access. It requires both a username and a
    password, both of which are encrypted during transmissions. The local database method
    has some limitations. The user accounts must be configured locally on each device.
    ‫إن أبس ط طريق ة لمص ادقة الوص ول عن بع د هي تك وين تركيب ة تس جيل ال دخول وكلم ة الم رور على وح دة التحكم‬
    .‫ كما هو موضح في الشكل‬، aux ‫ ومنافذ‬vty ‫وخطوط‬
    AAA Characteristics 1 ‫ قسم الحاسب اآللي وتقنية المعلومات‬/ ‫الكلية التقنية بحائل‬

    Network and administrative AAA security in the Cisco environment has three
    functional components:
    Authentication - Users and administrators must prove their identity before
    accessing the network and network resources.
    Authorization - After the user is authenticated, authorization services
    determine which resources the user can access and which operations the
    user is allowed to perform.
    Accounting - Accounting records what the user does, including what is
    accessed, the amount of time the resource is accessed, and any changes that
    were made. Accounting keeps track of how network resources are used.
    AAA Characteristics 1 ‫ قسم الحاسب اآللي وتقنية المعلومات‬/ ‫الكلية التقنية بحائل‬

    (Authentication)
    Cisco provides two common methods of implementing AAA services:
    Local AAA Authentication -Local AAA uses a local database for
    authentication. This method is sometimes known as self-
    contained authentication. In this course, it will be referred to as
    local AAA authentication.

    Server-Based AAA Authentication - With the server-based


    method, the router accesses a central AAA server, such as the
    Cisco Secure Access Control System (ACS) for Windows, which is
    shown in the figure. The central AAA server contains the
    usernames and password for all users. The router uses either
    the Remote Authentication Dial-In User Service (RADIUS) or
    Terminal Access Controller Access Control System (TACACS+)
    protocols to communicate with the AAA server.
    • Local AAA Authentication is a method of authentication where the
    authentication process is performed by the device itself.

    • Server-Based AAA Authentication is a method of authentication


    where the authentication process is performed by a server.

    You might also like