Please enable JavaScript.
Coggle requires JavaScript to display documents.
AAA Concepts (AAA Components (Authentication (Verifies user name, Verifies…
AAA Concepts
AAA Components
Authorization
Assigns Privilige levels
Accounting
Audit trail
Authentication
Verifies user name
Verifies password
Techniques for implementing AAA
Using Cisco Secure ACS solution Engine
Scalable
Centralized local database
Using Identity Service Unit (ISE)
Centralized management
Applicable on wired and wireless technologies
Using Local Data base
Tedious for larger organizations
Takes extra space for configuration
No central management
Integrating AAA with AD
Identity Stores
Internal Identity Store
External Identity Store
Active Directory
Lightweight Directory Access Protocol (LDAP)
Security protocols of AAA
RADIUS
Open source
Encrypts only password
Good Accounting features
Less granular control over authorization
TACACS
Cisco proprietary
encrypts full packet
More granular authorization