Chapter 7 - Implementing AAA Using IOS and the ACS Server Flashcards
What does ACS stand for?
Access Control Server
What is the main purpose of an ACS server?
It’s a way to centrally manage users and control what those users are authorized to do.
It may be time-consuming to set up all usernames and passwords on an ACS server. What could you set up the ACS server to connect to instead to save some time?
The ACS server can use an external database that already exists that contains the usernames and passwords such as Active Directory.
What does ISE stand for?
Identity Services Engine
What 2 main protocols may be used between the ACS server and its client?
TACACS+ and RADIUS
What does TACACS+ stand for?
Terminal Access Control Access Control Server
What does RADIUS stand for?
Remote Authentication Dial-In User Service
Which protocol encrypts each packet before it is sent on the network?
TACACS+
Which protocol encrypts passwords, but no other packets being sent?
RADIUS
Which protocol is an open standard and supported by nearly all vendors’ AAA implementation?
RADIUS
What L4 protocol does TACACS+ use?
TCP
What L4 protocol does RADIUS use?
UDP
Which protocol separates AAA functions into distinct elements. Authentication is separate from authorization, and both of those are separate from accounting?
TACACS+
Which protocol is Cisco proprietary, but very well known?
TACACS+
Which protocol combines many of the functions of authentication and authorization together and has detailed accounting capability when accounting is configured for use?
RADIUS