4.2 Given a scenario, install and configure identity and access services. Flashcards
Mutual Authentication
A security feature in which a client process must prove its identity to a server, and the server must prove its identity to the client.
Kerberos and MSCHAP
LDAP
Port 389
Secure version port 636
Kerberos
-Allows for a single sign-on to a distributed network(remote Access)
-Uses time sensitive tickets
-port 88
-
Three components of Kerberos
– Ticket Granting Service (TGS)
– Key Distribution Center (KDC)
– Authentication Service (AS)
RADIUS
A AAA server that allows authentication of remote and other network connections.
port 1812 for authentication and authorization
port 1813 for accounting.
If you see a question about RADIUS and one of the answer has 802.1X then that is the answer
If you see a question about RADIUS and one of the answer has 802.1X then that is the answer
TACACS+
A Cisco Proprietary AAA Server. TCP Port 49
Challenge Handshake Authenticate Protocol
CHAP - Challenge handshake process.
MSCHAP
Microsoft’s proprietary version of CHAP
Mutual Authentication
legacy
SAML
Single Sign on Over the web
based on XML
Federated ID
OAUTH
SSO for mobile device applications
OpenID Connect
SSO in Smart Device applications
Shibboleth
SSO Within Private Networks
NTLM
password hash storage system - Legacy
on the exam If you see something called PASS THE HASH - the answer is NTLM
What mechanism is used to support the exchange of authentication and authorization details between systems, services, and devices? A. Biometric B. Two-factor authentication C. SAML D. LDAP
C. SAML