authentication & authorization VPN clients Flashcards
wat is een remote access policy + de elementen uitgelegd (getallen zijn onderdelen kijk screenshot samenvatting) + de volgorde wat als eerste wat gechecked en wat als laatste
A remote access policy is a named rule that consists of the following elements:
1 Conditions one or more that are compared tot he setting of
the connection attempt
3 Remote access permission if all conditions of a remote access
policy are met, remote access
permission is either granted or
denied
2 Profile a set of properties that are applied to a
connection when it is authorized (either
through the user account or policy
permission settings)
volgorde:
eerst moet je aan de conditions voldoen
dan checken we of je mag binnenbellen
als laatst controlleren we of je netwerkverbinding, instellingen, authentication protocols aan de nodige eisen voldoen
(bv: mag niet tijdens het weekend bellen -> userX heeft “grant dialin” permission -> user moet MS-CHAP v2 gebruiken als authentication protocol
eigenschappen/uitleg RADIUS
RADIUS is a widely deployed protocol based on a client/server model that enables centralized authentication, authorization, and accounting for network access
RADIUS is the standard for managing network access for VPN, dial-up, and wireless networks
Use RADIUS to manage network access centrally across many types of network access
RADIUS servers receive and process connection requests or accounting messages from RADIUS clients or proxies
hoe werkt centralized authentication
1: dials in to a local RADIUS client to gain network connectivity
2: forwards requests to a RADIUS server
3: authenticates requests and stores accounting information
4: communicates to the RADIUS client to grant or deny access
