Ch. 6: Configuring Basic Switch Management Flashcards
local username
A username (with matching password), configured on a router or switch. It is considered local because it exists on the router or switch, and not on a remote server.
AAA
Authentication, authorization, and accounting. Authentication confirms the identity of the user or device. Authorization determines what the user or device is allowed to do. Accounting records information about access attempts, including inappropriate requests.
AAA server
A server that holds security information and provides services related to user login, particularly authentication (is the user who he says he is?), authorization (once authenticated, what do we allow the user to do?), and accounting (tracking the user).
VLAN interface
A configuration concept inside Cisco switches, used as an interface between IOS running on the switch and a VLAN supported inside the switch, so that the switch can assign an IP address and send IP packets into that VLAN.
history buffer
In a Cisco router or switch, the function by which IOS keeps a list of commands that the user has used in this login session, both in EXEC mode and configuration mode. The user can then recall these commands for easier repeating or making small edits and issuing similar commands.
DNS
Domain Name System. An application layer protocol used throughout the Internet for translating hostnames into their associated IP addresses.
name resolution
The process by which an IP host discovers the IP address associated with a hostname, often involving sending a DNS request to a DNS server, with the server supplying the IP address used by a host with the listed hostname.
line console 0
Changes the context to console configuration mode.
line vty (1st-vty last-vty)
Changes the context to vty configuration mode for the range of vty lines listed in the command.
login
Console and vty configuration mode. Tells IOS to prompt for a password.
password (pass-value)
Console and vty configuration mode. Lists the password required if the login command (with no other parameters) is configured.
login local
Console and vty configuration mode. Tells IOS to prompt for a username and password, to be checked against locally configured username global configuration commands on this switch or router.
username (name) secret (pass-value)
Global command. Defines one of possibly multiple usernames and associated passwords, used for user authentication. Used when the login local line configuration command has been used.
crypto key generate rsa [modulus 360..2048]
Global command. Creates and stores (in a hidden location in flash memory) the keys required by SSH.
transport input {telnet | ssh | all | none}
vty line configuration mode. Defines whether Telnet/SSH access is allowed into this switch. Both values can be configured on one command to allow both Telnet and SSH access (the default).