Chapter 6 Flashcards
Authentication confirms the identity of the user or device. Authorization determines what the user or device is allowed to do. Accounting records information about access attempts, including inappropriate requests.
AAA
A server that holds security information and provides services related to user login, particularly authentication (is the user who he says he is?), authorization (once authenticated, what do we allow the user to do?), and accounting (tracking the user).
AAA Server
On an IP host, the IP address of some router to which the host sends packets when the packet’s destination address is on a subnet other than the local subnet.
default gateway/default router
An application layer protocol used throughout the Internet for translating hostnames into their associated IP addresses.
DNS
A part of the Cisco IOS CLI in which the user can use the most powerful and potentially disruptive commands on a router or switch, including the ability to then reach configuration mode and reconfigure the router.
Enable Mode
In a Cisco router or switch, the function by which IOS keeps a list of commands that the user has used in this login session, both in EXEC mode and configuration mode. The user can then recall these commands for easier repeating or making small edits and issuing similar commands.
history buffer
A username (with matching password), configured on a router or switch. It is considered local because it exists on the router or switch, and not on a remote server.
local username
The process by which an IP host discovers the IP address associated with a hostname, often involving sending a DNS request to a DNS server, with the server supplying the IP address used by a host with the listed hostname.
name resolution
A TCP/IP application layer protocol that supports terminal emulation between a client and server, using dynamic key exchange and encryption to keep the communications private.
Secure Shell (SSH)
The standard terminal-emulation application layer protocol in the TCP/IP protocol stack. Used for remote terminal connection, enabling users to log in to remote systems and use resources as if they were connected to a local system.
Telnet
A configuration concept inside Cisco switches, used as an interface between IOS running on the switch and a VLAN supported inside the switch, so that the switch can assign an IP address and send IP packets into that VLAN.
VLAN interface
