Module 7: AAA

Question 1

What is AAA?

Answer 1

Authentication, Authorization, Accounting and Auditing

Question 2

What is Authentication?

Answer 2

Users must PROVE their identity before accessing the network

Question 3

What is Authorisation?

Answer 3

Determines which resources a user can access and what operations they are allowed to perform

Question 4

What is Accounting?

Answer 4

Records what the user does and when, what is accessed

Question 5

What is Local AAA?

Answer 5

Uses a local database for AAA authentication

Question 6

What is server based AAA?

Answer 6

the router accesses a AAA server, this contains all the usernames and passwords

Question 7

What protocols does a router use to access the AAA Server?

Answer 7

TACACS or RADIUS

Question 8

What is LDAP

Answer 8

Lightweight Directory Access Protocol

Question 9

What is Cisco Identity Services Engine (ISE)?

Answer 9

it is a identity and access control policy platform

Question 10

What transport protocol does TACACS use

Answer 10

TCP

Question 11

What transport protocol does RADIUS use

Answer 11

UDP

Question 12

What is the difference in encryption between TACACS and RADIUS

Answer 12

TACACS encrypts the whole packet whilst RADIUS only encrypts the password.

Question 13

Which protocol combines authentication and authorisation as one process.

Answer 13

RADIUS

Question 14

What is step 1 to enable server based AAA?

Answer 14

Globally enable AAA

Question 15

What is step 2 to enable server based AAA?

Answer 15

Specify the server

Question 16

What is step 3 to enable server based AAA?

Answer 16

Configure the encryption key

Question 17

What is step 4 to enable server based AAA?

Answer 17

Configure the AAA authentication method list