This helps to limit the services available to a user. Once you enable authorization, the network servers use the information taken from the user's profile. The user's profile can be configured using a local database or external servers. Depending on the configuration of a user's profile, the user is allowed or denied access to a particular resource.
Implementing Cisco AAA - authorization
by Vijay Anandh, Michael Vinod, Glen D. Singh
CCNA Security 210-260 Certification Guide
- Title Page
- Copyright and Credits
- Packt Upsell
- Contributors
- Preface
- Exploring Security Threats
- Delving into Security Toolkits
- Understanding Security Policies
- Deep Diving into Cryptography
- Implementing the AAA Framework
- Components of AAA
- Implementing Cisco AAA - authentication
- Issues with authentication 
- Implementing Cisco AAA - authorization
- Implementing Cisco AAA - accounting
- Summary
- Securing the Control and Management Planes
- Introducing the security policy
- Technologies to implement secure management network
- Planning considerations for secure management
- Log messaging implementation for security
- Control Plane Policing
- Summary
- Protecting Layer 2 Protocols
- Layer 2 attack mitigation
- Features of the Virtual Local Area Network
- VLAN tagging
- Features of trunking
- VLAN Trunking Protocol
- Spanning Tree Protocol fundamentals
- Port states
- Steps in implementing STP
- Cisco Discovery Protocol
- Layer 2 protection toolkit
- Protecting with a BPDU guard
- Protecting with root guard
- Combating DHCP server spoofing
- Mitigating CAM-table overflow attacks
- MAC spoofing attack
- Port security configuration
- LAB: securing Layer 2 switches
- Lab-port security
- Summary
- Protecting the Switch Infrastructure
- Exploring Firewall Technologies
- Cisco ASA
- Cisco ASA portfolio
- ASA features
- Basic ASA configuration
- Viewing the filesystem
- Setting a hostname
- Setting the clock
- Assigning a domain name to the ASA
- Securing access to the privilege exec mode
- Saving the configurations
- Setting a banner
- Assigning IP addresses on the interfaces
- Setting a default static route
- Creating a local user account
- Remote access
- Configuring Port Address Translation
- Setting up the Adaptive Security Device Manager
- Getting familiar with the ASDM
- Summary
- Advanced ASA Configuration
- Routing on the ASA
- Device name, passwords, and domain name
- Setting banners using the ASDM
- Configuring interfaces
- System time and Network Time Protocol
- Dynamic Host Configuration Protocol
- Access control list on the ASA
- Object groups
- Creating policies on the ASA
- Advanced NAT configurations
- Summary
- Configuring Zone-Based Firewalls
- Zone-Based Firewall terminologies
- Overview of Cisco Common Classification Policy Language
- Configuring a Zone-Based Firewall
- Configuring a Cisco IOS router to use Cisco Configuration Professional (CCP)
- Using Cisco Configuration Professional (CCP) to configure the Zone-Based Firewall
- Using the command-line interface to configure the Zone-Based Firewall
- Step 1 – Creating the zones
- Step 2 – Identifying traffic by using Class Maps
- Step 3 – Defining an action using policy maps
- Step 4 – Identifying a zone-pair and creating match to a policy
- Step 5 – Assigning the zones to the interfaces
- Step 6 – Creating an ACL for access into the DMZ from any source
- Summary
- IPSec – The Protocol that Drives VPN
- Configuring a Site-to-Site VPN
- Configuring a Remote-Access VPN
- Working with IPS
- Application and Endpoint Security
- Other Books You May Enjoy
Implementing Cisco AAA - authorization
-
No Comment
..................Content has been hidden....................
You can't read the all page of ebook, please click here login for view all page.