Overview

This module will present an overview of the authentication, authorization, and accounting (AAA) architecture and show its importance of identity services in network security. AAA security is one of the primary components of the overall network security policy of an organization. AAA is essential to providing secure remote access to the network and remote management of network devices. After a brief discussion of AAA, several authentication methods will be discussed.

Cisco Identity Based Networking Services (IBNS) and Network Admission Control (NAC) are also introduced in this module. IBNS is an integrated solution combining several Cisco products that offer authentication, access control, and user policies to secure network connectivity and resources. NAC is an industry initiative, sponsored by Cisco Systems, that uses the network infrastructure to enforce security policy compliance on all devices seeking to access network computing resources, thereby limiting damage from viruses and worms.

PIX Security Appliance Command Reference

Cisco IOS Security Command Reference

NOTE:

It is required that the student study the commands covered in the chapter using the labs and the Command Reference. Not all required commands are covered in sufficient detail in the text alone. Successful completion of this course requires a thorough knowledge of command syntax and application.