Chapter3.Authentication Configuration on Cisco Routers

Chapter 3. Authentication Configuration on Cisco Routers

In this chapter, you learn the following topics:

• Local authentication

• Authentication configurations using Cisco Secure ACS for Windows Server and Cisco Secure ACS Solution Engine

• Debugging authentication

• Authentication command references

Authentication, authorization, and accounting (AAA) is an integral component in today's networks. AAA is configurable on most Cisco products and can play an important role in securing and managing Cisco networks.

This chapter provides a configuration overview to the authentication component of AAA, as well as configuration examples of some of the authentication methods discussed. In addition, it includes a discussion of command references for Cisco IOS Release 12.0 through 12.3 to help you to locate the right commands to use on your network devices.

NOTE

As you read this chapter, note that Cisco products support different methods for performing AAA authentication. These methods include the following:

• Local Authentication No external user database is used in the authentication, and all user passwords are stored on the router.

• Cisco Secure ACS for Windows Server An external server is used along with the TACACS+ or RADIUS protocol to communicate between the user database and the Cisco router for authentication.

• Cisco Secure ACS Solution Engine This is similar to the previous bullet point; however, the Solution Engine is a dedicated appliance.