Summary


This chapter has provided information to configure some of the enhanced options in ACS, including the following topics:

  • Downloadable PIX ACLs can add functionality to a network by providing a central repository for policy against multiple firewalls, as well as a policy that follows a user as opposed to a machine.

  • Shared NARs add another layer of authorization based on the AAA client that users access a network through.

  • Command authorization sets allow a network administrator to protect the availability of the command line on network devices. This can prove to protect new administrators from the embarrassment of issuing an incorrect command, and the network from possible down time.

These options can be used together or as standalone configurations. They can greatly enhance the control of a secure network.

In the next chapter, "System Configuration," you will learn about external database configuration, database replication, database backup, and synchronization.




Cisco Access Control Security(c) AAA Administrative Services
Cisco Access Control Security: AAA Administration Services
ISBN: 1587051249
EAN: 2147483647
Year: 2006
Pages: 173

flylib.com © 2008-2017.
If you may any questions please contact us: flylib@qtcs.net