means to declare who (authentication) can access the network, what (authorization) the users
can do, and what (tracking or accounting) the user has done. AAA provides a method to control
and configure these three independent security functions.
accounting and is used in many of the BCRAN classes as the AAA server. This does not mean
that CiscoSecure is the only AAA server. CiscoSecure is only one of the AAA server software
packages that is available. CiscoSecure comes bundled with the following:
accounting.
GUI Admin Client. Admin Client enables the administrator to manage the CiscoSecure
ACS database through Netscape or Internet Explorer. The Web-based interface enables
logins to the ACS database to perform system administrator tasks. ACS stores these
modifications in its relational database management system (RDBMS) (or in another
supported RDBMS).
Sybase Enterprise database applications because it uses the open database connectivity
(ODBC) interface. The RDBMS that is bundled with the CiscoSecure package is
SQLAnywhere and is a nonscalable RDBMS.
password are checked against the AAA database. Also, depending on the protocol, AAA
supports encryption.
network. This process is only one of the components for user control with AAA. Once the
userid and password are accepted, AAA can be used to define what the user is then authorized
to do.