Course Details

Previous Page


Cisco IINS 2.0: Securing the Management Plane and AAA Configuration


Overview/Description
Target Audience
Expected Duration
Lesson Objectives
Course Number



Overview/Description
Authentication, authorization, and accounting (AAA) solutions are widely supported in Cisco IOS Software as an additional security service available for securing access to network devices and networks. One of the options you have when configuring your network to work with AAA is to use a local username and password database to provide security greater than a simple password. It is likely that smaller organizations will configure AAA to operate locally. This course presents an introduction to implementing AAA. It describes how to securely implement the management and reporting features of Cisco IOS devices, including the following technologies: syslog, Network Time Protocol (NTP), Secure Shell (SSH), Simple Network Management Protocol version 3 (SNMPv3), and AAA. Additionally, some design aspects of a management infrastructure are examined. Cisco Secure Access Control Server (ACS) for Windows provides a centralized identity networking solution and simplified user management experience across all Cisco devices and security management applications. This course finishes up by discussing what Cisco Secure ACS is and what you can use it for, the requirements for installing Cisco Secure ACS for Windows, the Cisco Secure ACS installation procedure, and its configuration for router AAA services.

Target Audience
Network designers, administrators, engineers, and managers; systems engineers; individuals seeking the Implementing Cisco IOS Network Security (IINS) v2.0 640-554 certification, which is associated with the CCNA Security certification exam. Knowledge and skills equivalent to those learned in Interconnecting Cisco Networking Devices Part 1 (ICND1) are required, and a working knowledge of the Windows operating system and Cisco IOS networking and concepts is recommended.

Expected Duration (hours)
2.0

Lesson Objectives

Cisco IINS 2.0: Securing the Management Plane and AAA Configuration

  • identify principles for in-band management of the management architecture
  • sequence the commands to configure views limit the privileges of users at the CLI by configuring views
  • recognize true statements about the use of method lists in CCP
  • identify commands for configuring AAA for local authentication using CCP
  • match syslog severity levels with examples
  • match SNMP security levels with the security mechanism used at this level
  • configure and verify authenticated NTP
  • implement role-based access control
  • configure syslog monitoring
  • create a custom AAA authentication list
  • describe Cisco Secure ACS features used in a management protection strategy
  • compare the TACACS+ and RADIUS AAA protocols
  • match AAA accounting parameters with their definitions
  • sequence steps to configure Cisco Secure ACS for device administration
  • identify the CLI commands used to verify the correct configuration of the router
  • Course Number:
    cc_cins_a04_it_enus