Network Auth and Security Chapter 7

Ace your homework & exams now with Quizwiz!

When a method list for AAA authentication is being configured, what is the effect of the keyword local? -It uses the enable password for authentication. -It defaults to the vty line password for authentication. -It accepts a locally configured username, regardless of case. -The login succeeds, even if all methods return an error.

It accepts a locally configured username, regardless of case.

What is a feature of the TACACS+ protocol? -It combines authentication and authorization as one process. -It encrypts the entire body of the packet for more secure communications. -It utilizes UDP to provide more efficient packet transfer. -It hides passwords during transmission using PAP and sends the rest of the packet in plaintext.

It encrypts the entire body of the packet for more secure communications.

Which term describes the ability of a web server to keep a log of the users who access the server, as well as the length of time they use it? -Authentication. -Assigning permissions. -Accounting. -Authorization.

Accounting.

What does the TACACS+ protocol provide in a AAA deployment? -Authorization on a per-user or per-group basis. -AAA connectivity via UDP. -Password encryption without encrypting the packet. -Compatibility with previous TACACS protocols.

Authorization on a per-user or per-group basis.

Which component of AAA is used to determine which resources a user can access and which operations the user is allowed to perform? -Authentication. -Authorization. -Accounting. -Auditing

Authorization.

What is the first required task when configuring server-based AAA authentication? -Configure the IP address of the server. -Specify the type of server providing the authentication. -Enable AAA globally. -Configure the type of AAA authentication.

Enable AAA globally.

Which functionality does the TACACS single-connection keyword provide to AAA services? -Allows the use of differing keys between the TACACS+ server and the AAA client. -Maintains a single UDP connection for the life of the session. -Encrypts the data transfer between the TACACS+ server and the AAA client. -Enhances the performance of the TCP connection

Enhances the performance of the TCP connection

What is the purpose of the network security accounting function? -To keep track of the actions of a user. -To provide challenge and response questions. -To require users to prove who they are. -To determine which resources a user can access.

To keep track of the actions of a user.

A user complains about not being able to gain access to a network device configured with AAA. How would the network administrator determine if login access for the user account is disabled? -Use the show aaa local user lockout command. -Use the show aaa user command. -Use the show running-configuration command. -Use the show aaa sessions command.

Use the show aaa local user lockout command.

What is a characteristic of AAA accounting? Question options: -Accounting can only be enabled for network connections. -Possible triggers for the aaa accounting exec default command include start-stop and stop-only. -Users are not required to be authenticated before AAA accounting logs their activities on the network. -Accounting is concerned with allowing and disallowing authenticated users access to certain areas and programs on the network.

Possible triggers for the aaa accounting exec default command include start-stop and stop-only.

Which statement describes a difference between RADIUS and TACACS+? -RADIUS encrypts only the password whereas TACACS+ encrypts all communication. -RADIUS uses TCP whereas TACACS+ uses UDP. -RADIUS separates authentication and authorization whereas TACACS+ combines them as one process. -RADIUS is supported by the Cisco Secure ACS software whereas TACACS+ is not. -Neither RADIUS nor TACACS+ is supported by the Cisco Secure ACS software.

RADIUS encrypts only the password whereas TACACS+ encrypts all communication.


Related study sets

Control of Internal Environment

View Set

Principles Managerial accounting

View Set