Configuring AAA for Cisco Perimeter Routers

The remainder of this chapter describes how to configure a Cisco perimeter router to perform AAA using a local database.

Authenticating Perimeter Router Access

Following the Cisco SAFE axiom that all routers are targets, it is important that you secure your network access servers and Internet routers at all interfaces.

As Figure 2-15 illustrates, you must configure the perimeter router to secure administrative access and remote LAN network access using AAA commands.

Figure 2-15. Authenticating Perimeter Router Access

Table 2-2 compares the router access modes, port types, and AAA command elements.

Get CCSP Self-Study: Securing Cisco IOS Networks (SECUR) now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.