Configuring AAA for Cisco Perimeter Routers

The remainder of this chapter describes how to configure a Cisco perimeter router to perform AAA using a local database.

Authenticating Perimeter Router Access

Following the Cisco SAFE axiom that all routers are targets, it is important that you secure your network access servers and Internet routers at all interfaces.

As Figure 2-15 illustrates, you must configure the perimeter router to secure administrative access and remote LAN network access using AAA commands.

Figure 2-15. Authenticating Perimeter Router Access

Table 2-2 compares the router access modes, port types, and AAA command elements.

Get CCSP Self-Study: Securing Cisco IOS Networks (SECUR) now with O’Reilly online learning.

O’Reilly members experience live online training, plus books, videos, and digital content from 200+ publishers.