Chapter 6. Authentication, Authorization, and Accounting

An important part of network security is authentication, authorization, and accounting, collectively known as AAA. AAA is a framework, similar to the security models discussed in Chapter 2, in which an administrator can maintain access control over network devices.

AAA covers access control over routers, switches, firewalls, servers, and so forth. Just about any network device that is not a workstation, and allows remote access, can fall under AAA policies. AAA is not a protocol in and of itself; instead, it is a set of guidelines promoted by the IETF that outlines how access protocols should behave to optimize their security benefits.

The most commonly used protocols associated with AAA ...

Get The Practice of Network Security: Deployment Strategies for Production Environments now with O’Reilly online learning.

O’Reilly members experience live online training, plus books, videos, and digital content from 200+ publishers.