Controlling and Monitoring Users with AAA

AAA stands for Authentication, Authorization, Accounting.

It is a framework for controlling and monitor users of a computer system.

  • Authentication is the process of verifying a user's identity.

    • logging in = authentication

  • Authorization is the process of granting the user the appropriate access and permissions.

    • granting the user access to some files/services, restricting access to other files/services = authorization.

  • Accounting is the process of recording the user's activities on the system.

    • logging when a user makes a change to a file = accounting.

Enterprises typically use a AAA server to provide AAA services.

  • ISE (Identity Services Engine) is Cisco's AAA server.

AAA servers usually support the following two AAA protocols:

  • RADIUS: an open standard protocol. Uses UDP ports 1812 and 1813.

  • TACACS+: A Cisco propriety protocol. Uses TCP port 49.

PreviousDigital certificatesNextSecurity Program Elements

Last updated