Presentation is loading. Please wait.

Presentation is loading. Please wait.

© 2015 Mohamed Samir YouTube channel All rights reserved. www.mohamedsamir.comMohamed Samir CCNP-SWITCHING 300-115 Mohamed Samir YouTube channel Double.

Published byGinger Horton Modified over 9 years ago

Similar presentations

Presentation on theme: "© 2015 Mohamed Samir YouTube channel All rights reserved. www.mohamedsamir.comMohamed Samir CCNP-SWITCHING 300-115 Mohamed Samir YouTube channel Double."— Presentation transcript:

1 © 2015 Mohamed Samir YouTube channel All rights reserved. www.mohamedsamir.comMohamed Samir CCNP-SWITCHING 300-115 Mohamed Samir YouTube channel Double CCIEs #27042(R/S&SP)

2 © 2015 Mohamed Samir YouTube channel All rights reserved. www.mohamedsamir.comMohamed Samir Part VII: Securing Switched Networks

3 © 2015 Mohamed Samir YouTube channel All rights reserved. www.mohamedsamir.comMohamed Samir Managing Switch Users

4 © 2015 Mohamed Samir YouTube channel All rights reserved. www.mohamedsamir.comMohamed Samir AAA Authentication: Who is the user? Authorization: What is the user allowed to do? Accounting: What did the user do? AAA functions that are centralized, standardized, resilient, and flexible. Cisco switches can use the following two protocols to communicate with AAA servers: TACACS+: A Cisco proprietary secure and encrypted over TCP port 49 RADIUS: A standards-based uses UDP ports 1812 and 1813 (accounting), but is not completely encrypted

5 © 2015 Mohamed Samir YouTube channel All rights reserved. www.mohamedsamir.comMohamed Samir Configuring Authentication Switch(config)# aaa new-model Switch(config)# username lastresort password MySecretP@ssw0rd Switch(config)# tacacs-server host 192.168.10.10 key t@c@csk3y Switch(config)# tacacs-server host 192.168.10.11 key t@c@csk3y Switch(config)# aaa group server tacacs+ myauthservers Switch(config-sg)# server 192.168.10.10 Switch(config-sg)# server 192.168.10.11 Switch(config-sg)# exit Switch(config)# aaa authentication login myauth group myauthservers local Switch(config)# line vty 0 15 Switch(config-line)# login authentication myauth

6 © 2015 Mohamed Samir YouTube channel All rights reserved. www.mohamedsamir.comMohamed Samir Configuring Authorization Switch(config)# aaa authorization {commands | config-commands| configuration | exec | network | reverse-access} {default |list-name} method1 [method2...] For specific line Switch(config-line)# authorization {commands level | exec | reverse- access} {default | list-name} For all line Switch(config)# aaa authorization exec default group myauthservers none

7 © 2015 Mohamed Samir YouTube channel All rights reserved. www.mohamedsamir.comMohamed Samir Configuring Accounting Switch(config)# aaa accounting {system | exec | commands level} {default | list-name} {start-stop | stop-only | wait-start | none} method1 [method2 For specific line Switch(config-line)# accounting {commands level | connection | exec} {default | list-name}

8 © 2015 Mohamed Samir YouTube channel All rights reserved. www.mohamedsamir.comMohamed Samir Any questions ?

9 © 2015 Mohamed Samir YouTube channel All rights reserved. www.mohamedsamir.comMohamed Samir Thank you for your time ! شكرا جزاكم الله خير

Download ppt "© 2015 Mohamed Samir YouTube channel All rights reserved. www.mohamedsamir.comMohamed Samir CCNP-SWITCHING 300-115 Mohamed Samir YouTube channel Double."

Similar presentations

Securing the Router Chris Cunningham.

Securing the Router Chris Cunningham.
Radius based ssh authentication Location of Radius server – radius-server host 192.168.1.2 auth-port 1812 acct-port 1813 key WinRadius – The same config.

Radius based ssh authentication Location of Radius server – radius-server host auth-port 1812 acct-port 1813 key WinRadius – The same config.
Part III Working with Redundant Links

Part III Working with Redundant Links
© 2012 Cisco and/or its affiliates. All rights reserved. 1 CCNA Security 1.1 Instructional Resource Chapter 3 – Authentication, Authorization and Accounting.

© 2012 Cisco and/or its affiliates. All rights reserved. 1 CCNA Security 1.1 Instructional Resource Chapter 3 – Authentication, Authorization and Accounting.
© 2015 Mohamed Samir YouTube channel All rights reserved. Samir CCNP-SWITCHING 300-115 Mohamed Samir YouTube channel.

© 2015 Mohamed Samir YouTube channel All rights reserved. Samir CCNP-SWITCHING Mohamed Samir YouTube channel.
Part III Working with Redundant Links

Part III Working with Redundant Links
© 2015 Mohamed Samir YouTube channel All rights reserved. www.mohamedsamir.comMohamed Samir CCNP-SWITCHING 300-115 Mohamed Samir YouTube channel Double.

© 2015 Mohamed Samir YouTube channel All rights reserved. Samir CCNP-SWITCHING Mohamed Samir YouTube channel Double.
Part III Working with Redundant Links

Part III Working with Redundant Links
© 2015 Mohamed Samir YouTube channel All rights reserved. Samir CCNP-SWITCHING 300-115 Mohamed Samir YouTube channel.

© 2015 Mohamed Samir YouTube channel All rights reserved. Samir CCNP-SWITCHING Mohamed Samir YouTube channel.
Part IV: Multilayer Switching

Part IV: Multilayer Switching
SSH : The Secure Shell By Rachana Maheswari CS265 Spring 2003.

SSH : The Secure Shell By Rachana Maheswari CS265 Spring 2003.
(Remote Access Security) AAA. 2 Authentication User named flannery dials into an access server that is configured with CHAP. The access server will.

(Remote Access Security) AAA. 2 Authentication User named "flannery" dials into an access server that is configured with CHAP. The access server will.
© 2007 Cisco Systems, Inc. All rights reserved.ISCW-Mod5_L11 1 Implementing Secure Converged Wide Area Networks (ISCW)

© 2007 Cisco Systems, Inc. All rights reserved.ISCW-Mod5_L11 1 Implementing Secure Converged Wide Area Networks (ISCW)
Chapter Three Authentication, Authorization, and Accounting

Chapter Three Authentication, Authorization, and Accounting
Chapter 16 AAA. AAA Components  AAA server –Authenticates users accessing a device or network –Authorizes user to perform specific activities –Performs.

Chapter 16 AAA. AAA Components  AAA server –Authenticates users accessing a device or network –Authorizes user to perform specific activities –Performs.
© 2009 Cisco Systems, Inc. All rights reserved. SWITCH v1.0—7-1 Minimizing Service Loss and Data Theft Understanding Switch Security Issues.

© 2009 Cisco Systems, Inc. All rights reserved. SWITCH v1.0—7-1 Minimizing Service Loss and Data Theft Understanding Switch Security Issues.
© 2015 Mohamed Samir YouTube channel All rights reserved. www.mohamedsamir.comMohamed Samir CCNP-SWITCHING 300-115 Mohamed Samir YouTube channel Double.

© 2015 Mohamed Samir YouTube channel All rights reserved. Samir CCNP-SWITCHING Mohamed Samir YouTube channel Double.
Setup a Cisco Switch with AAA Server CS580 Winter 2005 Presented by: Chris Orona Kevork Tamamian Xuong Tsan.

Setup a Cisco Switch with AAA Server CS580 Winter 2005 Presented by: Chris Orona Kevork Tamamian Xuong Tsan.
Authentication, Authorization, and Accounting

Authentication, Authorization, and Accounting
© 2015 Mohamed Samir YouTube channel All rights reserved. www.mohamedsamir.comMohamed Samir CCNP-SWITCHING 300-115 Mohamed Samir YouTube channel Double.

© 2015 Mohamed Samir YouTube channel All rights reserved. Samir CCNP-SWITCHING Mohamed Samir YouTube channel Double.

Similar presentations

Ads by Google