What did you do and how long did you do it

The three parts of AAA are defined as follows:

1. Authentication

— Authentication examines the identity of users and determines whether they should be allowed access to the network. Authentication allows network managers to bar intruders from their networks.

2. Authorization

Authorization allows network managers to limit the network services available to a user. Authorization also helps restrict the exposure of the internal network to outside callers. Authorization allows mobile users to connect to the closest local connection and still have access privileges as though they were directly connected to their local networks. You can also use authorization to specify which commands a new system administrator can issue on specific network devices.

3. Accounting

System administrators might need to bill departments or customers for connection time or resources that are used on the network (for example, bytes transferred). Accounting tracks this kind of information. You can also use the accounting syslog to track suspicious connection attempts and trace malicious activity.

0 0

Post a comment