My Account | View Cart | Wishlist | Checkout | About Us | Contact Us
CCNA 640-553 Exam: Configuring AAA Authorization

In preparation of your CCNA Security 640-553 exam, we want to make sure we cover the topics that you will encounter on your CCNA exam. So to assist you, below we will discuss the CCNA Security concept, Configuring AAA Authorization. As you progress through your CCNA exam studies, I am sure with repetition you will find that all the topics become much easier. So even though this may be a difficult concept initially, keep at it as no one said getting your Cisco certification would be easy!

Configure AAA authorization

 

Authorization is the process by which you can control what a user can and cannot do.

 

First define a named list of authorization methods. Then apply that list to one or more interfaces (except for the default method list). The first listed method is used. If it fails to respond, the second one is used, and so on.

 

Exec Authorization

 

The aaa authorization exec command determines if the user is allowed to run an EXEC shell. This facility might return user profile information such as autocommand information, idle timeout, session timeout, access-list and privilege and other per-user factors. Exec authorization is only carried out over vty and tty lines.

 

The following example uses Radius.

 

Same Exec Authentication Methods for All Users

 

Once authenticated with:

 

Configure:

aaa authentication login default group radius local

 

All users who want to log in to the access server have to be authorized using Radius (first method) or local database (second method).

 

Configure:

aaa authorization exec default group radius local

 

On the AAA server, Service-Type=1 (login) must be selected.

 

With this example, if the local keyword is not included and the AAA server does not respond, then authorization will never be possible and the connection will fail.

We hope you found this Cisco CCNA Security 640-553 certification article helpful. We pride ourselves on not only tons of free Cisco CCNA exam information, but also providing you with the real world Cisco CCNA skills to advance in your networking career as you exercise the many CCNA lab scenarios in our lab workbooks.

Specials more
Cisco CCNA & Super Economy CCNP Kit
Cisco CCNA & Super Economy CCNP Kit
$1,499.99
$1,379.99
Specials more
Advanced CCNA/Starter CCNP Kit IV
Advanced CCNA/Starter CCNP Kit IV
$899.99
$714.99
Specials more
Cisco CCNA 3 Router & 3 Switch Lab Kit!
Cisco CCNA 3 Router & 3 Switch Lab Kit!
$559.99
$479.99
Specials more
Cisco Dual 2501 8/8 Router CCNA Kit
Cisco Dual 2501 8/8 Router CCNA Kit
$179.99
$149.99
Specials more
CCNA Study Value Pack
CCNA Study Value Pack
$84.99
$59.99
Shopping Cart more
0 items