Newport cigarettes dial-in permission as a local user. A response is returned to Cisco Secure ACS newports cigarettes website, and authorizations are assigned. Confirmation and associated authorizations assigned in Cisco Secure ACS for that user are sent to the NAS. Accounting information is logged. Using the Windows 2000 user database makes a single login for dial-in and network access possible. An added benefit of using the Windows 2000 user database is that the username and password used for authentication are the same used for network login. You can require users to enter their username and password once only, for the convenience of a simple, single login.
Copyright ? 2005, Cisco Systems, Inc.
Cisco Secure Access Control Server for Windows Server
1-31
Cisco Secure ACS for Windows Server: External User Databases
NAS 1
NAS 2
ACS User Database
NAS 3
External User Database
? 2005 Cisco Systems, Inc. All rights reserved.
SNRS v1.0?1-21
You can configure Cisco Secure ACS for Windows Server to forward authentication of users to one external user database or more. Support for external user databases means that Cisco Secure ACS for Windows Server does not require that you create duplicate user entries in the Cisco Secure ACS user database. In organizations in which a substantial user database already exists, Cisco Secure ACS can leverage the work already invested in building the database without any additional input. For Cisco Secure ACS to interact with an external user database, Cisco Secure ACS requires an API for third-party authentication. Cisco Secure ACS communicates with the external user database using the API. For Windows user databases and Generic LDAP newports cigarettes coupons, the program interface for the external authentication is local to Cisco Secure ACS. In these cases, no further components are required. In the case of NDS authentication, Novell Requestor must be installed on the same Windows server as Cisco Secure ACS. In the case of ODBC authentication sources, in addition to the Windows ODBC interface, the third-party ODBC driver must be installed on the Cisco Secure ACS for Windows Server. To communicate with an RSA token server, you must have installed software components provided by RSA Security. For RADIUS-based token servers, such as ActivCard, CRYPTOcard, PassGo, SafeWord newport cigarettes website, and VASCO, the standard RADIUS interface serves as the third-party API. In addition to performing authentication for network access newport cartons, Cisco Secure ACS can perform authentication for TACACS+ enable privileges using external user databases. For more information regarding the configuration of TACACS+ enable privileges, see Cisco.com.
1-32
Securing Networks with Cisco Routers and Switches (SNRS) v1.0
Copyright ? 2005, Cisco Systems, Inc.
Cisco Secure ACS for Windows Server: Token Card Server Support
Token Card Server
Proprietary Protocols TACACS+ or RADIUS
? LEAP proxy RADIUS servers ? RSA SecurID token servers ? RADIUS-based token servers, including: ? ActivCard token servers ? CRYPTOcard token servers ? VASCO token servers ? PassGo token servers ? SafeWord token wholesale newport cigarettes online!
Copyright ? 2005, Cisco Systems, Inc.
Cisco Secure Access Control Server for Windows Server
1-31
Cisco Secure ACS for Windows Server: External User Databases
NAS 1
NAS 2
ACS User Database
NAS 3
External User Database
? 2005 Cisco Systems, Inc. All rights reserved.
SNRS v1.0?1-21
You can configure Cisco Secure ACS for Windows Server to forward authentication of users to one external user database or more. Support for external user databases means that Cisco Secure ACS for Windows Server does not require that you create duplicate user entries in the Cisco Secure ACS user database. In organizations in which a substantial user database already exists, Cisco Secure ACS can leverage the work already invested in building the database without any additional input. For Cisco Secure ACS to interact with an external user database, Cisco Secure ACS requires an API for third-party authentication. Cisco Secure ACS communicates with the external user database using the API. For Windows user databases and Generic LDAP newports cigarettes coupons, the program interface for the external authentication is local to Cisco Secure ACS. In these cases, no further components are required. In the case of NDS authentication, Novell Requestor must be installed on the same Windows server as Cisco Secure ACS. In the case of ODBC authentication sources, in addition to the Windows ODBC interface, the third-party ODBC driver must be installed on the Cisco Secure ACS for Windows Server. To communicate with an RSA token server, you must have installed software components provided by RSA Security. For RADIUS-based token servers, such as ActivCard, CRYPTOcard, PassGo, SafeWord newport cigarettes website, and VASCO, the standard RADIUS interface serves as the third-party API. In addition to performing authentication for network access newport cartons, Cisco Secure ACS can perform authentication for TACACS+ enable privileges using external user databases. For more information regarding the configuration of TACACS+ enable privileges, see Cisco.com.
1-32
Securing Networks with Cisco Routers and Switches (SNRS) v1.0
Copyright ? 2005, Cisco Systems, Inc.
Cisco Secure ACS for Windows Server: Token Card Server Support
Token Card Server
Proprietary Protocols TACACS+ or RADIUS
? LEAP proxy RADIUS servers ? RSA SecurID token servers ? RADIUS-based token servers, including: ? ActivCard token servers ? CRYPTOcard token servers ? VASCO token servers ? PassGo token servers ? SafeWord token wholesale newport cigarettes online!
没有评论:
发表评论