--authentication, authorization, and
accounting. Suite of network security services that provide the primary
framework through which access control can be set up on your Cisco router or
--RADIUS Internet Engineering Task
Force (IETF) attributes are the original set of 255 standard attributes that
are used to communicate AAA information between a client and a server. Because
IETF attributes are standard, the attribute data is predefined and well known;
thus all clients and servers who exchange AAA information through IETF
attributes must agree on attribute data such as the exact meaning of the
attributes and the general bounds of the values for each attribute.
EXEC accounting--Provides information about user EXEC terminal sessions
of the network access server.
--IP Control Protocol. A protocol that
establishes and configures IP over PPP.
--link control protocol. A protocol that
establishes, configures, and tests data-link connections for use by PPP.
network accounting--Provides information for all PPP, Serial Line
Internet Protocol (SLIP), or AppleTalk Remote Access Protocol (ARAP) sessions,
including packet and byte counts.
--Point-to-Point Protocol. Successor to
SLIP that provides router-to-router and host-to-network connections over
synchronous and asynchronous circuits. Whereas SLIP was designed to work with
IP, PPP was designed to work with several network layer protocols, such as IP,
IPX, and ARA. PPP also has built-in security mechanisms, such as CHAP and PAP.
PPP relies on two protocols: LCP and NCP.
RADIUS--Remote Authentication Dial-In User Service. RADIUS is a
distributed client/server system that secures networks against unauthorized
access. In the Cisco implementation, RADIUS clients run on Cisco routers and
send authentication requests to a central RADIUS server that contains all user
authentication and network service access information.
resource accounting--Provides “start” and “stop” records for calls that
have passed user authentication, and provides “stop” records for calls that
fail to authenticate.