AAA Authentication types and methods - Setting for Admin or general user access
Posted on 2003-11-23
I have a few questions about the authentication options (methods) available on the NAS.
1) Is arap, nasi, and ppp only used for network access, meaning that it has no effect on the user who is using the authentication but only effects whether the user can use that particular protocol to connect to the network?
2) What is the 'enable' option for? Can you give me an example?
3) When the 'default' method is used and is automatically applied to all lines, does this mean all lines or all lines and interfaces on the router? For example, if I have a 2521 with con, aux, vty, serial 0 3 (serial 3 is async for dialin), and isdn, are all these lines/interfaces under the control of the 'default' authentication unless configured otherwise?
4) Would I ever use the AAA NAS without the CSACS or similar server to control authorization for user access? I don't see much in the way of network service control on the NAS username options?