Dial Access
Security:
Understanding
CiscoSecure
Dial Access Security—1
Copyright © 1997, Cisco Systems, Inc.
Dial Access Security—2
Copyright © 1997, Cisco Systems, Inc.
Objectives
List the platform support for CiscoSecure v2.x
List the hardware requirements for CS install
Install and Configure CiscoSecure v2.x
Configure a router with AAA commands
Upon completion of this module, you will
be able to:
Dial Access Security—3
Copyright © 1997, Cisco Systems, Inc.
Why Have Security?
The Security Issues:
Security is complicated to
implement
Security cannot be implemented
uniformly
Internet connection is a security
risk
More than 200 Fortune 1000 companies
were asked if they had detected attempts
from outsiders to gain computer access in
the past 12 months
If “yes”, how many successful
accesses were detected?
Yes
Yes
58%
58%
No
No
12%
12%
Don’t
Know
30%
1-10
1-10
42%
42%
11-20
11-20
25%
25%
21-30
16%
31-40
31-40
10%
10%
41-50
5%
50+
2%
Dial Access Security—4
Copyright © 1997, Cisco Systems, Inc.
Cisco’s Security Solutions
Enterprise
ISDN
PSTN
Access Server(s)
Cisco IOS
Dialer profiles
ACL, NAT
Per-user ACL
Lock and Key
L2F
Kerberos V
Security
server
Internet
Corporate/
Resources
PIX firewall
Access server
Client(s)
Protocol(s) Protocol(s)
Security server
Protocol(s)
TACACS+
RADIUS
Kerberos V
Security Server(s)
CiscoSecure
Token card vendors
Freeware
Accounting/Billing
Firewalls
Client(s)
CiscoRemote
Token cards
Protocol(s)
PPP
CHAP
PAP
GUI
Admin
Dial Access Security—5
Copyright © 1997, Cisco Systems, Inc.
Part of the Solution
CiscoSecure ACS
(Access Control Server)
CiscoSecure provides Authentication, Authorization, and Accounting (AAA) for networks
Secures a network for:
Dialup access
Router management
