Cisco Systems 3.5 manual GL-7

Page 73

Glossary

S

Service

A means of specifying the method to use to perform a function. A service can be specified for the

 

following functions: authentication, authorization, accounting, and authentication-authorization. For

 

example, a service can specify that authentication be performed using the local database, or a service

 

can specify that accounting be supported by logging information to a file.

Services

Session

Three default services are referenced by the server configuration and when processing scripts. They are Default Authentication Service, Default Authorization Service, and Default Accounting Service. Each service has a type and (if it is using remote servers) an ordered list of servers to use.

Each service provided by the NAS to a dial-in user constitutes a session, with the beginning of the session defined as the point where service is first provided and the end of the session defined as the point where service is ended. Depending on NAS support capabilities, a user may have multiple sessions in parallel or in series.

SHA-1

Secure Hash Algorithm; a hashing algorithm that produces a 160-bit digest based upon the input. The

 

algorithm produces SHA passwords that are irreversible or prohibitively expensive to reverse.

Shared Secret

Used to authenticate transactions between the client and the RADIUS server. The shared secret is never

 

sent over the network.

Shared Use

An IP dial-up network whose use is shared by two or more organizations. Shared use networks typically

Network

implement distributed authentication and accounting in order to facilitate the relationship amongst the

 

sharing parties.

Silently Discard

RADIUS discards the packet without further processing. The server logs an error, including the

 

contents of the silently discarded packet, and records the event in a statistics counter.

SLIP

Serial Line Internet Protocol is TCP/IP over direct connections and modems, which allows one

 

computer to connect to another or to a whole network.

SMDS

Switched Multi-megabit Data Service is a high-speed Metropolitan-Area Networking technology that

 

behaves like a LAN.

SSHA

Netscape’s (iPlanet) enhancement of the SHA-1 algorithm which includes salted password data.

SNAP

SubNetwork Access Protocol is used when a SAP definition does not exist for the encapsulated user

 

data protocol.

SSL

Secure Socket Layer is the protocol defined by Netscape that is used for encryption and authentication

 

between two Internet entities. It uses public/private key certificates instead of shared secrets.

SVC

Switched Virtual Circuit is an L2TP-compatible media on top of which L2TP is directly encapsulated.

 

SVCs are dynamically created, permitting tunnel media to be created dynamically in response to

 

desired LNS-LAC connectivity requirements.

Cisco Access Registrar 3.5 Concepts and Reference Guide

 

OL-2683-02

GL-7

 

Page 72 Page 74
Image 73
Page 72 Page 74
Contents Corporate Headquarters Cisco Access Registrar 3.5 Concepts and Reference GuideCisco Access Registrar 3.5 Concepts and Reference Guide Iii N T E N T SSession-Service Service Step and Radius-Session Service Replication’s Impact on Request Processing IPAddress Port Understanding Snmp Vii Accounting Start Data FlowViii World Wide Web Obtaining DocumentationOrdering Documentation Obtaining Technical AssistanceDocumentation Feedback Cisco.comTechnical Assistance Center Contacting TAC by Using the Cisco TAC WebsiteContacting TAC by Telephone Xii Radius Protocol OverviewPacket Exchange Between User, NAS, and Radius Steps to ConnectionTypes of Radius Messages Packet ContentsAttribute Dictionary Proxy ServersProxying to an Ldap Server for Authentication Basic Authentication and AuthorizationOverview Basic Authentication and Authorization Cisco Access Registrar Hierarchy Understanding Cisco Access RegistrarUserLists and Groups ServicesProfiles ScriptsSession Management Using Resource Managers Program Flow Cisco AR Directory StructureSubdirectory Description Client or NAS Scripting Points Scripting PointsCisco AR Server Action Explanation Action ExplanationRadius/Advanced/RequireNASsBehindProxyBeInClie Authentication and/or Authorization Scripting PointsFailover by the NAS and Session Management Session ManagementScript Processing Hierarchy Authentication/Authorization ScriptsIncoming Scripts Overview Cross Server Session and Resource ManagementOutgoing Scripts Configuring a Front Line Cisco Access Registrar Session-Service Service Step and Radius-Session ServiceConfigure Central AR OL-2683-02 ACMEOutgoingScript Using Cisco AR ScriptsAltigaIncomingScript AltigaOutgoingScript AuthorizeServiceANAAAOutgoing AscendIncomingScriptCabletronIncoming AuthorizeTelnetCabletronOutgoing CiscoIncomingExecDNISRule ExecTimeRuleExecFilterRule ExecNASIPRuleMapSourceIPAddress LDAPOutageParseAAARealm ParseAAASRealmParseServiceAndAAASRealmHints ParseServiceAndAAARealmHintsParseServiceAndAARealmHints ParseServiceAndAASRealmHintsParseTranslationGroupsByCLID ParseServiceHintsParseTranslationGroupsByDNIS ParseTranslationGroupsByRealmUSROutgoingScript Replication Overview Understanding ReplicationReplication Data Flow How Replication WorksMaster Server Replication Archive SecurityEnsuring Data Integrity Slave ServerTransaction Order Transaction Data VerificationAutomatic Resynchronization Understanding Hot-Configuration Replication Configuration SettingsFull Resynchronization Replication’s Impact on Request ProcessingRepTransactionSyncInterval RepTypeRepTransactionArchiveLimit MasterRepPort RepIPAddressRepSecret RepIPMasterRep Members/Slave1 Rep Members SubdirectoryName IPAddressSupported MIBs OverviewRADIUS-AUTH-SERVER-MIB Snmp TrapsCarServerStart Supported TrapsCarServerStop CarInputQueueFullCarOtherAuthServerResponding CarOtherAuthServerNotRespondingCarOtherAccServerNotResponding CarOtherAccServerResponding Configuring TrapsCarAccountingLoggingFailure Directories SearchedSwitching Configuration Files in Mid-File Configuration File TypesCommunity String OL-2683-02 Prepaid Billing Solution Measurements and Component Actions Configuring Prepaid Billing Call Flow Details Generic Call FlowAttribute Number Attribute Name Description Access-Request AuthenticationAccess-Request Authorization Access-Accept AuthenticationAccess-Accept Authorization Data Flow Accounting StartAttribute Number Attribute Name Accept-Accept Quota Depleted Access-Request Quota DepletedAccounting Response Final Status Accounting Stop Session EndSource VSA Name Type Call Flow Description Vendor-Specific AttributesTotal Volume quota received by Crbprivate GL-1 O S S a R YGL-2 Scalable wholesale access/open access solutionGL-3 GL-4 GL-5 GL-6 GL-7 GL-8 GL-9 GL-10 IN-1 RadiusIN-2 RFCIN-3 IN-4
Related manuals
Manual 180 pages 47.88 Kb

3.5 specifications

Cisco Systems 3.5 is an advanced version of Cisco's renowned networking and security solutions. This iteration showcases significant enhancements in performance, scalability, and security, making it a preferred choice for enterprises aiming to optimize their network operations and bolster their cybersecurity posture.

One of the main features of Cisco Systems 3.5 is its enhanced network automation capabilities. Automation streamlines network management, allowing organizations to apply consistent policies across their infrastructure while minimizing human error. This version employs advanced algorithms and machine learning to predict and rectify network issues proactively. With automation tools, network administrators can configure, monitor, and troubleshoot their networks with unprecedented efficiency.

Another notable characteristic of Cisco Systems 3.5 is its integration of artificial intelligence and machine learning into networking processes. The incorporation of AI enhances decision-making by analyzing vast amounts of network data, identifying patterns, and offering insights that help ensure optimal performance. This predictive analytics capability allows organizations to predict potential disruptions before they impact operations.

Security is a major focus in Cisco Systems 3.5. The platform introduces advanced threat detection and response systems that utilize deep learning to identify and mitigate emerging threats in real-time. Enhanced encryption protocols ensure that data transmitted over the network remains secure, protecting sensitive information from cyber threats. The integrated security features ensure compliance with various regulatory standards, a crucial requirement for businesses across multiple sectors.

The platforms' support for Software-Defined Networking (SDN) allows for dynamic resource allocation and traffic management. This flexibility enables organizations to adjust their network resources quickly in response to changing demands, leading to improved efficiency and reduced operational costs. Cisco Systems 3.5 also supports multicloud environments, facilitating seamless integration with cloud services such as AWS, Google Cloud, and Microsoft Azure.

Moreover, Cisco Systems 3.5 offers robust telemetry features, providing detailed real-time insights into network performance and health. This data-driven approach allows organizations to make informed decisions regarding capacity planning and resource optimization.

In summary, Cisco Systems 3.5 combines cutting-edge technologies such as AI, machine learning, and SDN to deliver a comprehensive networking solution. With its focus on automation, enhanced security, and multicloud support, this version is well-suited for modern enterprises looking to enhance their network infrastructure and security measures. As organizations continue to evolve in a digital-centric world, Cisco Systems 3.5 stands out as a critical tool to achieve connectivity and security goals effectively.
Top Page Image Contents