Custom Search

Cisco Ccna (640-553) Security Training: Using The Aaa Authorization Command

In today’s article, I’m going to quickly inform you about the Cisco IOS global configuration mode command named “aaa authorization”.

CCNA’s (like you) use the “aaa authorization” command to set parameters that restrict user access to a network.

In other words, network administrators (like you) use the command to enable authorization on a router. The router will then act as some sort of police officer, informing users whether or not they have authorization to perform a specific function(s).

Below is the command’s syntax:

aaa authorization {network | exec | commands level | reverse-access | configuration} {default | list-name} [method1 [method2...]]

As you can see, the “aaa authorization” command has many keywords and arguments it can use, below are there explanations:

network – When this keyword is used, it tells the router to run authorization for all network-related requests, including Serial Line Internet Protocol (SLIP), PPP, PPP Network Control Programs (NCPs) and AppleTalk Remote Access (ARA).

exec – When this keyword is used, it tells the router to run authorization to determine if the user is allowed to run an Exec shell.

commands – When this keyword is used, it tells the router to run authorization for all commands at the specified privileged level.

level – This argument is used, to specify the command level that should be authorized; you can enter the numbers 0 thru 15.

reverse-access – When this keyword is used, it tells the router to run authorization for reverse access connections, like reverse Telnet.

configuration – When this keyword is used, it tells the router to download the configuration from the AAA server.

default -- When this keyword is used, it tells the router to use the listed authorization methods that follow this keyword as the default list of methods for authorization.

list-name – When this argument is used, it’s used to name the list of authorization methods.

method1[method2..] – These arguments are used, to identify an authorization method(s) to be used for authorization.

And, like with mostly all Cisco IOS commands; you can use the word “no” in front of the command to remove (disable) the configured command; like you see below:

Router(config)#no aaa authorization

I could go on and on explaining the “aaa authorization” command in full detail but that would make this article rather lengthy.

By the way, if you decide to use the command, make sure your router(s) is running Cisco IOS 12.0(5)T or higher.

I hope this article was very informative and helped you quickly understand the usage of the aaa authorization command. If you need to learn more; I suggest you visit my website, were you’ll find the latest information regarding the Cisco CCNA (640-553) Security exam techniques.

To your success,

By: Charles E Ross

Article Directory: http://www.articledashboard.com

Charles Ross, CCNP #CSCO10444244 is the owner of Ittechtips.com; where you'll find free comprehensive information and videos on how to pass the CCNA (640-553) security exam. Sign-Up for "100 Free Videos" and, also learn more about the new "Cisco CCNA (640-553) Video Accelerated Training Course" at his website. www.ccnaittechtips.com

Misc
Print This Article
Add To Favorites
Email to Friends
Ezine Ready
Join Our Community
Sign Up for an account or learn more.
Sponsored Links
Article Dashboard Authors
Submit Articles
Member Login
Submission Guidelines
Article RSS Feeds
Site Information
About Us
Link to Us
Contact Us
Privacy Policy
Terms of Service
Favicon Generator

© 2005-2011 Article Dashboard