Which Cisco-proprietary protocol provides separate authentication, authorization, and accounting services?

Unlock all questions

This demo includes only 20 questions. Upgrade to access hundreds of questions, flashcards, exam simulations, and disable ads.

Full question bankExam simulationsFlashcards
From $24.99Unlock all

Study for the CompTIA SecurityX Test. Equip yourself with comprehensive flashcards and multiple choice questions that include hints and explanations. Gear up for your certification exam!

Multiple Choice

Which Cisco-proprietary protocol provides separate authentication, authorization, and accounting services?

Explanation:
Focusing on how authentication, authorization, and accounting are handled separately is what this question tests. TACACS+ is designed specifically to split these three functions: it authenticates who the user is, then separately determines exactly what actions they may perform, and finally records what happened for auditing. It’s also Cisco-proprietary, which fits the clue in the question. TACACS+ runs over TCP, providing reliable transport, and it encrypts the entire AAA conversation, which helps keep credentials and commands secure as they traverse the network. This level of separation and control is what makes it the best fit for devices that need fine-grained command authorization and thorough session accounting. RADIUS, while widely used, combines authentication and authorization in many implementations and uses UDP, with encryption primarily protecting passwords rather than the whole payload, and it’s not Cisco-proprietary. The other options aren’t protocols that provide AAA services.

Focusing on how authentication, authorization, and accounting are handled separately is what this question tests. TACACS+ is designed specifically to split these three functions: it authenticates who the user is, then separately determines exactly what actions they may perform, and finally records what happened for auditing. It’s also Cisco-proprietary, which fits the clue in the question.

TACACS+ runs over TCP, providing reliable transport, and it encrypts the entire AAA conversation, which helps keep credentials and commands secure as they traverse the network. This level of separation and control is what makes it the best fit for devices that need fine-grained command authorization and thorough session accounting.

RADIUS, while widely used, combines authentication and authorization in many implementations and uses UDP, with encryption primarily protecting passwords rather than the whole payload, and it’s not Cisco-proprietary. The other options aren’t protocols that provide AAA services.

More Multiple Choice Questions
Subscribe

Get the latest from Examzify

You can unsubscribe at any time. Read our privacy policy