A1:
| Answer: Downloadable ACLs are supported only by RADIUS. |
A2:
| Answer: The command to get authorization to work with access lists is aaa authorization match acl-name if-name server-tag. |
A3:
| Answer: The PIX Firewall is configured as an AAA Client in the Network Configuration window. |
A4:
| Answer: You use the auth-prompt command put text messages into the logon prompt for a Telnet session. |
A5:
| Answer: You can change the prompt, accept, and reject messages with the auth-prompt command. |
A6:
| Answer: By default, timeout uauth absolute does not prompt the user to reauthenticate until they start a new connection after the uauth timer has expired. |
A7:
| Answer: Logs are written to either the CSV or ODBC formats. |
A8:
| Answer: The RSA SecurID Token Server must be configured as an external user database, and you must select it for password authentication in the User Setup window. |
A9:
| Answer: The show aaa or show aaa-server commands are most commonly used to check the AAA configuration on the PIX Firewall. |
A10:
| Answer: The total number of AAA servers that the PIX Firewall can connect to is 196 (14 groups, each group containing a maximum of 14 servers). |
A11:
| Answer: You use the timeout uauth 0 command to disable caching of user authentication. |
لطفا منتظر باشید ...
