200-301 - Security Fundamentals - Section 5.3
Configure and verify device access control using local passwords, describe password policy elements and alternatives (MFA, certificates, biometrics), and compare authentication, authorization, and accounting concepts.
Harden device access with local user accounts, enable secret, encrypted passwords, and login on console and VTY lines, and recognise password policy elements like complexity and management plus stronger alternatives such as multifactor authentication, certificates, and biometrics. Compare AAA: authentication proves who you are, authorization controls what you may do, and accounting records what you did, typically against a TACACS+ or RADIUS server.
Local device access controlEnable secretPassword policy and MFAAAATACACS+ and RADIUS
More in this domain
Back to all Security Fundamentals objectives, or the 200-301 cert hub.
Examworthy is not affiliated with or endorsed by Cisco. Original, blueprint-aligned practice material only.