Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
941
Views
0
Helpful
0
Replies

AAA Accounting Connection

Feblex123
Level 1
Level 1

‎08-01-2018 07:09 PM - edited ‎02-21-2020 11:01 AM

Hi everyone.

 

I would like to read opinions regarding if you think it's worth it or not to activate/enable AAA Accounting Connection on a switch or router in which the only outbound connections are SSH, SNMP Traps and SMTP. What I usually see in Cisco's documentation is that it registers telnet and rlogin connections, but I don't know if it works with other protocols.

 

Here's what the CIS Benchmark says regarding this configuration:

 

1.1.8 Set 'aaa accounting connection' (Scored)
Profile Applicability:
􀁸 Level 2
Description:
Provides information about all outbound connections made from the network access server.
Rationale:
Authentication, authorization and accounting (AAA) systems provide an authoritative source for managing and monitoring access for devices. Centralizing control improves consistency of access control, the services that may be accessed once authenticated and accountability by tracking services accessed. Additionally, centralizing access control simplifies and reduces administrative costs of account provisioning and de-provisioning, especially when managing a large number of devices. AAA Accounting provides a management and audit trail for user and administrative sessions through RADIUS and TACACS+.

Labels:
0 Helpful
0 Replies 0
Customers Also Viewed These Support Documents