Presentation is loading. Please wait.

Presentation is loading. Please wait.

Understand User Authentication LESSON 2.1A Security Fundamentals.

Published byRoberta Anthony Modified over 7 years ago

Similar presentations

Presentation on theme: "Understand User Authentication LESSON 2.1A Security Fundamentals."— Presentation transcript:

1 Understand User Authentication LESSON 2.1A 98-367 Security Fundamentals

2 LESSON 2.1A Lesson Overview In this lesson you will learn about the principles of authentication methods. 1. What the user knows 2. What the user has 3. What the user is

3 98-367 Security Fundamentals LESSON 2.1A Authentication Methods  Passwords  User IDs  Biometrics o Facial scanners o Iris scanners o Voice recognition o Fingerprint readers o Hand scanners o Signature scan

4 98-367 Security Fundamentals LESSON 2.1A Authentication Methods (continued) Two-factor authentication o Smart cards o USB tokens o Digital certificates

5 98-367 Security Fundamentals LESSON 2.1A Active Directory Domain Services (AD DS)  Formerly known as Active Directory ® Directory Services  Central location for configuration information, authentication requests, and information about all of the objects that are stored within your forest  Used to efficiently manage users, computers, groups, printers, applications, and other directory-enabled objects from one secure, centralized location

6 98-367 Security Fundamentals LESSON 2.1A Kerberos  A network authentication protocol  Designed to provide strong authentication for client/server applications by using secret-key cryptography Massachusetts Institute of Technology Massachusetts Institute of Technology  A free implementation of this protocol is available from the Massachusetts Institute of Technology Massachusetts Institute of Technology  Available in many commercial products as well

7 98-367 Security Fundamentals LESSON 2.1A Lightweight Directory Access Protocol (LDAP)  A directory service protocol that runs on a layer above the TCP/IP stack  Provides a mechanism used to connect to, search, and modify Internet directories  The LDAP directory service is based on a client-server model  The function of LDAP is to enable access to an existing directory

8 98-367 Security Fundamentals LESSON 2.1A Remote Authentication Dial-In User Service (RADIUS)  A widely deployed protocol enabling centralized authentication, authorization, and accounting for network access  Originally developed for dial-up remote access  Now supported by virtual private network (VPN) servers, wireless access points, authenticating Ethernet switches, digital subscriber line (DSL) access, and other network access types The general structure of a RADIUS packet:

9 98-367 Security Fundamentals LESSON 2.1A TACACS Authentication Scheme  Uses a secret key to encrypt the authentication request  This key must be identically configured in both the Forefront UAG and the TACACS authentication server

10 98-367 Security Fundamentals LESSON 2.1A Practice Summarize the key points in a brief discussion of each of the following concepts: 1. Strong passwords 2. Single sign-on 3. Dumpster diving 4. Spoofing 5. Social engineering 6. Phishing 7. Pharming

Download ppt "Understand User Authentication LESSON 2.1A Security Fundamentals."

Similar presentations

Authenticating Users. Objectives Explain why authentication is a critical aspect of network security Explain why firewalls authenticate and how they identify.

Authenticating Users. Objectives Explain why authentication is a critical aspect of network security Explain why firewalls authenticate and how they identify.
1.1 © 2004 Pearson Education, Inc. Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 1: Introducing Windows Server.

1.1 © 2004 Pearson Education, Inc. Exam Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 1: Introducing Windows Server.
Copyright © 2015 McGraw-Hill Education. All rights reserved. No reproduction or distribution without the prior written consent of McGraw-Hill Education.

Copyright © 2015 McGraw-Hill Education. All rights reserved. No reproduction or distribution without the prior written consent of McGraw-Hill Education.
1 Configuring Virtual Private Networks for Remote Clients and Networks.

1 Configuring Virtual Private Networks for Remote Clients and Networks.
Introduction to PKI Seminar What is PKI? Robert Brentrup July 13, 2004.

Introduction to PKI Seminar What is PKI? Robert Brentrup July 13, 2004.
Security+ Guide to Network Security Fundamentals, Third Edition Chapter 8 Authentication.

Security+ Guide to Network Security Fundamentals, Third Edition Chapter 8 Authentication.
Introduction to PKI Mark Franklin September 10, 2003 Dartmouth College PKI Lab.

Introduction to PKI Mark Franklin September 10, 2003 Dartmouth College PKI Lab.
ISA 3200 NETWORK SECURITY Chapter 10: Authenticating Users.

ISA 3200 NETWORK SECURITY Chapter 10: Authenticating Users.
Copyright © 1995-2003 Clifford Neuman - UNIVERSITY OF SOUTHERN CALIFORNIA - INFORMATION SCIENCES INSTITUTE CSci530: Computer Security Systems Authentication.

Copyright © Clifford Neuman - UNIVERSITY OF SOUTHERN CALIFORNIA - INFORMATION SCIENCES INSTITUTE CSci530: Computer Security Systems Authentication.
Chapter 16 AAA. AAA Components  AAA server –Authenticates users accessing a device or network –Authorizes user to perform specific activities –Performs.

Chapter 16 AAA. AAA Components  AAA server –Authenticates users accessing a device or network –Authorizes user to perform specific activities –Performs.
FIREWALLS & NETWORK SECURITY with Intrusion Detection and VPNs, 2 nd ed. 10 Authenticating Users By Whitman, Mattord, & Austin© 2008 Course Technology.

FIREWALLS & NETWORK SECURITY with Intrusion Detection and VPNs, 2 nd ed. 10 Authenticating Users By Whitman, Mattord, & Austin© 2008 Course Technology.
Principles of Computer Security: CompTIA Security + ® and Beyond, Third Edition © 2012 Principles of Computer Security: CompTIA Security+ ® and Beyond,

Principles of Computer Security: CompTIA Security + ® and Beyond, Third Edition © 2012 Principles of Computer Security: CompTIA Security+ ® and Beyond,
Lesson 9-Securing a Network. Overview Identifying threats to the network security. Planning a secure network.

Lesson 9-Securing a Network. Overview Identifying threats to the network security. Planning a secure network.
Windows 2000 Remote Access. Remote Access Overview With Windows 2000 remote access, remote access clients connect to remote access servers and are transparently.

Windows 2000 Remote Access. Remote Access Overview With Windows 2000 remote access, remote access clients connect to remote access servers and are transparently.
Using RADIUS Within the Framework of the School Environment Charles Bolen Systems Engineer December 6, 2011.

Using RADIUS Within the Framework of the School Environment Charles Bolen Systems Engineer December 6, 2011.
.  Define authentication  Authentication credentials  Authentication models  Authentication servers  Extended authentication protocols  Virtual.

.  Define authentication  Authentication credentials  Authentication models  Authentication servers  Extended authentication protocols  Virtual.
Remote Networking Architectures

Remote Networking Architectures
Understanding Active Directory

Understanding Active Directory
Module 11: Supporting Remote Users. Overview Establishing Remote Access Connections Connecting to Virtual Private Networks Configuring Authentication.

Module 11: Supporting Remote Users. Overview Establishing Remote Access Connections Connecting to Virtual Private Networks Configuring Authentication.
Authentication, Authorization and Accounting

Authentication, Authorization and Accounting

Similar presentations

Ads by Google