Authentication and Authorization (AA) Overview

Users of CC-SG can be locally authenticated and authorized on the CC-SG or remotely authenticated using the following supported directory servers:

Any number of remote servers can be used for external authentication. For example, you could configure three AD servers, two iPlanet (LDAP) servers, and three RADIUS servers.

Only AD can be used for remote authorization of users.

LDAP implementations use LDAP v3.

IPv6 is supported for all directory servers.

In This Section

Flow for Authentication

User Accounts

See Also

Remote Authentication

Distinguished Names for LDAP and AD

Specifying Modules for Authentication and Authorization

Establishing Order of External AA Servers

AD and CC-SG Overview

Adding an AD Module to CC-SG

Editing an AD Module

Importing AD User Groups

Synchronizing AD with CC-SG

Renaming and Moving AD Groups

Setup SSO with Integrated Windows Authentication

About LDAP and CC-SG

Add an LDAP (Netscape) Module to CC-SG

About TACACS+ and CC-SG

Add a TACACS+ Module

About RADIUS and CC-SG

Add a RADIUS Module