AAA (Authentication, Authorisation, Audit) 🟢 Protection
AAA stands for Authentication, Authorization, Accounting, and is a security framework that controls access to IT resources, applies security policies and audits their use.
AAA and its combined processes play a major role in network management and cybersecurity by selecting users and monitoring their activity while they are connected.
The AAA framework and the resulting AAA security apply to various concepts:
AAA Framework: this is the set of mechanisms and processes that implement the Authentication, Authorisation and Audit functions. It defines the architecture and components needed to control access to resources and ensure traceability of actions.
AAA Server: a dedicated server that centralises AAA functions. As an identity and access management (IAM) tool, an AAA server receives authentication requests, verifies credentials, authorises access according to defined policies and logs events for auditing purposes. RADIUS and TACACS+ are examples of protocols used by AAA servers.
AAA Protocol: communication protocol used to transport authentication, authorisation and audit information between clients (e.g. a router or Wi-Fi access point) and the AAA server. The most common examples are RADIUS, TACACS+ and Diameter.
AAA Client: network equipment (router, switch, access point, etc.) or an application that initiates authentication requests to the AAA server.
AAA Service: global service that provides authentication, authorisation and audit functions. It encompasses the infrastructure, protocols and policies in place.