Cisco Cisco IOS Software Release 12.2(27)SBC
AAA Authorization and Authentication Cache
How to Implement Authorization and Authentication Profile Caching
4
Cisco IOS Release 12.2(28)SB
Network (PSTN) calls to a network attached storage device, along with domain-based service profiles,
are all examples of usernames and profiles that can benefit from authentication and authorization
caching.
are all examples of usernames and profiles that can benefit from authentication and authorization
caching.
General Configuration Procedure for Implementing Authorization and
Authentication Profile Caching
Authentication Profile Caching
To implement authorization and authentication profile caching, you would complete the following
procedure:
procedure:
1.
Create cache profile groups and define the rules for what information is cached in each group.
Entries that match based on exact username, regular expressions, or specify that all authentication
and authorization requests can be cached.
and authorization requests can be cached.
2.
Update existing server groups to reference newly defined cache groups.
3.
Update authentication or authorization method lists to use the cached information to optimize
network performance or provide a failover mechanism.
network performance or provide a failover mechanism.
How to Implement Authorization and Authentication Profile
Caching
Caching
This section contains the following tasks:
•
•
(required)
•
(required)
Creating Cache Profile Groups and Defining Caching Rules
Perform this task to create a cache profile group, define the rules for what information is cached in that
group, and verify and manage cache profile entries.
group, and verify and manage cache profile entries.
SUMMARY STEPS
1.
enable
2.
configure terminal
3.
aaa new-model
4.
aaa cache profile group-name
5.
profile name [no-auth]
6.
Repeat Step 5 for each username you want to add to the profile group in Step 4.
7.
regexp matchexpression {any | only} [no-auth]