The cheat sheet is a condensed format of the main facts that you need to know before taking the exam. We must learn the exam concepts and not just the answers to a bank of questions.
Authentication Factors
- Something you know: Password, PIN, birth date
- Something you are: Iris, retina, fingerprint, palm, voice
- Something you do: Swipe, gait, signature
- Somewhere you are: Location, London, Poland
- Single factor: All from the same group
- Dual factor: From more than one group
Federation Services
- Third-party to third-party authentication
- Uses extended attributes
- SAML: XML-based
- Shibboleth: Open source using cookies
- RADIUS federation: Federation services connecting via wireless
AAA
- RADIUS: UDP port 1812
- RADIUS accounting port 1813
- DIAMETER: Upgrade of RADIUS using EAP
- TACACS+ - Cisco AAA: TCP port 49
- RADIUS accounting: Logs and tracks users
Authentication Types
- Kerberos: Uses tickets, prevents replay and pass-the-hash attacks
- OAuth: Uses tokens
- Federation services: Uses cookies...
