Acronyms of the CCNA Security Part 3 — Cisco Devices

This article is part 3 of a series that describe the the acronyms that are likely found in a student’s CCNA Security studies. This article addresses the acronyms that are particularly relevant to Cisco Devices.

ACS (Access Control Server)–Cisco server that provides AAA (Authentication, Authorization and Accounting) services to network devices via the Radius and TACACS+ protocols

ASA (Adaptive Security Appliance)–Cisco Firewall Appliance (Note: ASA can also stand for Adaptive Security Algorithm in other contexts. This is the algorithm and methods that define the functionality of the Adaptive Security Appliance)

ASDM (Adaptive Security Device Manager)–Java based graphical interface for managing the Adaptive Security Appliance

CAM (Content Addressable Memory)–dynamic memory in a switch that contains MAC address to port associations. This is created by examining frames received, their source MAC addresses and the port that received the frame

CCP (Cisco Configuration Professional)–graphical tool for managing access routers and is considered the successor of another graphical tool called SDM (Security Device Manager)

CSM (Cisco Security Manager)–Cisco Security Management platform allowing for a single, central administrative console to manage Firewalls, IPS and VPNs

IDS (Intrusion Detection System)–device that evaluates activities to determine if there is an action that is not normal for the environment, or matches a signature. IDS systems are typically thought of as passive monitoring devices

IME (IPS Manager Express)–lightweight IPS management application that allows management of up to 10 IPS devices in a single GUI.

IPS (Intrusion Prevention System)–Similar to an IDS device, but may be implemented in-path. This provides the option of immediately and intrusively blocking suspected or malicious activity

ISE (Identity Services Engine)–a component of the Cisco TrustSec Architecture that provides context aware, device identification and authentication

ISR (Integrated Services Router)–family of Cisco routers that provide a wide array of services (Voice, VPN, Data, etc) in hardware and software

NFP (Network Foundation Protection)–combination of several security features that attempt to protect a device and allow management access while it is under attack

WSA (Web Security Appliance)–part of Cisco’s acquisition of Ironport, the Web Security Appliance provides protection against malicious content and gives an administrator granular control and visibility of users interaction with web sites. Think–Big Brother

If you found this article useful for your CCNA Security studies, be sure to bookmark this site or subscribe to the RSS Feed or Email Notifications. More content like this will be provided in future articles.

About Paul Stewart, CCIE 26009 (Security)

Paul is a Network and Security Engineer, Trainer and Blogger who enjoys understanding how things really work. With over 15 years of experience in the technology industry, Paul has helped many organizations build, maintain and secure their networks and systems.
This entry was posted in Career. Bookmark the permalink.