What are two AAA protocols commonly used on Cisco devices for local device authentication?

The correct answer includes RADIUS and TACACS+. Both of these are widely used AAA (Authentication, Authorization, and Accounting) protocols on Cisco devices for local device authentication.

RADIUS, which stands for Remote Authentication Dial-In User Service, is a networking protocol that provides centralized Authentication, Authorization, and Accounting management for users who connect and use a network service. It is particularly useful for authenticating users trying to access a network via remote connections.

TACACS+, or Terminal Access Controller Access-Control System Plus, is another protocol that provides similar functionalities but is often preferred in environments needing enhanced security features. TACACS+ encrypts the entire authentication process, which offers better security for sensitive information compared to RADIUS, which encrypts only the password.

The other options, like LDAP, are primarily used for directory services and user information lookups, but not specifically tailored for authentication on networking devices. HTTP, on the other hand, is a protocol for transferring hypertext and does not serve the AAA function of authenticating users in the context of networking devices. Thus, RADIUS and TACACS+ are specifically designed for and commonly used in local device authentication within Cisco environments.