Hi --
We are currently trying to set up a TACACS server for authentication to our network gear and have it run on suse linux hosts. Does anyone have any advice/good webpages or guides regarding this?
Thank you very much in advance!
Leslie
Hi,
The best answer actually does seem to be to use freeradius instead of tacacs, so I will probably go with that (though if anyone has any good tips on freeradius, please, let me know)
Leslie
Hi,
You can extract information from this doc : Installation of Tacacs+, Rancid, Cvsweb
http://www.debian-administration.org/articles/429
Freeradius will need more time to implement, but easier to manage after.
I disagree with the RADIUS suggestion. TACACS+ is a much more secure
protocol. It encrypts the packet contents and has a more secure
handshake procedure.
Leslie wrote:
I second the TACACS+
Thats what you want. Same effort for the most part, to implement.
Eddy
Do you have any suggestions for a free tacacs server which will run on linux ? I have so far been unable to find any and the tacacs+ source code hasn't been updated since around 2000
Leslie
It's not free, but I want to praise Radiator
(http://www.open.com.au/radiator/) as a great radius/tacacs+ server.
(I have previously battled both with freeradius and openradius.)
- d.
Do you have any suggestions for a free tacacs server which
will run on linux ? I have so far been unable to find any
and the tacacs+ source code hasn't been updated since
around 2000
Available (and maintained) at:
http://www.shrubbery.net/tac_plus/
(direct download link: ftp://ftp.shrubbery.net/pub/tac_plus)
The latest was last updated end of year 2007
First time poster, long time lurker.
Also if you are going RADIUS route. There's a simple web shell boot version
available at
http://www.zeroshell.net/eng/radiusdetails/
that support RADIUS.
-bn