TACACS

Unanswered Question
Feb 15th, 2007

Can I use any vendors TACACS server for authentication for Cisco routers and switches?

If so, does anyone have any suggestions?

Thanks,

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
andreas.larsen@... Thu, 02/15/2007 - 06:21

Well I would suggest a radius server instead. Since that is a bit more supported on various platforms.

daviddtran Thu, 02/15/2007 - 09:49

I work for Managed Security Service Providers

and we use Freeware TACACS+ to manage Cisco

routers and switches. TACACS+ gives you better

control than radius, especially with

Authentication and Authorization.

Cisco ACS is expensive and overrated. It is

also running on Microsoft Windows (version 3.x

and higher). You can get Freeware TACACS+ and

complile it to run on Unix/Linux and it is

quite flexible.

If you want a radius option, go with

FreeRadius. It is good too. You can in fact

run both Freeware TACACS+ and Freeradius on

the same *nix box and heck, freeradius

can even do PEAP and EAP/TLS for you.

David

CCIE Security

chris.damore Thu, 02/15/2007 - 10:07

David,

I agree 100% with you.

Could you send me a link to the TACACS product you are using?

Thanks!!!

Chris

Actions

This Discussion