Custom Application to set/get TACACS+ information a User

Unanswered Question
Feb 19th, 2008
User Badges:

Hi,


I have to develop a custom application that sets/gets TACACS+ information for a particular user profile.

I was able to set values in "TACACS+ Enable Control" form and "TACACS+ Enable Password" form using action code 105.


But I am not able to set "Use separate password" flag and separate password in "TACACS+ Enable Password" form,

and TACACS+ Outbound Password . Can somebody give me the actioncodes and show how the entries in accountactions.csv file

will look for the mentioned operations that is:

1) to update TACACS+ outbound password, and

2) to set "Use separate password" flag and separate password in "TACACS+ Enable Password" form

My next question would be:


How do we retrive TACACS+ outbound password and attribute values in "TACACS+ Enable Password" form dump.txt


I was able to retrieve values for attributes in TACACS+ Enable Password" form


Following is a sample entry in dump.txt for these attributes:

App01 enable_passwd ESTRING 0x0018 6a 35 9b 76 ce c3 81 9c 6d 1c d5 41 06 1a 4e 07 92 8d 50 06 de d4 2a 89


App01 max_priv STRING 0,3 (used for attributes in TACACS+ Enable Password" form)

App01 max_priv_LENGTH INTEGER 3


I also checked the link:http://www.cisco.com/en/US/docs/net_mgmt/cisco_secure_access_control_server_for_solution_engine/4.0/user/guide/ag.html


But I did not find satisfactory information.


Please reply ASAP, your help will be most appreciated.


Ravi

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
jhillend Tue, 02/19/2008 - 09:47
User Badges:
  • Bronze, 100 points or more

1) Use code 104

2) Use code 102; this sets the flag with the ENABLE_LEVEL_STATIC flag set


Do not use the dump.txt for retrieving values. The format of this file is not published.

All passwords are encrypted.

sravit123 Thu, 02/21/2008 - 04:31
User Badges:

Hi,

Could you give examples for cases 1) and 2).


Could you provide an alternate way to retrieve values especially TACACS+ Enable Password attributes. I am lost here.


Awaiting your reply,

Ravi.

Actions

This Discussion