cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
671
Views
0
Helpful
5
Replies

How to configure AAA

somnath21
Level 1
Level 1

Hi,

I have some question regarding AAA..

1)which one is the best?

a) TACACS+

b) RADIUS

2)How to configure AAA in network devices?

3)How to configure RADIUS/TACACS+ in ACS?

Please guide in this smatter?

Thanx

som

5 Replies 5

chaitu_kranthi
Level 1
Level 1

hi Som,

Let me explain first What TACACS+ & Radius do.

Radius will do the encryption only authenticating part, Where as TACACS+ will encrypt end to end means till the telnet sessions end all the data will encrypted.

Problem here is TACACS+ is Cisco Propritory,

RADIUS is Manf independent.

if your entire network is having only cisco products then it is better to go with TACACS+.

"Where as TACACS+ will encrypt end to end means till the telnet sessions end all the data will encrypted"

that is not correct. TACACS+ will encrypt the

communication between the AAA server and the

network devices. If you telnet to the network

device from a workstation, your username

and password will travel "in the clear"

between the workstation and the network

device.

Radius will encrypt only the password, not the

username. TACACS+ will encrypt both.

Radius will bundle both the Authentication

and Authorization whereas TACACS+ will

separate both the Authentication and

Authorization.

many many thanks!!!

Hi Istvan,

Links are very helpful....Thanks a lot!!

one more question...

where shall I get the TACACS+ or RADIUS server software.......

Hi Som,

The latest version of CiscoSecure ACS sofware can be purchased from your nearest Cisco reseller.

Cheers:

Istvan

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: