I'm currently evaluating solution available to centralized access management of our telecom device. I know RADIUS and TACACS are the most popular technique to do.
On the following document "http://www.cisco.com/en/US/docs/ios/internetwrk_solutions_guides/splob/guides/dial/aaasub/C262C1.html#wp1027410" I find a basic overview of both solution. In TACACS overview feature it is listed : "TACACS+ permits the blocking of services to a specific port, such as a TTY or VTY interface on a router." What it is this feaure exactly ?
My understand is : we have the possibily to permit or deny some kind or group of command base on which interface the user is connected exemple reload command can be permit only from console port of the equipement.
Can someone can confirm this to me....