Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
6653
Views
0
Helpful
8
Replies

best tacacs+ software for linux

pamirian76
Level 1
Level 1

‎11-24-2004 05:18 AM - edited ‎03-10-2019 01:54 PM

hi,

I need to run tacacs+ on linux.

what's the best software implementing tacacs+ under linux?

thanks.

Labels:
0 Helpful
8 Replies 8

paddyxdoyle
Level 6
Level 6

‎11-24-2004 07:30 AM

Hi,

Cisco have a TACACS+ binary talled tac_plus that compiles on Linux and its free!

http://www.cisco.com/en/US/tech/tk59/technologies_tech_note09186a00800946a3.shtml

It works very well, and can be used for full AAA as you would expect with TACACAS+

There is another version of tac_plus by i think shubbery.net that allows you do add access-list statements to user profiles, e.g. thus permiting some say non admin users to access only specific router IPs. From memory, I'll have to check this out though as it's been a while, with the Cisco tac_plus you can apply ACLs to users passing through a router (ppp etc) via tacacs+ but not to users logging on to a router.

I while back i wrote a doc on how to set it all up on Solaris, I believe it will be very similar on Linux.

I can send you a copy if you are interested?

Rgds

Paddy

0 Helpful

pamirian76
Level 1
Level 1
In response to paddyxdoyle

‎11-24-2004 09:58 AM

sure thanks man.

send me your file to my hotmail address.

patrix1976 at hotmail dot com

0 Helpful

clmcosysadmin
Level 1
Level 1
In response to paddyxdoyle

‎04-11-2006 07:38 AM

Can you please send me a copy of that doc you wrote on how to set it all up on Solaris?

Thank you very much.

Roy

0 Helpful

mwasserott
Level 1
Level 1
In response to paddyxdoyle

‎04-13-2006 06:34 AM

I run Ciscos TACACS+ server on a Solaris box and so far it seems to work fine. I've tested all aspects of the AAA functionalitity and they all seem to work.

I am curious about the ability to apply ACLs to incoming users. I am in need of doing something like that. I need to only allow certain users/groups to connect via the VPN, but not via any other method.

0 Helpful

tahequivoice
Level 2
Level 2
In response to mwasserott

‎04-28-2006 05:43 AM

I found a very nice Tacacs+ server for Linux that has a web interface and uses MySQL for the database. Search for PHP Nuke to find it. I run it on Redhat 9.0, took about a day to get it fully working and tested once I figured out that I didnt need anything special to do, and I am NOT linux savvy. Just gunzip it and ./install.sh and its done, then follow the directions for installing the WWebUI portion and bam your done. Takes longer to understand how to use the web interface than anything else.

0 Helpful

johndennison
Level 1
Level 1
In response to tahequivoice

‎05-18-2006 11:48 AM

tahequivoice,

Could you provide some more information on finding this? I don't understand what PHP Nuke has to do with it.

Thanks.

0 Helpful

tahequivoice
Level 2
Level 2
In response to johndennison

‎05-18-2006 03:08 PM

Go here and get it. It works pretty good and is easy to maintain with its Web interface and MySQL backend.

http://www.networkforums.net/index.php

0 Helpful

mwasserott
Level 1
Level 1
In response to tahequivoice

‎05-19-2006 09:12 AM

Does this Tacacs+ server support ACL defintions against users/groups which would allow them to gain access via a VPN service but not through exec,PPP, etc. ?

0 Helpful
Customers Also Viewed These Support Documents