On one Cisco Secure Server, can I have one NAS use TACACS+ and another use RADIUS?
I'm maintaining my existing nas server in production using radius for dial in authentication. I want to test my second nas server using tacacs+ through the same Cisco Secure server while keeping the radius process running. I eventually want to use tacacs+ for both dial in, router and local user authentication.
Re: On one Cisco Secure Server, can I have one NAS use TACACS+ a
You can do this as long as you can identify different types of access.
For example you can have ppp authentication use RADIUS and telnet authentication use TACACS, or you can have one interface (eg dialer) use RADIUS and another (eg vty) use TACACS between the same router and server.
To achieve this with Cisco Secure NT/2000 you will need to use the ip radius-server/tacacs-server source-interface command to make one router look like two to the server. For Cisco Secure Unix this is not a problem.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...