[109167] in North American Network Operators' Group
Re: Advice/resources for setting up TACACS server
daemon@ATHENA.MIT.EDU (Steven King)
Fri Nov 7 17:40:09 2008
Date: Fri, 07 Nov 2008 17:39:14 -0500
From: Steven King <sking@kingrst.com>
To: Leslie <leslie@craigslist.org>
In-Reply-To: <952F746D-33C3-44BC-8235-F079065FDA53@craigslist.org>
Cc: nanog@nanog.org
Errors-To: nanog-bounces@nanog.org
I disagree with the RADIUS suggestion. TACACS+ is a much more secure
protocol. It encrypts the packet contents and has a more secure
handshake procedure.
Leslie wrote:
> The best answer actually does seem to be to use freeradius instead of
> tacacs, so I will probably go with that (though if anyone has any good
> tips on freeradius, please, let me know)
>
> Leslie
>
> On Nov 7, 2008, at 1:30 PM, Leslie wrote:
>
>> Hi --
>>
>> We are currently trying to set up a TACACS server for authentication
>> to our network gear and have it run on suse linux hosts. Does anyone
>> have any advice/good webpages or guides regarding this?
>>
>> Thank you very much in advance!
>>
>> Leslie
>
>
--
Steve King
Network Engineer - Liquid Web, Inc.
Cisco Certified Network Associate
CompTIA Linux+ Certified Professional
CompTIA A+ Certified Professional
