[109171] in North American Network Operators' Group
Re: Advice/resources for setting up TACACS server
daemon@ATHENA.MIT.EDU (Dominic J. Eidson)
Fri Nov 7 18:03:42 2008
Date: Fri, 7 Nov 2008 17:03:14 -0600 (CST)
From: "Dominic J. Eidson" <sauron@the-infinite.org>
To: Leslie <leslie@craigslist.org>
In-Reply-To: <A423995B-08B4-429A-9A1F-60BDB64D59B9@craigslist.org>
Cc: nanog@nanog.org
Errors-To: nanog-bounces@nanog.org
It's not free, but I want to praise Radiator
(http://www.open.com.au/radiator/) as a great radius/tacacs+ server.
(I have previously battled both with freeradius and openradius.)
- d.
On Fri, 7 Nov 2008, Leslie wrote:
> Do you have any suggestions for a free tacacs server which will run on linux
> ? I have so far been unable to find any and the tacacs+ source code hasn't
> been updated since around 2000
>
> Leslie
>
> On Nov 7, 2008, at 2:43 PM, Eddy Martinez wrote:
>
>> I second the TACACS+
>>
>> Thats what you want. Same effort for the most part, to implement.
>>
>> Eddy
>>
>> On Nov 7, 2008, at 2:39 PM, Steven King wrote:
>>
>> > I disagree with the RADIUS suggestion. TACACS+ is a much more secure
>> > protocol. It encrypts the packet contents and has a more secure
>> > handshake procedure.
>> >
>> > Leslie wrote:
>> > > The best answer actually does seem to be to use freeradius instead of
>> > > tacacs, so I will probably go with that (though if anyone has any good
>> > > tips on freeradius, please, let me know)
>> > >
>> > > Leslie
>> > >
>> > > On Nov 7, 2008, at 1:30 PM, Leslie wrote:
>> > >
>> > > > Hi --
>> > > >
>> > > > We are currently trying to set up a TACACS server for authentication
>> > > > to our network gear and have it run on suse linux hosts. Does anyone
>> > > > have any advice/good webpages or guides regarding this?
>> > > >
>> > > > Thank you very much in advance!
>> > > >
>> > > > Leslie
>> > >
>> > >
>> >
>> > --
>> > Steve King
>> >
>> > Network Engineer - Liquid Web, Inc.
>> > Cisco Certified Network Associate
>> > CompTIA Linux+ Certified Professional
>> > CompTIA A+ Certified Professional
>> >
>> >
>>
>
--
Dominic J. Eidson
"Baruk Khazad! Khazad ai-menu!" - Gimli
----------------------------------------------------------------------------
http://www.dominiceidson.com/
