Re: TACACS or Radius daemon on Linux

["Alex P. Rudnev" <alex () virgin relcom eu net>]

TACACS is more flexible (it is connection-oriented text-based protocol,
and allow to track the whole negotiation process, for example to very
'Passwd' prompt in dependence of the user's name etc. Text-nature makes
this protocol more flexible for the new features, too.

On the other hand, RADIUS is more standard and more compact.

My choose should be - to run TACACS if you have CISCO-only
equipment, and use FreeBSD
instead of linux because this is more _server-oriented_ unix.

But if you have a mixture of equipment, use RADIUS or both.

Alex.
On Wed, 20 Oct 1999, Paul Froutan wrote:

> Date: Wed, 20 Oct 1999 13:35:29 -0500
> From: Paul Froutan <pfroutan () rackspace com>
> To: nanog () merit edu
> Cc: mnolan () southshore com
> Subject: Re: TACACS or Radius daemon on Linux
>
>
> At 10:49 AM 10/19/99 , mnolan () southshore com wrote:
>
> > Hi,
> >
> > We are an ISP running several Cisco 2500s, 5200s, and 5300s as access 
> > servers.  Currently we are entering each user into each box.
> >
> > We are looking to set up a Red Hat Linux machine as either a TACACS or
> > Radius server to centrally validate all our users.
> >
> > Does anyone have any experience running a TACACS or Radius daemon
> > on Linux?  Where is a good place to find a Linux TACACS or Radius 
> > daemon?
> >
> > I heard that although TACACS is a Cisco product, Radius has more 
> > accounting and statistics capability, runs well on Linux, and will 
> > validate for Ciscos.
>
> I'm running TACACS+ on multiple Red Hat Linux 5.2 boxes without any problems.  The latest version on the tar you can 
> get from Cisco allows you to select the OS before you run make.  I believe it was written for Solaris but I have 
> found that it works fine on Linux.  You can add a few tweeks to make things easier, but it works fine.  You can also 
> download an RPM from freshmeat, but it has very limited capabilities.  If you need further help, contact me since I 
> don't think we need to get into this on this list.
> ______________________________________________________________________
> Paul Froutan                                       Main: 210-892-4000
> Rackspace, Ltd                                    Direct: 210-892-4010
> Weston Centre                                        Fax: 210-892-4329
> 112 East Pecan, Suite 600                Email: pfroutan () rackspace com
> San Antonio, TX 78205                       <http://www.rackspace.com>
> ---------------------------------------------------------------------- 
> RACKSPACE.COM - Customized Dedicated Servers for Business (TM) 
> ----------------------------------------------------------------------

Aleksei Roudnev, Network Operations Center, Relcom, Moscow
(+7 095) 194-19-95 (Network Operations Center Hot Line),(+7 095) 230-41-41, N 13729 (pager)
(+7 095) 196-72-12 (Support), (+7 095) 194-33-28 (Fax)