TACACS


TACACS+

TACACS has several different versions. The industry-standard version of TACACS is specified by RFC 1492. XTACACS is a Cisco proprietary version. Cisco added some enhancements to the RFC 1492 TACACS version and XTACACS was born.

Finally, the current version of TACACS supported on Cisco equipment is TACACS+. This version was developed by Cisco and is not compatible with other versions of TACACS.

graphics/alert_icon.gif

Only TACACS+ and RADIUS are supported on Cisco networking equipment. XTACACS and TACACS are no longer supported by Cisco.


Features of TACACS+

TACACS+ is more widely used than RADIUS; however, both protocols have similar functionality. Some of the benefits of using TACACS+ are that the protocol uses TCP as its transport protocol and TACACS+ provides multiprotocol support. TACACS+ separates the functionality of AAA services into separate services. Therefore, there is a TACACS+ service that handles authentication, a TACACS+ service that handles authorization, and a separate service for accounting. However, the accounting services are limited, especially when compared to those of RADIUS.

graphics/alert_icon.gif

TACACS+ encrypts the entire packet for confidentiality when communicating between the TACACS+ server and the router.


graphics/alert_icon.gif

TACACS+ communication uses TCP for reliability.


graphics/alert_icon.gif

TACACS+ can run accounting services on a separate server from the server for the authentication and authorization services.




CCSP SECUR Exam Cram 2
CCSP SECUR Exam Cram 2 (642-501)
ISBN: B000MU86IQ
EAN: N/A
Year: 2003
Pages: 291
Authors: Raman Sud

flylib.com © 2008-2017.
If you may any questions please contact us: flylib@qtcs.net