Previous Next Table of Contents

TACACS FAQ

Robert Kiessling, robert@easynet.de

1998-04-23 V1.03


This is s list of frequently asked questions on TACACS, especially in relation to Cisco products. The current version can be found on ftp://ftp.easynet.de/pub/cisco/tacacs-faq. An HTML version can be found on http://www.easynet.de/tacacs-faq/.

1. Introduction

2. What is TACACS, XTACACS, TACACS+, RADIUS?

3. Where do I find more information about TACACS?

4. Where do I find more information about RADIUS?

5. What is a "NAS"?

6. What is AAA?

7. Shall I use TACACS+ or RADIUS?

8. What does "AV" mean?

9. Which IOS release is recommended?

10. How can I enable exec command accounting?

11. How does TACACS interact with Kerberos?

12. Is it possible to kill a user already logged on for some time?

13. Dangers of TACACS accounting and leased lines

14. How can I combine leased-line and dialup PPP?

15. My PPP session does not startup. Traces show authorization requests from unknown users.

16. How can I change the password on the TACACS+ daemon?

17. Can TACACS+ be used for accounting on leased lines?

18. What possibilites exist to dynamically assigning addresses to dialin users?

19. Can both dynamic and static address assignment be used concurrently for PPP dialin users?

20. Can you mix dynamic and static addresses without address pools?

21. Why does my PPP connection to an Ascend not work?

22. How can I restrict multiple access / limit the number of concurrent sessions?

23. Which AV pairs are supported?

24. What is the "route" attribute?

25. How to set a timeout via TACACS+?

26. How can I handle the enable password?

27. How can I enable callback via TACACS+?

28. Can the Username: prompt be changed?

29. Can I use multiple servers?

30. How is Radius configured?

31. Accounting does not work.

32. Where can I get an XTACACS or TACACS+ daemon?


Previous Next Table of Contents