Here is the simple steps to install free TACACS+ application.
2. Install Free TACACS+ on Ubuntu
3. Configure tac_plus.conf
4. Testing
5. configure Network device(Cisco router)
1. Download TACACS+
Get lastest tacacs+ binary rpm file from http://www.shrubbery.net/tac_plus/
2. Install Free TACACS+ on Ubuntu
Login your machine as a ‘root’ (account) to avoid any interruption while installing Free TACACS+
By typing following command from prompt, the TACACS+ could download and install at the same time.
root@Ubuntu64#sudo apt-get install tacacs+
3. Configure tac_plus.config
TACACS+ application is installed at /etc/tacacs+. And configuration file, tac_plus.conf is located under the directory.
Using pico/vi editor, open the file, tac_plus.conf (as a root)
The following essential options are needed to run TACACS+
# Define where to log accounting data, this is the default. It will provide a history of commands applied by each users from devices
accounting file = /var/log/tac_plus.acct
# Use /etc/passwd to do authentication
default authentication = file /etc/passwd
# This is the key that clients(Cisco devices in this case) have to use to access Tacacs+
key = IPBALANCE <—- You might need to change it.
# user accounts(optional)
user = Security_Engineer {
member = Engineers
}
user = Network_Engineer {
member = Engineers
}
user = Network_Technician {
member = Technician
}
user = Gov_sales {
member = Sales
}
# Group(optional)
group = Engineers {
default service = permit
login = file /etc/passwd
enable = file /etc/passwd
group = Technician {
default service = deny
service = exec {
priv-lvl = 2
}
cmd = enable {
permit .*
}
cmd = show {
permit .*
}
cmd = exit {
permit .*
}
}