TACACS+ Versus RADIUS
TACACS+ and RADIUS are the two major security server protocols used for AAA. Both authenticate a large number of users by creating a database of usernames and passwords. Many of the features available with these protocols overlap; Cisco designed TACACS+ when RADIUS was already in existence, so it implemented similar characteristics into TACACS+'s own architecture. Both TACACS+ and RADIUS server can be run on UNIX and Windows platforms. Because of the growing popularity of the latter, this chapter concentrates on Windows 2000 implementation of RADIUS and TACACS+ rather than UNIX.
Underlying Protocols
RADIUS uses User Datagram Protocol (UDP) as the protocol for communications between the client and the security server, and ...
Get CCIE Practical Studies: Security (CCIE Self-Study) now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
