Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
834
Views
0
Helpful
3
Replies

Can a TACACS+ server query a RADIUS server?

tamyotte
Level 1
Level 1

‎08-31-2010 11:18 AM - edited ‎03-10-2019 05:22 PM

Hi All.

My work environment currently uses FreeRADIUS for all of our customer and staff AAA requirements.  This currently includes access to all of our Cisco devices.

My boss now wants to set up a TACACS+ server for access to all our Cisco devices, but wants the TACACS+ server to query the RADIUS server and its database in turn.  In other words, he wants the TACACS+ server to act as a kind of proxy and relay the request to RADIUS, and to have RADIUS pass the accept or reject back to the TACACS+, and then back to the Cisco device.

Does anyone know if this is possible?  I'm pretty sure you can do this with 2 RADIUS servers...

Labels:
0 Helpful
3 Replies 3

Javier Henderson
Level 4
Level 4

‎09-01-2010 09:35 AM

What version of ACS?

0 Helpful

tamyotte
Level 1
Level 1
In response to Javier Henderson

‎09-03-2010 02:16 PM

Good question.  We do not currently have a TACACS+ server, and would have to build one if this is possibility.

Having said that, I believe my boss is just going to go for local authentication on the few switches where this is a problem.

0 Helpful

Javier Henderson
Level 4
Level 4
In response to tamyotte

‎09-05-2010 07:00 AM

I was assuming you were using ACS as your TACACS+ server. It can proxy to a RADIUS server. I don't know about other TACACS+ servers, though.

0 Helpful
Customers Also Viewed These Support Documents