Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1850
Views
0
Helpful
2
Replies

TACACS+ Authentication and Telnet

corey_hatch
Level 1
Level 1

‎09-23-2003 10:30 AM - edited ‎03-10-2019 07:30 AM

I have a Cisco Secure AAA implementation where Cisco devices have the command "aaa authentication login default tacacs+ enable". While this is in place, I know TACACS+ is being used to encrypt the packets between the NAS and the ACS. What I don't know is if the telnet session made with the NAS is also using TACACS+? In other words, is the password being sent to the router in clear text and then encrypted before being passed to the ACS or is the telnet session also encyrpting the packets via TACACS+? Thanks very much.

Labels:
0 Helpful
2 Replies 2

corey_hatch
Level 1
Level 1

‎09-23-2003 12:10 PM

I answered my own question in testing by finding out that the password is sent in the clear over the Telnet session.

Does anyone know options of remeding this situation other then SSH?

0 Helpful

mhoda
Level 5
Level 5
In response to corey_hatch

‎09-26-2003 03:23 PM

Hi,

Unfortunately, ssh is the only option. taacs+ client your router not the client machine. Your client machine cannot open up any tacacs+ connections. Thanks,

Mynul

0 Helpful
Customers Also Viewed These Support Documents