Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1822
Views
0
Helpful
2
Replies

TACACs+

gaban
Level 1
Level 1

‎06-26-2003 08:09 AM - edited ‎03-10-2019 07:22 AM

Does tacacs+ encprypt the whole session from logging and doing commands or does it only encrypt the login?

thanks,

gilbert

Labels:
0 Helpful
2 Replies 2

ywadhavk
Cisco Employee
Cisco Employee

‎06-26-2003 08:26 AM

Hi Gilbert,

TACACS+ encrypts the whole session.

Snippet from the the below url

--------

TACACS+ encrypts the entire body of the packet but leaves a standard TACACS+ header. Within the header is a field that indicates whether the body is encrypted or not. For debugging purposes, it is useful to have the body of the packets unencrypted. However, during normal operation, the body of the packet is fully encrypted for more secure communications.

------------

http://www.cisco.com/en/US/partner/tech/tk583/tk547/technologies_tech_note09186a0080094e99.shtml

Thanks,

yatin

0 Helpful

mhoda
Level 5
Level 5

‎07-01-2003 09:44 PM

Hi Gilbert,

It encrypts the while session between the NAS ( router) and the tacacs+ server. If you want an unencrypted session, all you need to do is not defining the shared secret key. If you don't define shared secrect, there will not be any hashing involved between the NAS and the tacacs+ server.

Regards,

Mynul

0 Helpful
Customers Also Viewed These Support Documents