This document gives an insight about tacacs+ and Radius.
What is Tacacs?
Terminal Access Controller Access-Control System (TACACS) is a remote authentication protocol that is used to communicate with an authentication server. TACACS allows a remote access server to communicate with an authentication server in order to determine if the user has access to the network.
What is Radius?
Remote Authentication Dial-In User Service (RADIUS) is a client/server protocol and software that enables remote access servers to communicate with a central server to authenticate dial-in users and authorize their access to the requested system or service. RADIUS allows a company to maintain user profiles in a central database that all remote servers can share. It provides better security, allowing a company to set up a policy that can be applied at a single administered network point.
For the Network Access Server (NAS) to communicate with Cisco Secure ACS for Windows, these two ports must be enabled:
TCP port 49 for TACACS+
UDP ports 1645/1646 and 1812/1813 for RADIUS (default ports)
Hello, Our SSL Certificate on the admin portal has expired and will not allow us to log on. The cert was issued by our local CA via a CSR from the ISE instance. I do have access to the CLI. I'm not given the opportunity to logon, I get an SSL error f...
We are rebuilding our ISE environment and moving from version 2.3 patch 6 to version 2.7 patch 2. I am at the phase where I am now configuring the guest hotspot portal. I am using the portal customization page rather than the ISE Portal Builde...
Hello, we are doing PEAP machine only for wired 802.1x, (Policy is set up so if a PC has the cert and is in the AD group it passes) so wondering why we are getting these user auth attempts and so then the switch shows dot1x failed even though the machine ...