tacacs.conf :

#default authentication = file /etc/passwd
#default authorization = permit

accounting file = /var/log/tac-plus/account
key = secretkey

user = DEFAULT {
default service = deny
}

user = username1 {
login = des shc36DGgs73ab
name = “Full Name”
service = shell { }
service = exec {
priv-lvl = 15
}
}

user = username2 {
login = cleartext cleartextpassword
name = “Full Name2″
service = shell { }
service = exec {
priv-lvl = 15
}
}

user = $enab15$ {
login = des fdnSH62HDhabdsD
}

EOF

Use –> perl -e “print crypt(‘passwort’,'salt’)” <– to generate a DES login.

Filed under: Linux by halli