Foundry FastIron FLS-624 & FLS648 ! aaa authentication enable default local tacacs+ aaa authentication login default local tacacs+ aaa authorization exec default tacacs+ aaa accounting commands 0 default start-stop tacacs+ aaa accounting exec default start-stop tacacs+ ! tacacs-server host 192.168.33.44 tacacs-server key xxxxxxxxxxxxxx !
Juniper M7i – JUNOS 9.3R2.8 The username must be set to “remote”. #edit system set login user remote class super-user set login user remote full-name “TACACS+ remote User” set login user remote uid 3333 set accounting events [ login interactive-commands ] destination tacplus set authentication-order [ tacplus password ] set tacplus-server 10.20.30.22 source-address 10.20.30.11 port [...]
For a simple TACACS+ daemon config –> simple TACACS+ config ! aaa new-model ! ! aaa authentication fail-message ^C –> local authentication failed ! <– ^C ! ! Set the prompt that will show up if the TACACS+ service is unavailable aaa authentication password-prompt “Enter local password: ” aaa authentication username-prompt “Enter local username: ” [...]
tacacs.conf : #default authentication = file /etc/passwd #default authorization = permit accounting file = /var/log/tac-plus/account key = secretkey user = DEFAULT { default service = deny } user = username1 { login = des shc36DGgs73ab name = “Full Name” service = shell { } service = exec { priv-lvl = 15 } } user = [...]