07-21-2011
Configuring Unix(FreeSBD) to authenticate to TACACS
Can someone please posts the steps needed to configure a UNIX server to authenticate with a TACACS+ server or point me in the right direction been googling for 2 days now. Thanks
9 More Discussions You Might Find Interesting
1. HP-UX
Hi all,
I have installed a software on a local machine running UNIX .
Using NetBatch utility, In the COMMUNICATION file on this Local UNIX machine I have added:
remote_machine_name:OS: Description:Type
so that I can use this remote machine running UNIX to complete jobs which are... (0 Replies)
Discussion started by: molly81
0 Replies
2. UNIX for Dummies Questions & Answers
Dear all
I want to redirect the logs of the syslog of a tru64 unix machine in a log and event monitoring tool installed in another server. In the syslog.conf i have appended *.*@<server_name> at the end, where <server_name> is the name of the machine on which the reporting tool is running. I... (0 Replies)
Discussion started by: adak2010
0 Replies
3. Shell Programming and Scripting
Hi
I want to create a script that will authenticate user from a file and if both of them match then only the script is allowed to be executed...
Suppose I have a script say test.sh and a file config.txt
for users whose user ids exist in the text file should only be given permission to... (1 Reply)
Discussion started by: ultimatix
1 Replies
4. Shell Programming and Scripting
At times I find the need to test that the tacacs port 49 is open.
The code below works but is painfully slow because I have to wait on the timeouts.
Examples of possible responds
router1#telnet 10.11.20.14 49
Trying 206.112.204.140, 49 ... Open
route1#telnet 10.11.19.14 49
Trying... (1 Reply)
Discussion started by: popeye
1 Replies
5. UNIX for Dummies Questions & Answers
Seek help configuring Sendmail 8.14.4 Unix server.
Not sure if this is the correct place to post or the Unix/Linux Forums job board. Seeking help configuring sendmail 8.14.4 on my Unix server. It appears I have an open relay. I was advised I need to modify a etc/mail/dir , a command line entry... (0 Replies)
Discussion started by: raecampus
0 Replies
6. UNIX for Advanced & Expert Users
Can someone please posts the steps needed to configure a UNIX server to authenticate with a TACACS+ server or point me in the right direction been googling for 2 days now. Thanks (0 Replies)
Discussion started by: supadee718
0 Replies
7. BSD
Can someone please posts the steps needed to configure a UNIX server to authenticate with a TACACS+ server or point me in the right direction been googling for 2 days now. Thanks (0 Replies)
Discussion started by: supadee718
0 Replies
8. IP Networking
I have customer who controls access to the internet via TACACS server, basically a PIX firewall uses authentication from the TACACS to say if traffic is allowed to pass out of the gateway. I can't find anything on how to configure a linux client of TACACS authentication only how to set up a linux... (1 Reply)
Discussion started by: metallica1973
1 Replies
9. UNIX for Dummies Questions & Answers
I want to configure and run sshd server on my unix box. I already have that installed.
# yum -y install openssh-server openssh-clients
Loaded plugins: fastestmirror, presto, refresh-packagekit
Loading mirror speeds from cached hostfile
* base: centos.mirror.constant.com
* epel:... (1 Reply)
Discussion started by: nitalchandel
1 Replies
LEARN ABOUT FREEBSD
pam_tacplus
PAM_TACPLUS(8) BSD System Manager's Manual PAM_TACPLUS(8)
NAME
pam_tacplus -- TACACS+ authentication PAM module
SYNOPSIS
[service-name] module-type control-flag pam_tacplus [options]
DESCRIPTION
The pam_tacplus module provides authentication services based upon the TACACS+ protocol for the PAM (Pluggable Authentication Module) frame-
work.
The pam_tacplus module accepts these optional parameters:
use_first_pass causes pam_tacplus to use a previously entered password instead of prompting for a new one. If no password has been entered
then authentication fails.
try_first_pass causes pam_tacplus to use a previously entered password, if one is available. If no password has been entered, pam_tacplus
prompts for one as usual.
echo_pass causes echoing to be left on if pam_tacplus prompts for a password.
conf=pathname specifies a non-standard location for the TACACS+ client configuration file (normally located in /etc/tacplus.conf).
template_user=username
specifies a user whose passwd(5) entry will be used as a template to create the session environment if the supplied username
does not exist in local password database. The user will be authenticated with the supplied username and password, but his
credentials to the system will be presented as the ones for username, i.e., his login class, home directory, resource limits,
etc. will be set to ones defined for username.
If this option is omitted, and there is no username in the system databases equal to the supplied one (as determined by call
to getpwnam(3)), the authentication will fail.
FILES
/etc/tacplus.conf The standard TACACS+ client configuration file for pam_tacplus
SEE ALSO
passwd(5), tacplus.conf(5), pam(8)
HISTORY
The pam_tacplus module first appeared in FreeBSD 3.1.
AUTHORS
The pam_tacplus manual page was written by Andrzej Bialecki <abial@FreeBSD.org> and adapted to TACACS+ from RADIUS by Mark R V Murray
<markm@FreeBSD.org>.
The pam_tacplus module was written by John D. Polstra <jdp@FreeBSD.org>.
BSD
August 2, 1999 BSD