RADIUS AND TACACS

                                                         RADIUS AND TACACS

A basic RADIUS server implementation references two configuration files, The client configuration files contains the address of the client and the shared secret used to authentication transaction. All current TACACS daemons are based on the extended protocol as described in RFC1492. TACACS variable parameter field provides for extensibility and site specific customization, while the TCP protocol ensures reliable delivery. Like RADIUS, a successful TACACS authentication returns attributes-value (AV) pairs for connection configuration. TACACS consists of Request and Response in Authorizations functions. TACACS accounting functions use a format similar to authorization functions. SSO is a user authentication process that permits a user to enter one name and password in order to access multiple applications. The primary purpose of Kerberos was to provide a secure network authentication service. SESAME is a network authentication service based on the same general ideas as Kerberos, with its single login and encrypted communication.

Keywords: 

RADIUS - Remote Authentication Dial- In User Service

TACACS - Terminal Access Controller Access-Control System

SSO        -    Single Sign On

TGS        -    Ticket Granting Server

SESAME    -    Secure European System for Application in a Multi-vendor Environment

SACM        -    Secure Association Context Manager