TACACS.net makes it easy to centrally manage and monitor access to routers, switches, and firewalls in large networks.

What is TACACS+?

TACACS+ is an Authentication, Authorization, and Accounting (AAA) protocol originally developed for the U.S. Department of Defense for authentication to network devices such as routers, switches, and firewalls. Unlike RADIUS, it separates the Authentication and Authorization functionalities, which makes it more flexible for administrative access. The current version of the protocol standard was developed by Cisco Systems.

Why do I need TACACS+?

TACACS+ simplifies network administration and increases network security. It does this by centralizing management of users on your network and enabling you to set granular access policies by users and groups, command, location, time of day, subnet, or device type. The TACACS+ protocol also gives you a complete log of every user’s login, what commands were used, when they were entered, and where they came from. TACACS+ is a security best practice and recommended or required for compliance with most network security standards for E-Commerce, Health Care, Finance, and Government networks.

Why should I choose TACACS.net?

TACACS.net software will turn your Windows PC or Server into a fully functioning TACACS+ server that can be used to enable specified local or Active Directory users access to log into and manage network equipment securely with Single Sign-On (SSO). Centralizing your user authentication on your Domain Controller or PC improves network security, saves you money, and simplifies administration.

Is TACACS+ proprietary?

The TACACS+ protocol is not proprietary. It is an open standard defined by RFC 1492 and IETF draft.

What vendors support TACACS+?

Most large Enterprise or Carrier-class network device manufacturers support TACACS+. Some vendors that support the TACACS+ protocol are: Adtran, Alcatel/Lucent, Arbor, Aruba, Avocent/Cyclades, Blade Networks, BlueCat Networks, Blue Coat, Brocade/Foundry, Cisco/Linksys, Citrix, Dell, Edgewater, EMC, Enterasys, Ericsson/Redback, Extreme, Fortinet, Fujitsu, HP/3Com, Huawei, IBM, Juniper/Netscreen, Netgear, Nortel, Palo Alto Networks, Radware, Riverstone, Samsung, and others.

Is TACACS.net software based on any other software or development kits?

TACACS.net is completely original code. It is not based on or derived from any other software.

What is TACACS.net software written in?

TACACS.net is written in .NET and C#.

Why is TACACS+ better than RADIUS for operator authentication?

For details on why TACACS+ is the preferred protocol for administrator access to network elements, please see the white paper TACACS+ Advantages.

Is TACACS.net beta software?

TACACS.net is not beta software. It has been fully QA’d and qualified for use in SMB, Enterprise, and WAN environments

Does TACACS.net support privilege authorization?

TACACS.net can set authorization policy by user group, device, subnet, remote address, day, or time of day.

Does TACACS.net support accounting?

TACACS.net includes full accounting support including logs of commands entered. These logs can also be exported in multiple formats to log aggregators, analyzers, IDS or SIEM tools.

Does TACACS.net run on Unix platforms?

TACACS.net runs on Windows servers and workstations only. Since most Enterprise customers use Windows Active Directory for their authentication database, this simplifies deployment, improves performance, and minimizes points of failure. TACACS.net works best when run directly on Domain Controllers.