Thanks so much for the feedback. <span></span><br><br>On Wednesday, 9 March 2016, Daniel Schmidt <<a href="mailto:daniel.schmidt@wyo.gov">daniel.schmidt@wyo.gov</a>> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">Jathan and I have release a new do_auth that fixes long pairs for ASA:<br>
<br>
<a href="https://github.com/jathanism/do_auth" target="_blank">https://github.com/jathanism/do_auth</a><br>
<br>
For those who unaware, do_auth provides granular control to tac_plus thus<br>
giving you the option to limit access to your gear based on command, ip, or<br>
even source ip in any combination you want. It also helps nx-os and IOS to<br>
play well on the same tac_plus server and even lets you switch tac_pairs<br>
sent to devices. (NXOS roles, for instance)<br>
<br>
Tacacs implementations vary greatly. If you find a device that doesn't<br>
work, shoot me an email - we can probably fix it.<br>
<br>
Lastly, if you have found do_auth to be helpful in your environment, I<br>
would appreciate a quick email and, if possible, note what company is using<br>
it.<br>
<br>
--<br>
<br>
E-Mail to and from me, in connection with the transaction<br>
of public business, is subject to the Wyoming Public Records<br>
Act and may be disclosed to third parties.<br>
-------------- next part --------------<br>
An HTML attachment was scrubbed...<br>
URL: <<a href="http://www.shrubbery.net/pipermail/tac_plus/attachments/20160309/92acdc1f/attachment.html" target="_blank">http://www.shrubbery.net/pipermail/tac_plus/attachments/20160309/92acdc1f/attachment.html</a>><br>
_______________________________________________<br>
tac_plus mailing list<br>
<a href="javascript:;" onclick="_e(event, 'cvml', 'tac_plus@shrubbery.net')">tac_plus@shrubbery.net</a><br>
<a href="http://www.shrubbery.net/mailman/listinfo/tac_plus" target="_blank">http://www.shrubbery.net/mailman/listinfo/tac_plus</a><br>
</blockquote>