[tac_plus] New do_auth

Mohamed Faye mahafaye at gmail.com
Wed Mar 9 22:55:50 UTC 2016


Thanks so much for the feedback.

On Wednesday, 9 March 2016, Daniel Schmidt <daniel.schmidt at wyo.gov> wrote:

> Jathan and I have release a new do_auth that fixes long pairs for ASA:
>
> https://github.com/jathanism/do_auth
>
> For those who unaware, do_auth provides granular control to tac_plus thus
> giving you the option to limit access to your gear based on command, ip, or
> even source ip in any combination you want.  It also helps nx-os and IOS to
> play well on the same tac_plus server and even lets you switch tac_pairs
> sent to devices.  (NXOS roles, for instance)
>
> Tacacs implementations vary greatly.  If you find a device that doesn't
> work, shoot me an email - we can probably fix it.
>
> Lastly, if you have found do_auth to be helpful in your environment, I
> would appreciate a quick email and, if possible, note what company is using
> it.
>
> --
>
> E-Mail to and from me, in connection with the transaction
> of public business, is subject to the Wyoming Public Records
> Act and may be disclosed to third parties.
> -------------- next part --------------
> An HTML attachment was scrubbed...
> URL: <
> http://www.shrubbery.net/pipermail/tac_plus/attachments/20160309/92acdc1f/attachment.html
> >
> _______________________________________________
> tac_plus mailing list
> tac_plus at shrubbery.net <javascript:;>
> http://www.shrubbery.net/mailman/listinfo/tac_plus
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.shrubbery.net/pipermail/tac_plus/attachments/20160309/33489e6e/attachment.html>


More information about the tac_plus mailing list