[tac_plus] Full AAA logging / supported configuration
heasley
heas at shrubbery.net
Mon Sep 12 20:16:15 UTC 2016
Mon, Sep 12, 2016 at 01:09:57PM -0700, Sean:
> It’s tac_plus, it’s just ancient. I believe it had something to do with MAVIS as well.
>
> The system(s) I’m running v4 on are using PAM instead of the MAVIS module.
>
> So more or less just enable the right debug levels and route to syslog, expecting to find things in auth.log, etc.? With accounting being the exception. If so, I will look into getting rsyslogd to route the data correctly.
it only uses 1 facility, whichever you specify in the config. otherwise,
yes. tacacs is fairly quiet; leaving the auth/auth-failure to the clients.
I'd be willing to add an option for tacacs to log these itself, at least
for authentication.
More information about the tac_plus
mailing list