Tacacs+ For Newbie Users This document aim to give basic information for tacacs+ to first time users. Also give basic tips for understanding tacacs+. Sorry for grammar spesific mistakes because English is not my native language. Warning!!: This document based on our tacacs+ deamon(which is developed by us). This version have additional features than Cisco's free tacacs+. Code protected by Cisco Copright except our code(GNU). None of the TACACS code available here comes with any warranty. Requirement of Reading: First of all you must read some document for understand tacacs+(Concepts and Structure). If we put it sequence : 1) Tacacs+ Installation(Devrim Seral) 2) TACACS+ for First-time Users 3) TACACS+(Peter J. Welcher) 4) Cisco Developer version Tacacs+ and so on.... This documents may found at my tacacs+ home page in document section. When you finished read this document you must understand AAA,NAS,RAS and other concepts. If not turn back and read again. Select Authentication Method: Tacacs+ have variety authentication methods. These are: 1) From tac_plus.cfg file 2) From /etc/passwd (shadow) file 3) From PAP (Pluggable Authentication Method) 4) Passwd like traditional files 5) From Database (Mysql or PostgreSQL(beta) ) You must select one or more of them for your requirements.For example you can use database authentication for your dialin users and for NAS administartion you can use tac_plus.cfg file. Select Accounting Method: Tacacs+ do it with two methods: 1) Put logs to spesific text based log file(ex:tac_acct.log) 2) Database logging.(At this time only Mysql logging available) Well if you're not ISP or big company you don't want DB logging. But if you want to put dialin log to database for praticular propose you can use it. But be warn that we haven't any tools for inspect these log files at this time. Expect if you write your own one ..:) NAS Configuration: This stage is very problematic. But if you read TACACS+ Dial-Up Sample Config and Configuring Network Access Security it's very helpfull. devrim