It seems like your browser didn't download the required fonts. Please revise your security settings and try again.

Login Sign Up Contact & Support

United States – English (GMT-6)

Barracuda Assistant

Email Protection

Total Email Protection

Email Gateway Defense (Email Security)

Impersonation Protection (Sentinel)

Cloud Archiving Service

Security Awareness Training (PhishLine)

Managed Security Awareness Training (Managed Phishline)

Email Security Gateway

Domain Fraud Protection

Incident Response

Message Archiver

WAF-as-a-Service

Web Application Firewall

Load Balancer ADC

Vulnerability Manager

Vulnerability Remediation Service

WAF Control Center

Active DDoS Prevention

CloudGen Firewall

CloudGen Access

Network Access Client

Firewall Insights

Web Security Gateway

Web Security Agent

Firewall Policy Manager

Intronis Backup (ECHOplatform)

Cloud-to-Cloud Backup

RMM (Managed Workplace)

Server Backup (Yosemite)

Campus Help Center / Reference

Onboarding Portal

Support Services

Barracuda CloudGen Firewall

Overview Documentation Training Certification Materials

Barracuda Assistant

Email Protection

Total Email Protection

Email Gateway Defense (Email Security)

Impersonation Protection (Sentinel)

Cloud Archiving Service

Security Awareness Training (PhishLine)

Managed Security Awareness Training (Managed Phishline)

Email Security Gateway

Domain Fraud Protection

Incident Response

Message Archiver

WAF-as-a-Service

Web Application Firewall

Load Balancer ADC

Vulnerability Manager

Vulnerability Remediation Service

WAF Control Center

Active DDoS Prevention

CloudGen Firewall

CloudGen Access

Network Access Client

Firewall Insights

Web Security Gateway

Web Security Agent

Firewall Policy Manager

Intronis Backup (ECHOplatform)

Cloud-to-Cloud Backup

RMM (Managed Workplace)

Server Backup (Yosemite)

Campus Help Center / Reference

Onboarding Portal

Support Services

Login Sign Up Contact & Support

United States – English (GMT-6)

Barracuda Campus is getting an upgrade!

We are excited to announce that Barracuda Campus will migrate to a new platform around mid-January 2026. Please see the announcement on the Campus Dashboard to find out more.

How to Configure TACACS+ Authentication

Last updated on 2018-04-16 21:53:20

Terminal Access Controller Access-Control System Plus (TACACS+) is an access control network protocol (TCP) for routers, network access servers, and devices. Unlike RADIUS, TACACS+ uses separate authentication and authorization. TACACS+ provides centralized user and group management and offers extended logging options. TACACS+ supports multiple protocols, e.g., IP and AppleTalk .

Configure TACACS+

To configure TACACS+ for external authentication with the Barracuda CloudGen Firewall,

Go to CONFIGURATION > Configuration Tree > Box > Infrastructure Services > Authentication Service.
In the left navigation pane, select TACACS+ Authentication.
Click Lock.
Enable TACACS+ as external directory service.
In the TACACS+ IP Address table, add an entry for each TACACS+ server. You can edit the following settings:
- TAC+ IP Address – IP address of the TACACS+ server.
- TAC+ ID Port – ID Port information. E.g.: tty10
- TAC+ Server Port – TCP port of the TACACS+ server.
- TAC+ Key – DES encryption key.
  The key can consist of small and capital characters, numbers, and non alpha-numeric symbols, except the hash sign (#).
- Timeout (s) – Authentication timeout in seconds.
- TAC+ Login Type – TACACS+ login type (inbound).
Click OK.
If group information is queried from a different authentication scheme, select the scheme from the User Info Helper Scheme list.
Click Send Changes and Activate.