It seems like your browser didn't download the required fonts. Please revise your security settings and try again.

Login Sign Up Contact & Support

United States – English (GMT-5)

Email Protection

Total Email Protection

Email Gateway Defense (Email Security)

Impersonation Protection (Sentinel)

Cloud Archiving Service

Security Awareness Training (PhishLine)

Email Security Gateway

Domain Fraud Protection

Incident Response

Message Archiver

WAF-as-a-Service

Web Application Firewall

Cloud Security Guardian

Load Balancer ADC

Vulnerability Manager

Vulnerability Remediation Service

WAF Control Center

Active DDoS Prevention

CloudGen Firewall

CloudGen Access

Network Access Client

Firewall Insights

Web Security Gateway

Web Security Agent

Firewall Policy Manager

Cloud-to-Cloud Backup

RMM (Managed Workplace)

Managed Security Awareness Training (Managed Phishline)

Intronis Backup (ECHOplatform)

MSP Knowledge Base

Site Security Scanner

MSP – Partner Enablement

NextGen Firewall X

Server Backup (Yosemite)

Campus Help Center / Reference

Onboarding Portal

Network Security

Support Services

Barracuda CloudGen Firewall

Overview Documentation Training Certification Materials

Email Protection

Total Email Protection

Email Gateway Defense (Email Security)

Impersonation Protection (Sentinel)

Cloud Archiving Service

Security Awareness Training (PhishLine)

Email Security Gateway

Domain Fraud Protection

Incident Response

Message Archiver

WAF-as-a-Service

Web Application Firewall

Cloud Security Guardian

Load Balancer ADC

Vulnerability Manager

Vulnerability Remediation Service

WAF Control Center

Active DDoS Prevention

CloudGen Firewall

CloudGen Access

Network Access Client

Firewall Insights

Web Security Gateway

Web Security Agent

Firewall Policy Manager

Cloud-to-Cloud Backup

RMM (Managed Workplace)

Managed Security Awareness Training (Managed Phishline)

Intronis Backup (ECHOplatform)

MSP Knowledge Base

Site Security Scanner

MSP – Partner Enablement

NextGen Firewall X

Server Backup (Yosemite)

Campus Help Center / Reference

Onboarding Portal

Network Security

Support Services

Login Sign Up Contact & Support

United States – English (GMT-5)

How to Configure TACACS+ Authentication

Last updated on 2018-04-16 22:53:20

Terminal Access Controller Access-Control System Plus (TACACS+) is an access control network protocol (TCP) for routers, network access servers, and devices. Unlike RADIUS, TACACS+ uses separate authentication and authorization. TACACS+ provides centralized user and group management and offers extended logging options. TACACS+ supports multiple protocols, e.g., IP and AppleTalk .

Configure TACACS+

To configure TACACS+ for external authentication with the Barracuda CloudGen Firewall,

Go to CONFIGURATION > Configuration Tree > Box > Infrastructure Services > Authentication Service.
In the left navigation pane, select TACACS+ Authentication.
Click Lock.
Enable TACACS+ as external directory service.
In the TACACS+ IP Address table, add an entry for each TACACS+ server. You can edit the following settings:
- TAC+ IP Address – IP address of the TACACS+ server.
- TAC+ ID Port – ID Port information. E.g.: tty10
- TAC+ Server Port – TCP port of the TACACS+ server.
- TAC+ Key – DES encryption key.
  The key can consist of small and capital characters, numbers, and non alpha-numeric symbols, except the hash sign (#).
- Timeout (s) – Authentication timeout in seconds.
- TAC+ Login Type – TACACS+ login type (inbound).
Click OK.
If group information is queried from a different authentication scheme, select the scheme from the User Info Helper Scheme list.
Click Send Changes and Activate.