This shows you the differences between two versions of the page.
Both sides previous revision Previous revision Next revision | Previous revision Next revision Both sides next revision | ||
сервис_tacacs [2019/08/30 12:33] val [FreeBSD/Ubuntu] |
сервис_tacacs [2021/07/23 10:46] val [FreeBSD/Ubuntu] |
||
---|---|---|---|
Line 3: | Line 3: | ||
* [[http://www.shrubbery.net/tac_plus/|TACACS+ daemon]] | * [[http://www.shrubbery.net/tac_plus/|TACACS+ daemon]] | ||
* [[https://habrahabr.ru/post/194750/|Другой tacacs+]] | * [[https://habrahabr.ru/post/194750/|Другой tacacs+]] | ||
+ | |||
===== Установка TACACS+ сервера ===== | ===== Установка TACACS+ сервера ===== | ||
- | |||
- | ==== FreeBSD ==== | ||
- | <code> | ||
- | [server:~] # pkg install tac_plus | ||
- | |||
- | [server:~] # pkg_add -r tac_plus | ||
- | |||
- | [server:~] # cd /usr/local/etc/ | ||
- | </code> | ||
==== Ubuntu/Debian ==== | ==== Ubuntu/Debian ==== | ||
Line 18: | Line 10: | ||
<code> | <code> | ||
root@server:~# apt install tacacs+ | root@server:~# apt install tacacs+ | ||
- | |||
- | root@server:~# cd /etc/tacacs+/ | ||
- | </code> | ||
- | |||
- | ==== CentOS/SL ==== | ||
- | |||
- | * [[Управление ПО в Linux#Работа с исходными текстами]] | ||
- | * Необходимые пакеты: flex bison libwrap0-dev | ||
- | |||
- | <code> | ||
- | root@server:~# apt-get install flex bison libwrap0-dev | ||
- | |||
- | root@server:~# cd /usr/src | ||
- | |||
- | root@server:/usr/src# wget ftp://ftp.shrubbery.net/pub/tac_plus/tacacs+-F4.0.4.26.tar.gz | ||
- | root@server:/usr/src# tar -xvzf tacacs+-F4.0.4.26.tar.gz | ||
- | root@server:/usr/src# cd tacacs+-F4.0.4.26 | ||
- | |||
- | root@server:/usr/src/tacacs+-F4.0.4.26# ./configure --prefix=/usr/local/tac_plus | ||
- | root@server:/usr/src/tacacs+-F4.0.4.26# make install clean | ||
- | |||
- | root@server:/usr/src/tacacs+-F4.0.4.26# cd /etc | ||
</code> | </code> | ||
Line 50: | Line 20: | ||
... | ... | ||
- | # :> tac_plus.conf | + | # cat /etc/tacacs+/tac_plus.conf |
- | + | ||
- | # cat tac_plus.conf | + | |
</code><code> | </code><code> | ||
key = tackey123 | key = tackey123 | ||
Line 60: | Line 28: | ||
user=root { | user=root { | ||
default service = permit | default service = permit | ||
- | login = des "hPkKtADs9JXn2" | + | login = des "hPkKtADs9JXn2" |
- | service = exec { | + | service = exec { |
priv-lvl = 15 | priv-lvl = 15 | ||
} | } | ||
Line 68: | Line 36: | ||
user=user1 { | user=user1 { | ||
default service = permit | default service = permit | ||
- | login = des "DWRr6OSzYvMH." | + | login = des "DWRr6OSzYvMH." |
- | service = exec { | + | service = exec { |
priv-lvl = 1 | priv-lvl = 1 | ||
} | } | ||
Line 76: | Line 44: | ||
===== Запуск ===== | ===== Запуск ===== | ||
- | |||
- | ==== FreeBSD ==== | ||
- | <code> | ||
- | # /usr/local/etc/rc.d/tac_plus rcvar | ||
- | |||
- | # /usr/local/etc/rc.d/tac_plus start | ||
- | Starting tac_plus. | ||
- | </code> | ||
==== Ubuntu/Debian ==== | ==== Ubuntu/Debian ==== | ||
<code> | <code> | ||
# service tacacs_plus restart | # service tacacs_plus restart | ||
- | </code> | ||
- | |||
- | ==== CentOS/SL ==== | ||
- | <code> | ||
- | root@server:~# cat /etc/rc.local | ||
- | </code><code> | ||
- | ... | ||
- | /usr/local/tac_plus/bin/tac_plus -C /etc/tac_plus.conf | ||
- | |||
- | exit 0 | ||
- | </code><code> | ||
- | root@server:~# /usr/local/tac_plus/bin/tac_plus -C /etc/tac_plus.conf | ||
</code> | </code> | ||