TACACS+ is now in the v4.0.x branch

A.L.M.Buxey at lboro.ac.uk A.L.M.Buxey at lboro.ac.uk
Mon Feb 6 14:58:18 CET 2017


> What hit me in a former project integrating an LDAP user management with another TACACS+
> server implementation was that IIRC TACACS+ cannot handle users with multiple group
> membership. It was one of the reasons to I wanted to be able to limit user group
> visibility in Æ-DIR for server groups.

we use parent/child group membership - ie users are members of groups,
but groups can be members of other groups.   thats with shrubbery tacacs+ daemon

will be interesting to try this 4.x FR as a TACACS+ server (and using unlang
with AD policies) - but it would certainly be ++++ if it could read TACACS+
config files - or convert...


More information about the Freeradius-Users mailing list