I am using radius and tacacs in different environments. The radius environments include pix 525's and 535's with 6.2.2(100) code. Some of the pix's are passing the authentication, authorization and accounting to Vacman (Vasco), and the rest to cisco ACS server (proxy the authentication to a radius server).
The accounting commands on the pix's point to the ACS and Vacman servers. On these servers we are logging the accounting data. The management for the network gear is setup for AAA using tacacs to an ACS server. This is so much easier to setup than radius. Hope this helps. -----Original Message----- From: Jim Newton [mailto:[EMAIL PROTECTED]] Sent: Monday, January 27, 2003 4:07 PM To: Ccielab; Group Study Subject: RADIUS command accounting I know that for the longest time Cisco didn't support aaa accounting of commands to be sent to a RADIUS server. It was supported via TACACS+ but not RADIUS. I have seen recently that this has changed (in O'Reilly's book on hardening routers and in a couple different lists). Does anyone have any information on this? Is it true? What is the minimum version of IOS (I have heard 12.2)? Do you need a specific RADIUS server? I know that moving to TACACS+ would fix my problem, but staying with Radius would be preferable. TIA FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
