Hey chaps,
We are running TACACS.NET in our environment, with Auth config below - we have a secondary LDAP server that we want to add into the auth file to run as a back up. Has anyone done this before? They're the same AD.
I am wondering if I add the secondary LDAP server below this current LDAP server, or if I create a whole new user group below this one with the secondary LDAP server and same user directory etc.
<UserGroup>
<Name>TACACS</Name>
<AuthenticationType>Windows_Domain</AuthenticationType>
<LDAPServer>10.X.X.X:389</LDAPServer>
<LDAPUserDirectorySubtree>OU=Enabled,OU=Accounts,DC=XX,DC=dom</LDAPUserDirectorySubtree> <LDAPGroupName>TACACS</LDAPGroupName> <LDAPAccessUserName>tacacsservice</LDAPAccessUserName> <LDAPAccessUserPassword ClearText="XXX" DES=""></LDAPAccessUserPassword> </UserGroup>
Also - has any one had any success with monitoring the TACACS+ service over a sensor in PRTG?
Thanks for any assistance :)
No comments:
Post a Comment