We start by installing TACACS+ on Kali Linux. Then we configure the authentication.
Using Linux as a server is generally more stable than Windows machines. But if you want at all costs test TACACS+ on a Windows machine, then this tutorial may help you.
You must have Linux Kali connected to internet to donwload the package.
apt-get install tacacs+
service tacacs+ start
netstat -ltp | grep tac
another way to verify it:
to modify the TACACS+ configuration file:
after each modification you must restart the TACACS+ service:
service tacacs+ restart
start with modifying the configuration file with:
Define the shared secret used to communicate between the AAA client and the TACACS+ server:
Rtr-1(config)#tacacs-server host 192.168.1.250 key Blabla Rtr-1(config)#aaa authentication login default group tacacs+ local
Define a group
Define a user as part of the group.
Rtr-1#deb tacacs authentication TACACS+ authentication debugging is on
Configuring authorization with the tacacs+ Debian deamon is a pain in the ass. I will step away from it and play with either ACS or ISE.