OSEC

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com
 
Subject: tacacs+ authentication in nt4
From: martin sperl (martin.sperlFH-SBG.AC.AT)
Date: Thu Aug 17 2000 - 10:41:56 CDT

we want to install a centralized authentication-server (tacas+) and
don't know how we should integrate our nt4 environment.
please comment following ideas and provide additional infos

way1: the domain controller should ask the tacacs+ server on
demand(login) or synchronize passwords at an interval of a few minutes
 is this possible by design? any available software ?

way2: way1 with samba server

way3: tacacs+ server is running on a winnt4 domain controller and uses
the windows user database (sam)

i fear we have to go the third way. i found following software up to
now:

RadTac Manager Server
link: http://www.radtac.com/Default-i.htm

CiscoSecure ACS
link:
http://www.cisco.com/univercd/cc/td/doc/product/access/acs_soft/csacs4nt/csnt2/ch2.htm#xtocid299991
negativ: "Dial-up user must belong to a Windows NT group that includes
the policy "Log on Locally."

vop radius server version2
link: http://www.vircom.com/en/products/vopradius/vopradius.shtml
negativ: radius only

please enhance the list and comment+score the programs.

its for educational purposes. campus network with multiple os, routers,
pix, ...

thanks in advance 

--
______________________________
        Martin Sperl
        Informatics & Computing Services    Polytechnical University
        Tel. +43 662 4665 -652 / Fax -659          Fachhochschul GmbH
        martin.sperlfh-sbg.ac.at                   Schillerstraße 30
        www.fh-sbg.ac.at/ics/                 A-5020 Salzburg Austria