Line 1: |
Line 1: |
| __TOC__ | | __TOC__ |
| ==Introduction== | | ==Introduction== |
− | This article contains instructions on configuring a RUTX router to start using the TACACS+ function. The TACACS+ will work on our newest firmware version which currently is 7.3, unfortunately, older firmware versions does not support this function. | + | This article contains instructions on configuring a RUTX router to start using the TACACS+ function. TACACS+ (Terminal Access Controller Access Control System) is a security protocol that provides centralized validation of users who are attempting to gain access to a router or other devices. TACACS+ provides separate authentication, authorization, and accounting services. The TACACS+ will work on our '''newest firmware version which currently is 7.3''', unfortunately, older firmware versions does not support this function. |
| + | |
| + | |
| + | [[File:516424 Topo 3 1 (1).png|alt=|border|900px|class=tlt-border]] |
| + | |
| | | |
| ==Prerequisites== | | ==Prerequisites== |
Line 7: |
Line 11: |
| *Docker Desktop | | *Docker Desktop |
| *RUTX router | | *RUTX router |
− | *Firmware version that is not older than 7.3<br /> | + | *Firmware version that is '''not older than 7.3'''<br /> |
| ==Docker Desktop instructions== | | ==Docker Desktop instructions== |
| Visit https://www.docker.com/products/docker-desktop/ and choose an appropriate version of the Docker Desktop for your operating system. Create yourself a free account to start with. | | Visit https://www.docker.com/products/docker-desktop/ and choose an appropriate version of the Docker Desktop for your operating system. Create yourself a free account to start with. |
Line 54: |
Line 58: |
| * Install the PAM package from the package manager or you can find it and download it at the following link: https://wiki.teltonika-networks.com/view/RUTX11_Package_Downloads | | * Install the PAM package from the package manager or you can find it and download it at the following link: https://wiki.teltonika-networks.com/view/RUTX11_Package_Downloads |
| * Navigate to WebUI → Administration → Access control → General | | * Navigate to WebUI → Administration → Access control → General |
− | * Switch '''Enable PAM support''' to '''ON''' in the '''SSH''' section, click save and apply.
| |
| * Switch from General to the PAM tab. | | * Switch from General to the PAM tab. |
| * Click edit on '''SSH''' service. | | * Click edit on '''SSH''' service. |
| * Change the settings: | | * Change the settings: |
| | | |
− | [[File:Networking rutx manual tacacs pam settings in router v1.png|border|class=tlt-border|link=Special:FilePath/Networking_rutx_manual_tacacs_pam_settings_in_router_v1.png]] | + | [[File:Networking rutx manual tacacs pam settings in router v1.png|alt=|border|class=tlt-border]] |
| | | |
| ==Testing the configuration== | | ==Testing the configuration== |
Line 68: |
Line 71: |
| * If you check the logs (logread command), you should see something like this: | | * If you check the logs (logread command), you should see something like this: |
| | | |
− | [[File:Networking rutx manual tacacs docker logs v1.png.png|border|class=tlt-border|link=Special:FilePath/Networking_rutx_manual_tacacs_docker_logs_v1.png.png]] | + | [[File:Networking rutx manual tacacs docker logs v1.png.png|alt=|border|class=tlt-border]] |
| | | |
| * Keep in mind that you '''wouldn't be able to access the router''' via SSH using the '''default router password''' unless you turn off the PAM authentication in the router's WEBUI. | | * Keep in mind that you '''wouldn't be able to access the router''' via SSH using the '''default router password''' unless you turn off the PAM authentication in the router's WEBUI. |
| + | [[Category:Router control and monitoring]] |