Changes

__TOC__

__TOC__

==Introduction==

==Introduction==

This article contains instructions on configuring a RUTX router to start using the TACACS+ function. The TACACS+ will work on our newest firmware version which currently is 7.3, unfortunately, older firmware versions does not support this function.  

This article contains instructions on configuring a RUTX router to start using the TACACS+ function. TACACS+ (Terminal Access Controller Access Control System) is a security protocol that provides centralized validation of users who are attempting to gain access to a router or other devices. TACACS+ provides separate authentication, authorization, and accounting services. The TACACS+ will work on our '''newest firmware version which currently is 7.3''', unfortunately, older firmware versions does not support this function.  

 

 

 

==Prerequisites==

==Prerequisites==

*Docker Desktop

*Docker Desktop

*RUTX router

*RUTX router

*Firmware version that is not older than 7.3<br />

*Firmware version that is '''not older than 7.3'''<br />

==Docker Desktop instructions==

==Docker Desktop instructions==

Visit https://www.docker.com/products/docker-desktop/ and choose an appropriate version of the Docker Desktop for your operating system. Create yourself a free account to start with.  

Visit https://www.docker.com/products/docker-desktop/ and choose an appropriate version of the Docker Desktop for your operating system. Create yourself a free account to start with.  

* Install the PAM package from the package manager or you can find it and download it at the following link: https://wiki.teltonika-networks.com/view/RUTX11_Package_Downloads

* Install the PAM package from the package manager or you can find it and download it at the following link: https://wiki.teltonika-networks.com/view/RUTX11_Package_Downloads

* Navigate to WebUI → Administration → Access control → General

* Navigate to WebUI → Administration → Access control → General

* Switch from General to the PAM tab.

* Switch from General to the PAM tab.

* Click edit on '''SSH''' service.

* Click edit on '''SSH''' service.

* Change the settings:

* Change the settings:

[[File:Networking rutx manual tacacs pam settings in router v1.png|border|class=tlt-border|link=Special:FilePath/Networking_rutx_manual_tacacs_pam_settings_in_router_v1.png]]

[[File:Networking rutx manual tacacs pam settings in router v1.png|alt=|border|class=tlt-border]]

==Testing the configuration==

==Testing the configuration==

* If you check the logs (logread command), you should see something like this:

* If you check the logs (logread command), you should see something like this:

[[File:Networking rutx manual tacacs docker logs v1.png.png|border|class=tlt-border|link=Special:FilePath/Networking_rutx_manual_tacacs_docker_logs_v1.png.png]]

[[File:Networking rutx manual tacacs docker logs v1.png.png|alt=|border|class=tlt-border]]

* Keep in mind that you '''wouldn't be able to access the router''' via SSH using the '''default router password''' unless you turn off the PAM authentication in the router's WEBUI.

* Keep in mind that you '''wouldn't be able to access the router''' via SSH using the '''default router password''' unless you turn off the PAM authentication in the router's WEBUI.