On Wed, 8 Nov 2000, Parris, Brian wrote:
> Could somebody please explain to me why I would want a Radius Server when
> authenticating a VPN client through my PIX on an NT Server network rather
> than just authenticating locally on the PIX.
When your dealing with dozen, hundreds, thousands of users, local
authentication doesn't scale. If you have a few users, no big
deal. Personally I like getting "user" level configs out of the IOS and
into a centralized server.
>
> Also, what is the advantage of Tacacs and is there any software that can
> perform these duties for less than the $4000 that the Steel-Belted Radius
> and CiscoSecure ACS software cost. I'm not going to have but a few users
> and can't justify these prices.
TACACS is cool because it can account for people going to your routers and
executing commands, going to enable, etc.
Brian
>
> TIA,
> Brian Parris
> Network Admin.
> www.carotek.com <http://www.carotek.com>
>
> _________________________________
> FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
>
-----------------------------------------------
Brian Feeny, CCNP, CCDP [EMAIL PROTECTED]
Network Administrator
ShreveNet Inc. (ASN 11881)
_________________________________
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
