Which two statements about TACACS+ are true? (Choose two.)
Click on the arrows to vote for the correct answer
A. B. C. D. E.AE
The correct answers are A and E.
A. TACACS+ can run on a UNIX server: TACACS+ is an authentication, authorization, and accounting (AAA) protocol used to authenticate users attempting to gain access to a network. It can run on a UNIX server as well as on a Windows server.
E. TACACS+ uses a managed database: TACACS+ uses a central database to store user authentication and authorization information. This allows for greater control over user access and provides centralized management of user accounts.
B. TACACS+ does not authenticate against the user database on the local device: Unlike RADIUS, which can use a local user database on a device for authentication, TACACS+ does not authenticate against the user database on the local device.
C. TACACS+ is not necessarily more secure than AAA authentication: AAA authentication is a general term that refers to any protocol used for authentication, authorization, and accounting. TACACS+ is a specific AAA protocol that provides strong authentication and encryption, but other AAA protocols can be just as secure.
D. TACACS+ is not enabled on Cisco routers by default: TACACS+ must be configured on a Cisco router in order to be used for authentication. It is not enabled by default.
In summary, TACACS+ is a AAA protocol that provides centralized authentication, authorization, and accounting for network devices. It can run on UNIX servers, uses a managed database, and is not enabled on Cisco routers by default. While it provides strong authentication and encryption, it is not necessarily more secure than other AAA protocols.