RADIUS and TACACS+ Configuration for Network Clients

Configure Network Clients for RADIUS and TACACS+

Prev Question Next Question

Question

A security administrator has configured a RADIUS and a TACACS+ server on the company's network.

Network devices will be required to connect to the TACACS + server for authentication and send accounting information to the RADIUS server.

Given the following information: RADIUS IP: 192.168.20.45 - TACACS+ IP: 10.23.65.7 - Which of the following should be configured on the network clients? (Choose two.)

Answers

Explanations

Click on the arrows to vote for the correct answer

A. B. C. D. E. F.

CD.

The question is asking about which ports to configure on the network clients in order to enable authentication with the TACACS+ server and accounting with the RADIUS server.

TACACS+ and RADIUS are both protocols used for network authentication, authorization, and accounting (AAA). However, they use different ports for communication:

  • TACACS+ uses TCP port 49 by default for authentication and authorization.
  • RADIUS uses UDP ports 1812 and 1813 for authentication and accounting, respectively.

Therefore, options D and E correspond to the TACACS+ protocol and are both incorrect for the given RADIUS server IP address.

On the other hand, options A, B, and C correspond to the RADIUS protocol. Option A refers to the LDAP protocol (port 389), which is not relevant to the given scenario. Option B corresponds to the RADIUS accounting port, which is used for sending accounting information from the network device to the RADIUS server. Option C corresponds to the RADIUS authentication port, which is used for authentication requests from the network device to the RADIUS server.

Therefore, the correct answers are B and C. Network clients should be configured to use UDP port 1812 for RADIUS accounting and UDP port 1813 for RADIUS authentication with the given RADIUS server IP address.