Technical Tip: Enable configuration of TACACS+ support
Description
This article describes how to enable configuration of the TACACS+ authentication service on FortiAuthenticator.
Scope
FortiAuthenticator v6.2.0 and above.
Solution
Starting from 6.2.0, the TACACS+ authentication service can be enabled in FortiAuthenticator.
Configuring TACACS authentication requires the following steps:
- The TACACS+ service needs to be enabled on each FortiAuthenticator network interface individually.
- Adding TACACS clients.
- Creating policies.
- Creating and assigning authorization rules.
TACACS+ account logs are viewable from the debug logs page (https://<FAC IP>/debug/).
