Radius Tacacs+
RADIUS uses UDP. TACACS+ uses TCP.
RADIUS encrypts only the password in the access-request packet; less secure. TACACS+ encrypts the entire body of the packet; more secure.
RADIUS combines authentication and authorization. TACACS+ uses the AAA architecture, which separates authentication, authorization, and accounting.
Industry standard (created by Livingston). Cisco Proprietary.
RADIUS does not support ARA access, Net BIOS Frame Protocol Control protocol, NASI, and X.25 PAD connections. TACACS+ offers multiprotocol support.
RADIUS does not allow users to control which commands can be executed on a router. TACACS+ provides two ways to control the authorization of router commands: on a per-user or per-group basis.
Technorati Tags: ,