Terminal Access Controller Access Control System (TACACS)

A.

For networked applications, the Terminal Access Controller Access Control System (TACACS) employs a user ID and a static password for network access.

Source: KRUTZ, Ronald L.

& VINES, Russel.

D., The CISSP Prep Guide: Mastering the Ten Domains of Computer Security, 2001, John Wiley & Sons, Page 44.

TACACS (Terminal Access Controller Access Control System) is a protocol for controlling access to network devices. It is used for authentication, authorization, and accounting (AAA) services. TACACS+ is the updated version of the TACACS protocol and provides improved security and functionality.

When a user attempts to access a network device, TACACS+ prompts the user for a username and password. The username is used to identify the user, while the password is used to authenticate the user's identity.

TACACS+ supports both static and dynamic passwords. In static password mode, the user provides a fixed password that is stored on the authentication server. In dynamic password mode, the user is required to enter a new password each time they access the network device.

TACACS+ also supports symmetric and asymmetric passwords. In symmetric password mode, the same password is used for authentication and encryption. In asymmetric password mode, separate passwords are used for authentication and encryption.

To summarize, TACACS+ employs a user ID and either a static or dynamic password for network access. It can also use symmetric or asymmetric passwords for authentication and encryption, depending on the configuration.