How to install TACACS+ server on Rocky linux

How to install TACACS+ server on Rocky linux

Try using google, plenty of stuff relating to CentOS, which means you can adapt it to work on RHEL, Rocky, etc. tacacs server linux centos rhel rocky alma - Google Search

2 Likes

○ tac_plus.service - TACACS+ Authentication Service
Loaded: loaded (/etc/systemd/system/tac_plus.service; enabled; preset: disabled)
Active: inactive (dead) since Thu 2024-08-29 12:17:31 UTC; 37min ago
Duration: 13ms
Main PID: 964 (code=exited, status=0/SUCCESS)
CPU: 5ms

Aug 29 12:17:31 vm-citptac02 systemd[1]: Started TACACS+ Authentication Service.
Aug 29 12:17:31 vm-citptac02 tac_plus[964]: Reading config
Aug 29 12:17:31 vm-citptac02 tac_plus[964]: Version F4.0.4.28-7fb Initialized 1
Aug 29 12:17:31 vm-citptac02 tac_plus[969]: Received signal 15, shutting down
Aug 29 12:17:31 vm-citptac02 systemd[1]: tac_plus.service: Deactivated successfully.

I have installed it on rocky, tac_plus service goes to inactive state.
Configuration looks correct to me

[root@vm ~]# vi /etc/systemd/system/tac_plus.service
[Unit]
Description=TACACS+ Authentication Service
After=network.target

[Service]
ExecStart=/usr/sbin/tac_plus -C /etc/tacacs+/tac_plus.cfg
ExecReload=/bin/kill -HUP $MAINPID
Restart=on-failure

[Install]
WantedBy=multi-user.target

[root@vm- ~]# which tac_plus
/sbin/tac_plus

[root@vm- ~]# vi /etc/tacacs+/tac_plus.cfg
#key = “your key here”
key = “-----------”

accounting file = /var/log/tac_plus/accounting/accounting.log

authentication users not appearing elsewhere via

the file /etc/passwd

#default authentication = file /etc/passwd

Tue Aug 27 08:26:13 2024 [36037]: Error get_socket: bind :::49 Address already in use Tue Aug 27 08:26:13 2024 [36037]: Error get_socket: could not bind a listening socket

02 ~]# sudo journalctl -u tac_plus
Sep 03 08:54:30 vm-citptac02 systemd[1]: Started TACACS+ Authentication Service.
Sep 03 08:54:30 vm-citptac02 tac_plus[1001]: Reading config
Sep 03 08:54:30 vm-citptac02 tac_plus[1001]: Version F4.0.4.28-7fb Initialized 1
Sep 03 08:54:30 vm-citptac02 tac_plus[1005]: Received signal 15, shutting down
Sep 03 08:54:30 vm-citptac02 systemd[1]: tac_plus.service: Deactivated successfully.

The service is getting shutdown immediately

Seems to suggest that port 49 is already busy, or perhaps you are attempting to run as a particular user which cannot run ports lower than 1024. Most likely this is the reason why your service stops immediately. So you’ll need to fix that.

This topic was automatically closed 60 days after the last reply. New replies are no longer allowed.