Cisco TACACS

Cisco TACACS (Terminal Access Controller Access Control System) is a security application that provides centralized validation of users attempting to gain access to a router or network access server.

For more information about Cisco and Lucidum, see https://lucidum.io/cisco/.

Enabling the Web Interface for the Access Control System

Before configuring the Cisco TACACS connector in Lucidum, you must first enable the web interface for the Access Control System. This allows you to use the REST web service from Lucidum.

To enable the web interface on ACS, from the ACS CLI, enter: acs config-web-interface rest enable

Configuring the Connector for Cisco TACACS

To configure Lucidum to ingest data from Cisco TACACS:

1. Log in to Lucidum.

2. In the left pane, click Connector.

3. In the Connector page, click Add Connector.

4. Scroll until you find the Connector you want to configure. Click Connect. The Settings page appears.

5. In the Settings page, enter the following:

   • Host (required): The host or IP address of the Cisco TACACS server.

   • Username (required) – Cisco TACACS server username. You may use any administrator account to authenticate to the REST service. Authorization for the standard user account should be set to allow all activities that are done by the REST client.

   • Password (required) – Cisco TACACS server password. You may use any administrator account to authenticate to the REST service. Authorization for the standard user account should be set to allow all activities that are done by the REST client.

   • Verify SSL. For future use.

6. To test the configuration, click Test.

   • If the connector is configured correctly, Lucidum displays a list of services that are accessible with the connector.

   • If the connector is not configured correctly, Lucidum displays an error message.