[RADIATOR] Lock Tacacs server to master instance

Heikki Vatiainen hvn at open.com.au
Thu Dec 10 16:34:18 UTC 2020


On 10.12.2020 9.50, Patrik Forsberg wrote:

> That's more or less what I ended up doing.. but would be a nice feature if tacacs can't become more like radius/radsec and use gossip for session data :>

One option could be for a farm to use something like Cache::FastMmap to 
share authorisation information. That would work within a single server 
and would not require Redis, etc. nor AllowAuthorizeOnly.

This would use an mmap'ed file to share data between the farm workers.

Thanks,
Heikki

-- 
Heikki Vatiainen <hvn at open.com.au>

Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM, files, LDAP, TACACS+, PAM, Active Directory,
EAP, TLS, TTLS, PEAP, WiMAX, RSA, Vasco, Yubikey, HOTP, TOTP,
DIAMETER etc. Full source on Unix, Windows, MacOSX, Solaris, VMS, etc.


More information about the radiator mailing list