on 06/22/2022, by John P. Mello Jr, IDG NS (adaptation Jean Elyan), Reti, 590 words
Portnox’s Tacacs + as a Service solution aims to make network authentication, authorization and accounting technology more attractive to midsize businesses.
Most companies know that the IT staff who manage their networks must implement additional access management measures. But one of the best access management solutions: Terminal Access Controller Access Control Server (Tacacs) can be both complicated and expensive. This is what prompted Portnox to offer a Tacacs + solution in cloud mode, which he believes is easy to set up and use and which is priced within the reach of midsize businesses. Tacacs is a standard protocol. It’s been around for a long time, but no one has a cloud-based solution, explained Denny LeCompte, CEO of Portnox. Many IT departments would like to use Tacas +, but they don’t, because it’s too complicated. That’s why we created a cloud-based version, he added. With this offering, even companies with IT teams limited to two or three people can reap the benefits of Tacas + without having to spend $ 50-100,000 for a full-featured Network Access Control (NAC) product with technology, explains LeCompte.
Tacacs service offerings
Portnox’s Tacacs + SaaS solution provides authentication, authorization and accounting services for network equipment, among others.
– User authentication for network devices via Open LDAP and integrations with Azure Active Directory, Google Workspace, Microsoft Active Directory and Okta.
– Enforcement of policies for access to network devices and configuration changes to privilege levels, authorized services, automatic commands, custom attributes, etc.
– Automated audit trails of user activity and attributes on network devices, including user identities, start and end times, executed commands and packet transfers.
Track network changes
The audit function can be particularly useful for large IT teams. For example, imagine a team of five engineers. One of them makes a change. They get it wrong and suddenly an entire portion of the network connectivity is lost, LeCompte explained. How do you know what happened? Without a Tacacs + solution, you will have to manually repeat the trip in the opposite direction. With Tacacs + you can check the logs and know who made the last change and what changes they made.
Without Tacacs +, administrators often issue general credentials to users and trust them to report any changes to the network, LeCompte continued. In a way, it’s pretty terrifying, he added. Nothing is likely to go wrong, but even the best computer scientists make mistakes. One wrong parameter is enough to bring down an entire section of its network. Tacacs + also solves the safety problems related to staff turnover. We connect our Active Directory product, explained Mr. LeCompte. Therefore, if a member of the IT staff logs out and his AD account is deactivated, he loses all logins, as all his logins have gone through our Tacacs + service. To encourage the adoption of Tacacs +, Portnox offers a free tier of service for an administrator and up to 100 network devices, such as wireless access points and wired switches.