AAA Server
| Features | TACACS+ | RADIUS |
| Most often used for | Network devices | Users |
| Transport protocol | TCP | UDP |
| Authentication port number | 49 | 1645,1812 |
| Protocol encrpt the password | Yes | Yes |
| Protocol encrypt entire packet | Yes | No |
| Supports function to authorize each user to a subnet of CLI commands | Yes | No |
| Defined by | Cisco | RFC 2865 |
Enable aaa
Aaa new-model
Configure eacch aa server
Tacacs server <server name>
Address ipv4 <address>
Key <key value>
Port <port number>
Create a group of one or more server
Aaa group server <group-name>
Server name <server name 1>
Server name < server name 2>
Aaa authentication login default
Aaa authentication login default <aaa server group> <2nd option like local>
Radius Test Cisco AP
test aaa group radius AdminUser01 Lv4rW38BBNWBYhQ legacy
