goauthentik
TACACS+ Provider
Many systems in the IT environment are operated with TACACS+ as an AAA backend, such as switches, routers, and firewalls. To avoid having to operate additional backends including redundancies, it would be interesting to also replicate this in authenik. The advantage of TACACS over RADIUS lies in the fact that here, not only authentication but also authorization and accounting can be performed, and specific permissions can be assigned to individual users and devices at the command level. Additionally, there is currently no maintained GUI system on the open-source market for TACACS.
For example, a basically good system is https://github.com/tacacsgui/tacacsgui; however, there have been no changes made here for over 4 years now, and from a security perspective, Ubuntu 18.04 is no longer state-of-the-art.
I think there is a significant gap in the enterprise and provider market that could be perfectly closed with authentication, especially since the other providers are rounding out the picture extremely well.
It'll be really great to have network devices authenticate via Authentik as well
This would make authentik the only SP we will ever need. Except for now we need a second SP only for TACACS+
TACACS+ support would be really nice!
Also a note for everyone who is not aware of the details: @DSanchezWT is requesting TACACS+ that should be not confused with TACACS. TACACS+ is incompatible with TACACS, but is a open standard since 2016+.
See: TACACS, TACACS+: https://en.wikipedia.org/wiki/TACACS TACACS+ RFC: https://datatracker.ietf.org/doc/html/rfc8907
Just adding this here as something to maybe wrap in a provider script....
Shrubbery Networks - TACACS+ daemon https://www.shrubbery.net/tac_plus/
It would be great to add TACACS+. This is a must have feature for networking devices authentication.
Same here. This would wipe quite a few problems we have maintaining other tacacs software that aren't eady to integrate with a third party authorisation service.
