[j-nsp] Forced password resets?

heasley heas at shrubbery.net
Thu Apr 19 11:28:17 EDT 2018


Thu, Apr 19, 2018 at 08:56:41PM +1000, Julien Goodwin:
> What is on-topic is there are some folk looking at standardising TACACS
> as it's actually implemented, and then potentially an enhancement. I'd
> *REALLY* love if client key negotiation of some form was in the
> standard, so I could simply ssh to any router with key auth without
> needing to statically configure keys on each router.

the proposed enhancements include adding TLS to tacacs, which includes
key exchanges.


More information about the juniper-nsp mailing list