TACACS+ protocol client library and PAM module in C. This PAM module support authentication, authorization (account management) and accounting (session management)performed using TACACS+ protocol designed by Cisco.
Since commit ae6e90a6efeeec95b1d2bd85f7bcd5183482a257 authentication is no more possible.
The issue is due to the following change
for(i = tac_srv_no-1; i >= 0; i--) {
for(i = tac_srv_no-1; i != 0; i--) {
in the support.c file
With this change the key is no more store for the first server (the case of i equal 0)
So a configuration like
auth required /lib/security/pam_tacplus.so debug server=1.1.1.1 secret=SECRET-1
does not work anymore (the secret SECRET-1 is no more set for the server 1.1.1.1)
Since commit ae6e90a6efeeec95b1d2bd85f7bcd5183482a257 authentication is no more possible.
The issue is due to the following change
So a configuration like auth required /lib/security/pam_tacplus.so debug server=1.1.1.1 secret=SECRET-1 does not work anymore (the secret SECRET-1 is no more set for the server 1.1.1.1)