Implementing and Configuring Cisco Identity Services Engine (SISE) — Question 201

Which two statements are correct regarding the differences between RADIUS and TACACS+? (Choose two.)

Answer options

• A. RADIUS encrypts the entire packet, whereas TACACS+ only encrypts the password field.
• B. RADIUS primary use is for network access, whereas TACACS+ primary use is for device administration.
• C. RADIUS combines the authentication and authorization functions, whereas TACACS+ separates them.
• D. RADIUS uses TCP as the transmission protocol, whereas TACACS+ uses both UDP and TCP protocols.
• E. RADIUS supports full command logging, whereas TACACS+ does not provide any command logging.

Correct answer: B, C

Explanation

The correct statements are B and C because RADIUS is typically utilized for network access control, while TACACS+ is more focused on managing device administration. Additionally, RADIUS combines authentication and authorization, whereas TACACS+ separates these functions, which is a key distinction between the two protocols. The other options contain inaccuracies regarding encryption, transmission protocols, and logging capabilities.