Design and Implementation Network Administrators Account Management System Based on Authentication, Authorization, and Accounting Based on TACACS and LDAP

Authentication is required for to authenticate user administrators for accessing network devices. In large-scale network devices management, firstly administrators need centralized user management to modify their account for logging network devices. Secondly, they must have log monitoring data who modified their account. The goal of this research is to develop and implement Authorization, Authentication, Accounting (AAA) system and making Log Monitoring System (LMS). Objectives of this research are implementing a system that can centralize and manage network administrators account. Design and topology of the network use simple star network. Software design uses Rapid Application Development (RAD) method. Research began with analyzing the research problem, next step is creating a system design, then build the system. After the system has been built, a demo is done whether the system is running well. If the system has not functioning as desired yet, refine the system. If already functioning as desired, a testing is done. If there are no obstacles during testing, the system is ready to be implemented by users who will use the system. The result shown that system is able to centralized authentication and authorization using Terminal Access Controller Access-Control System (TACACS), and processing accounting data into information in graphical form using ELK Stack. The result of the research is developing monitor user login and log review. The test result shown that system can manage network administrators account according to the Authentication, Authorization, Accounting (AAA) principle.