Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
Bookmark
|
Subscribe
|
12165
Views
0
Helpful
4
Replies

APIC root password

odahlqvist
Level 4
Level 4

‎03-16-2015 06:44 AM - edited ‎03-01-2019 04:48 AM

Hi Experts 

Where can i find the ROOT password when i need to access some Logs regadring syslog setup

/Ola

★ CLI Commands ➡ cat /etc/syslog-startup.conf ➡ cat /etc/syslog-startup.conf.busybox ➡ cat /etc/syslog.conf ➡ cat /var/log/external/message ➡ (root) netstat -p | grep syslog ➡ (root) tcpdump -i eth0 -f port 514 ➡ (root) tcpdump -nnvvXS dst 10.122.254.77

 

/Ola

1 person had this problem
Labels:
0 Helpful
4 Replies 4

Robert Burns
Cisco Employee
Cisco Employee

‎03-16-2015 08:32 AM

Ola,

 

The root password is only available to TAC.  It requires a challenge/response key.  If you can provide any additional commands you don't have access to run as Admin (in addition to those listed above) we can see if we can get them added.

 

Robert

0 Helpful

odahlqvist
Level 4
Level 4
In response to Robert Burns

‎03-17-2015 12:23 AM

Hi Robert

Great info from T regarding Syslog , but we are still working on the OOB MGM to get the syslog wworking and whith this ccommands we can se if the Leaf is sending traffic to the Syslogserver to find if we have configured something wrong or the syslog server won´t listen.

  • (root) netstat -p | grep syslog
  • (root) tcpdump -i eth0 -f port 514
  • (root) tcpdump -nnvvXS dst 10.122.254.77

or can I see what the leaf is sending on the interface regarding syslog in some other way

/Ola

0 Helpful

Tomas de Leon
Cisco Employee
Cisco Employee
In response to odahlqvist

‎03-17-2015 09:26 AM

Ola,

 

* Simply disable and active\UP port on the Leaf that you are testing.

 

On the Leaf, perform "tail -f /var/log/external/messages"

 

On the Syslog Server,

  • What OS system and Syslog app server are you using?
  • Verify firewall is not blocking SNMP agents (i.e. Leaf & Spine nodes)
  • enable wireshark or tcpdump on the Syslog server and filter on your leaf that you are testing with.

 

Let us know what you see...

attached is an example of a working scenario. 

 

 

0 Helpful

Tomas de Leon
Cisco Employee
Cisco Employee

‎03-16-2015 08:46 AM

Ola,

As Robert mentioned ROOT access at this time is for the Cisco Technical Support. The listed "cat commands" can be accessed by the 'admin' user.  The "cat /var/log/external/messages" will help you determine if your setup is working.

If you are having a specific issue, please let us know what you are experiencing.

 

Thank you for using the ACI Support Community!

T.

0 Helpful

Review Cisco Networking for a $25 gift card

Save 25% on Day-2 Operations Add-On License

Top