Hi Jocamare,

Thanks for your reply.

Let me clarfiy you more about this.

I have two context now , Admin and one customer context. Each context is having the dedicated management interface vlan.

When i am trying to access Admin context directly  through managment interface , it will show the local syslog message with  login user information.But when i am trying the same for customer  context through the management interface , syslog message is not showing  the login user information , eventhough the syslog configuration is  same on both the context.

The log ID that i am refering is %FWSM-6-605005 . Below is the sample log files that generated on admin context while login.

Mar 19 2013 09:37:00: %FWSM-6-605005: Login permitted from 10.10.2.10/62219 to management:192.168.

1.4/telnet for user "abc"

Mar 19 2013 09:37:10: %FWSM-5-502103: User priv level changed: Uname: abc From: 1 To: 15

Mar 19 2013 09:37:10: %FWSM-5-111008: User 'abc' executed the 'enable' command.

Mar 19 2013 09:37:12: %FWSM-7-111009: User 'abc' executed cmd: show running-config username

Mar 19 2013 09:37:22: %FWSM-7-111009: User 'abc' executed cmd: show running-config logging

Mar 19 2013 09:37:27: %FWSM-7-111009: User 'abc' executed cmd: show logging

Mar 19 2013 09:38:05: %FWSM-7-111009: User 'abc' executed cmd: show logging

Syslog configuration is Admin Context is shown below

logging enable

logging timestamp

logging buffer-size 104857

logging console informational

logging buffered debugging

logging trap notifications

logging facility 16

logging host management X.X.X.X

Syslog configuration is Customer Context is shown below

logging enable

logging timestamp

logging buffer-size 104857

logging console informational

logging monitor notifications

logging buffered debugging

logging trap notifications

logging asdm informational

logging facility 16

logging host management X.X.X.X

Note :- I am not able to get the any user log messages from customer context to paste it here.

Kind Regards,

Just tested this on my lab. 9.1(1)

It works for me.

Seems to me the reason why you are not seeing the information you need is because the telnet connections are not authenticating against any database. They just get in using the default telnet password.

What does the output of the "show run aaa" command from the client context show?

Thats good news...Below are the aaa commands from cleint context

From Cleint conext ( without AAA server)

aaa authentication http console LOCAL

aaa authentication ssh console LOCAL

aaa authentication enable console LOCAL

Now i added the below aaa commands and i am able to  get the user login info while telneting.

aaa authentication telnet console LOCAL

Could you please advice whether i missed any config commands

Kind Regards,

Thanks for your advice jocamare.

Now the issue of getting local syslog message with login user information is solved. But on syslog server i am not getting the severity informational messages.

Below are the syslog message in Local Buffer of firewall

Mar 20 2013 15:14:44: %FWSM-6-605005: Login permitted from 10.10.10.2/59698 to management:20.20.20.2/telnet for user "abc"

Mar 20 2013 15:18:43: %FWSM-5-502103: User priv level changed: Uname: abc From: 1 To: 15

Mar 20 2013 15:18:43: %FWSM-5-111008: User 'abc' executed the 'enable' command.

Below are the syslog message in syslog server logs.

Mar 20 15:18:00 20.20.20.2 Mar 20 2013 15:18:43: %FWSM-5-502103: User priv level changed: Uname: abc From: 1 To: 15

Mar 20 15:18:00 20.20.20.2 Mar 20 2013 15:18:43: %FWSM-5-111008: User 'abc' executed the 'enable' command.

Could you please advice , how can i get the message ID FWSM-6-605005 on syslog server ?

Kind Regards,

Many thanks Jocamare...Its works fine now.

Kind Regards,