Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1705
Views
0
Helpful
3
Replies

ACS 5.2: empty command set in authorization logs "[ CmdAV= ]"

Vikram_Anumukonda_2
Level 1
Level 1

‎04-26-2012 08:05 AM - edited ‎03-10-2019 07:02 PM

i see only the show commands listed in the tacacs+ authorization logs on ACS 5.2 . Any commands executed from the configuration mode don't show up and only "[ CmdAV= ]" is shown .

authorization for privilege level 15 commands is enabled on the cisco routers. Any idea on how to make the ACS show the configuration commands in the authorization logs ?

Thanks,

Viks

Labels:
0 Helpful
3 Replies 3

Tarik Admani
VIP Alumni
VIP Alumni

‎04-26-2012 02:32 PM

Do you have tacacs accounting enabled? Try checking the tacacs accounting logs and see if they exists there. Also what patch level on ACS are you on? You can click on the about button at the top right and there should be a format similar to ACS 5.2.0.26.x where x is your patch level, you can also issue "show version" from cli.

Thanks

Tarik Admani

0 Helpful

Vikram_Anumukonda_2
Level 1
Level 1
In response to Tarik Admani

‎04-26-2012 09:05 PM

Version: 5.2.0.26.8

Accounting log collection has been turned off on the ACS as they were overwhelming the database

0 Helpful

Vikram_Anumukonda_2
Level 1
Level 1
In response to Vikram_Anumukonda_2

‎05-01-2012 03:12 AM

hi, what could be the reason for configuration mode commands not appearing the authorization logs ?

0 Helpful
Customers Also Viewed These Support Documents