Thanx Guys. My config was

jacovr · ‎06-09-2014

Hi

I have an ACS5.4 which is used for Authentication on my network.

I need to set up Accounting for the devices on my network to see the following:

1. Who logged into the device

2. What changes have been made.

I have configured the switch for AAA and the Authentication part is working (through AD)

Does anyone have a Step-By-Step guide on how to configure the ACS for Accounting?

Jatin Katyal · ‎06-09-2014

Accounting method lists are specific to the type of accounting being requested. AAA supports six different types of accounting:
Commands—Provides information about the EXEC mode commands that a user issues. Command accounting generates accounting records for all EXEC mode commands, including global configuration commands, associated with a specific privilege level.

IOS

aaa accounting commands 0 default start stop group tacacs

aaa accounting commands 1 default start stop group tacacs

aaa accounting commands 15 default start stop group tacacs

http://www.cisco.com/c/en/us/td/docs/ios/12_2/security/command/reference/fsecur_r/srfacct.html

ASA/Firewall

aaa accounting command [privilege level] tacacs+-server-tag

http://www.cisco.com/en/US/docs/security/asa/asa72/command/reference/a1_72.h
tml#wp1437180

Regards,
Jatin Katyal
** Do rate helpful posts **

~Jatin

mohanak · ‎06-09-2014

Common Scenarios Using ACS step by step configuration

http://www.cisco.com/c/en/us/td/docs/net_mgmt/cisco_secure_access_control_system/5-4/user/guide/acsuserguide/common_scenarios.html

jacovr · ‎06-12-2014

Thanx Guys. My config was working all along.

I was under the impression the reporting will be a bit better/more detail.

Tnax

ACS 5.4 Accounting