Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
731
Views
0
Helpful
1
Replies

Commands accounting.

andrea.meconi
Level 2
Level 2

‎10-02-2012 05:55 AM - edited ‎03-10-2019 07:37 PM

Hello.

I'm using this configuration for commands accounting with Cisco Secure ACS. When the first server fails, the second AAA server doesn't report any accounting records in T+ Administration, using the broadcast keyword also.

Many thanks for suggestions.

Regards.

Andrea

!

aaa new-model

!

!

aaa group server tacacs+ CiscoSecureACS

server 10.4.44.74

server 10.4.44.75

!

aaa authentication login default group CiscoSecureACS local

aaa authentication enable default group CiscoSecureACS enable

aaa authorization console

aaa authorization config-commands

aaa authorization exec default group CiscoSecureACS local

aaa accounting send stop-record authentication failure

aaa accounting exec default start-stop group CiscoSecureACS

aaa accounting commands 15 default start-stop group CiscoSecureACS

aaa accounting connection default start-stop group CiscoSecureACS

!

tacacs-server host 10.4.44.74 single-connection timeout 5

tacacs-server host 10.4.44.75 single-connection timeout 5

tacacs-server directed-request

!

Labels:
0 Helpful
1 Reply 1

andrea.meconi
Level 2
Level 2

‎10-03-2012 06:36 AM

Using some debug and log I can verify that AAA server receives the accounting packet and replies but doesn't record it on file.

Any ideas?

Thanks.

Andrea

0 Helpful
Customers Also Viewed These Support Documents