Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1996
Views
0
Helpful
8
Replies

Decrypting ACS 5.4 Database log file

HUZEFA-786_2
Level 1
Level 1

‎12-26-2013 10:34 AM - edited ‎03-10-2019 09:13 PM

Hi,

We are offloading our AAA TACACS authentication log files to an external server.

The log files gets saved as *.gpg format.

Is there a way to decyrpt these log files and view them normally.

Regards,           

Labels:
0 Helpful
8 Replies 8

Naresh Ginjupalli
Cisco Employee
Cisco Employee

‎12-26-2013 09:35 PM

Normally these gpg files are decrypted using the following command.

gpg --decrypt-files .

Once you run this command this will ask for the passphrase and you have to mention the passpharase which is used at the time of encrypting/making the gpg file.

0 Helpful

HUZEFA-786_2
Level 1
Level 1
In response to Naresh Ginjupalli

‎12-28-2013 11:15 PM

Thanks, but is there a tool to decrypt the files ? How do I run the command ?

From where can I get the password, these are the log files from Cisco ACS.

Regards,

0 Helpful

edwjames
Level 3
Level 3
In response to HUZEFA-786_2

‎12-29-2013 08:03 PM

Hi,

No specific tools.

Use any Linux box, they can decrypt GPG files.

http://www.cyberciti.biz/tips/linux-how-to-encrypt-and-decrypt-files-with-a-password.html

the passsphrase is decided when you encrypted the file on the ACS.

**Share your knowledge. It’s a way to achieve immortality.
--Dalai Lama**

Please Rate if helpful.
Regards
Ed

**Share your knowledge. It’s a way to achieve immortality. --Dalai Lama** Please Rate if helpful. Regards Ed
0 Helpful

HUZEFA-786_2
Level 1
Level 1
In response to edwjames

‎12-30-2013 01:58 PM

Thanks Edward, let me explain you my situation.

I have ACS 5.4 running in LIVE environment, the AAA logs are getting filled up in the hardware, and I am offloading to an external Windows based third party Syslog sevrer.

I have configured ACS to offload all the log files to this Windows absed Syslog server.

Now I need to open those AAA log file on Window server, how do I do it ? The URL you sent me was for Linux based platform, which is not relevant to me.

In addition to that, I don't remember if I set any passphrase for ACS 5.4 during the implementation, is there a way to retrive the password from ACS ?

Regards,

0 Helpful

edwjames
Level 3
Level 3
In response to HUZEFA-786_2

‎12-31-2013 03:02 AM

Hi,

Could you share the configuration that you have done on the ACS via screenshot, it will give me a better idea.

**Share your knowledge. It’s a way to achieve immortality.
--Dalai Lama**

Please Rate if helpful.
Regards
Ed

**Share your knowledge. It’s a way to achieve immortality. --Dalai Lama** Please Rate if helpful. Regards Ed
0 Helpful

HUZEFA-786_2
Level 1
Level 1
In response to edwjames

‎12-31-2013 03:22 AM

Sure, can do that, please specify which particular screenshot you looking for.

0 Helpful

HUZEFA-786_2
Level 1
Level 1
In response to HUZEFA-786_2

‎01-08-2014 10:25 PM

Dear Edward,

Any update ?

Regards,

0 Helpful

edwjames
Level 3
Level 3
In response to HUZEFA-786_2

‎01-09-2014 05:08 AM

Hi,

I might have missed it:

I need screenshot for:

"Configured ACS to offload all the log files to this Windows absed Syslog server"

**Share your knowledge. It’s a way to achieve immortality.
--Dalai Lama**

Please Rate if helpful.
Regards
Ed

**Share your knowledge. It’s a way to achieve immortality. --Dalai Lama** Please Rate if helpful. Regards Ed
0 Helpful
Customers Also Viewed These Support Documents