cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
739
Views
0
Helpful
1
Replies

Does Cisco ISE-3315-K9 with ise version: Service Engine: 1.0.4.573 support command accouting like ACS

sachin.sg
Level 1
Level 1

Hi

Can Anybody can update whether   ISE-3315-K9 with ise version: Service Engine: 1.0.4.573 , supports the command level accounting

Bascially , we have integrated Cisco Switches with Cisco ISE for Device Authentication using Radius , we are able get the authentication logs on to the devices , but for any command changes or update done on Cisco devices we are not able to get the command accounting ..

has succeed in  command level accounting on  Cisco ISE ..

Please update

Cisco ISE doesn't have TACACS feature ...

1 Reply 1

jw.sl9
Level 1
Level 1

Command Accounting is a TACACS+ feature so not for ISE....yet.

However, you can do the following to send commands to syslog and not including passwords (hidekeys). I just picked 200 commands/lines to store in the local command buffer/log. increase or decrease as you have memory.  The notify syslog is what sends it via syslog.


conf t
archive

 log config

 logging enable

 logging size 200

 hidekeys

 notify syslog
end
wr mem

Remember, syslog is clear text  :-)  log away from user traffic when possible.  Or use TLS based syslog when possible.

I hope you find this answer useful, if it was satisfactory  for you, please mark the question as Answered.

Please rate post you consider useful.
-James


I hope you find this information useful, if it was satisfactory for you, please mark the question as Answered. Please rate post you consider useful. -James
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: