Solved: Re: How to check command run by user onn device using ACS (4.1)

csco11522833 · ‎04-20-2018

Hi I am running ACS 4.1. I want to check command run by user on the device. How can I check. AAA config of the device is as follows:-

aaa-server ADMIN protocol tacacs+
aaa-server ADMIN (OUTSIDE) host x.x.x.x
aaa-server ADMIN (OUTSIDE) host x.x.x.x
aaa authentication ssh console ADMIN LOCAL
aaa authentication enable console ADMIN LOCAL
aaa authentication http console ADMIN LOCAL
aaa accounting command ADMIN
aaa accounting ssh console ADMIN
aaa accounting enable console ADMIN

Jatin Katyal · ‎04-21-2018

You have to configure command authorization on the ASA too.

aaa authorization command ADMIN LOCAL

NOTE: Before you enter the command, ensure your ASA can talk to TACACS server via OUTSIDE interface.

https://www.youtube.com/watch?v=JzBmIuTGg-M

~Jatin

View solution in original post

Jatin Katyal · ‎04-21-2018

You have to configure command authorization on the ASA too.

aaa authorization command ADMIN LOCAL

NOTE: Before you enter the command, ensure your ASA can talk to TACACS server via OUTSIDE interface.

https://www.youtube.com/watch?v=JzBmIuTGg-M

~Jatin

How to check command run by user onn device using ACS (4.1)

DHCP relay agent check command

Check specific part of config with show run command

What is the command to check

Nexus Dashboard: acs コマンドについて (version 3.x)

Hi, check in your Device