03-16-2008 12:38 PM - edited 03-10-2019 03:43 PM
I am curious to know if it is possible to log user command line actions on Cisco devices, without having a tacacs server.
Solved! Go to Solution.
03-16-2008 04:29 PM
03-16-2008 01:50 PM
yes, starting with IOS version either 12.3 or
12.3T, you can log user command via syslog.
I implemented this feature on my production
router with IOS 12.4(16) IP Advanced services
I will post the configuration for you tomorrow.
CCIE Security
03-16-2008 04:29 PM
archive
log config
logging enable
notify syslog
hidekeys
03-16-2008 05:49 PM
Fantastic! Thanks so much.
Edit. Does this functionality require advanced IP services, or will this work on IP services with crypto?
03-17-2008 05:57 AM
One last question pertaining to logging. Is there a way to limit the interfaces UP/DOWN informationals being syslogged? In Kiwi Syslog the interface informational messages show up as Level7.Notice for the protocol and Level7.Error for the link. Is there a way to just filter out the link/protocol informationals and allow all others?
Thanks in advance
03-17-2008 06:00 AM
For more detailed information on the archive command.
http://www.cisco.com/en/US/docs/ios/12_3t/12_3t4/feature/guide/gtconlog.html
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide