Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
944
Views
0
Helpful
2
Replies

Shell Command logging

mishrav
Level 1
Level 1

‎10-04-2004 09:02 PM - edited ‎03-10-2019 01:50 PM

Hello Dear

I am using ACS 3.1 for windows server. i wounder how i can log / record all commands executed by engineers on cisco devices during their telnet sessions. I can sucessfully permit/deny for particular command.

Thanks

Labels:
0 Helpful
2 Replies 2

Richard Burts
Hall of Fame
Hall of Fame

‎10-05-2004 03:56 AM

To do log or record commands issued by engineers on Cisco devices you need to configure aaa accounting. At a customer site we want to record commands entered in privilege mode and configure this:

aaa accounting commands 15 default start-stop group tacacs+

and it works very well for us.

If you want to also record commands from user mode you would add another line:

aaa accounting commands 1 default start-stop group tacacs+

This sends accounting records to your ACS server.

HTH

Rick

HTH

Rick
0 Helpful

mishrav
Level 1
Level 1
In response to Richard Burts

‎10-06-2004 12:11 AM

Thanks Rick

it works

0 Helpful
Customers Also Viewed These Support Documents