I've been trying to find a way to suppress SSH syslog messages for a specific user on our ASR9K platform. Example:
%SECURITY-SSHD-6-INFO_SUCCESS : Successfully authenticated user 'x'
%SECURITY-SSHD-6-INFO_USER_LOGOUT : User 'x'
So far, the only thing I've been able to find is a way to suppress by message category, group name, and message code as shown below. However, I still want to display those syslog messages for other users.
logging suppress rule example alarm SECURITY SSHD INFO_SUCCESS alarm SECURITY SSHD INFO_USER_LOGOUT ! logging suppress apply rule example all-of-router
Maybe I'm going about this in the wrong way. Any advise would be greatly appreciated. Thanks!
[ The Discussion forum will be published on December 1st ]
Take the opportunity to reach out to our expert and discuss best practices regarding on how to troubleshoot a live network and identify the root cause easily. Learn more about Serviceability and h...
To provide a solution to quickly setup a router at a remote location that supports WiFi and provides instant internet access using LTE as a transport while deploying with Cisco SD-WAN.
Plug the router to a power sou...
Hello!I'm looking for a way to make my EEM script more dynamic and automated for my environment. This is what I have - basically I just capture the 4 IPSec peer IP addresses of each neighbor and insert this data into 4 different variables. ...
Hi all,I have a couple of Nexus9k switches. I need to get tcpdump from the physical interface which connected to the server. I'm looking for a specific protocol on tcpdump so that which feature should I use? I asked that because I couldn't full...
We are building out our first few AAR polices and are running into an error message.Built Global Policy with SLA class and traffic rules for voice traffic, attached to to the sites and VPN we needed, no issue. Building a second policy for management ...