cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
247
Views
2
Helpful
3
Replies

How can I get command log ?

Charlers Duong
Level 1
Level 1

Hello Everyone,

I am using nexus 9000, i want to configure to get Command Execution Log when I am typing conf t, vlan 10, copy, ..... How can I do that ? I want to transfer this log to SIEM

Thanks a lot 

3 Replies 3

marce1000
Hall of Fame
Hall of Fame

 

     - FYI : https://community.cisco.com/t5/network-management/log-configuration-changes-to-syslog-on-nexus-7000/m-p/2509023/highlight/true#M102073

 M.



-- Each morning when I wake up and look into the mirror I always say ' Why am I so brilliant ? '
    When the mirror will then always repond to me with ' The only thing that exceeds your brilliance is your beauty! '

Blakely435
Level 1
Level 1

@Charlers Duong wrote:

Hello Everyone,

I am using nexus 9000, i want to configure to get Command Execution Log when I am typing conf t, vlan 10, copy, ..... How can I do that ? I want to transfer this log to SIEM https://winpkrgame.net/

Thanks a lot 


To log command executions on a Nexus 9000 and send them to a SIEM, you can configure TACACS+ command accounting or Syslog with command logging. Here's how:

Enable Command Logging in Syslog:

  • Configure logging for command executions:
    bash
    conf t
    logging level security 6 logging host <SIEM_IP>

This logs commands at the "informational" level to your SIEM.

Blakely435
Level 1
Level 1

@Charlers Duong wrote:

Hello Everyone,

I am using nexus 9000, i want to configure to get Command Execution Log when I am typing conf t, vlan 10, copy, ..... How can I do that ? I want to transfer this log to SIEM

Thanks a lot 


To log command executions on Nexus 9000 and forward them to SIEM, follow these steps:

Enable Command Logging:
Configure AAA command accounting:

bash
aaa accounting commands all default start-stop group [group-name]

Review Cisco Networking for a $25 gift card