02-20-2017 11:26 AM - edited 03-12-2019 01:57 AM
Hi. Is there any equivalent to the CISCO IOS archive?
Something like:
archive
log config
logging enable
logging size 200
hidekeys
notify syslog contenttype plaintext
path scp://user:pass@1.1.1.1/$h-$t
write-memory
02-20-2017 07:12 PM
Since ASA 9.2, we have had Embedded Event Manager (EEM). You can create an EEM configuration to watch for the syslog id of the configuration being changed and trigger a backup.
Here are some examples:
http://www.cisco.com/c/en/us/support/docs/security/adaptive-security-appliance-asa-software/117883-config-eem-00.html#anc10
https://www.youtube.com/watch?v=zIqyMefEzk8
More a most thorough backup, you can use the backup command (available since ASA 9.3(2)).
http://www.cisco.com/c/en/us/td/docs/security/asa/asa-command-reference/A-H/cmdref1/b.html
02-23-2017 08:46 AM
Thanks Marvin. Instead of scheduling could do it on demand?
Say, everytime you type the write command, instead at a specific hour/time.
02-23-2017 09:11 AM
I haven't tried it, but you should be able to:
Create an EEM applet to have two actions - write mem and backup
Create a command-alias to replace "write" with the event manager applet ("event manager run <applet name>")
10-13-2018 08:37 AM
Marvin,
Just thought I would write a comment to thank you for your help not only on this one but several others.
It seems almost everytime I have a question and do a google search (which is quite a bit) you have the answer, nice work and thanks for the Help.
I can see how you are a Hall of Fame Master - is that the Highest Level ? Whatever the highest is Yoda, Sensei, Master of all things Security Related - you should be it :)
Thanks again,
Mark
11-03-2018 04:44 PM
here's an actual verified/working config to auto backup the asa on a daily basis:
ASA5515X(config)# event manager applet backup-config
ASA5515X(config-applet)# event timer absolute time 11:45:00
ASA5515X(config-applet)# action 0 cli command "copy /noconfirm running-config tftp://172.27.0.1/asa-cfg.txt"
ASA5515X(config-applet)# output none
ASA5515X# sh event manager
event manager applet backup-config, hits 1, last 2018/04/25 11:45:00 last file none
event absolute 11:45:00, left 83816 secs, hits 1, last 2018/04/25 11:45:00
action 0 cli command "copy /noconfirm running-config tftp://172.27.0.1/asa-cfg.txt", hits 1, last 2018/04/25 11:45:00
hope that helps.
Azam
04-29-2020 10:45 AM - edited 04-29-2020 10:45 AM
Here's an example using the "backup" command:
event manager applet backup-asa description Backup ASA upon saving config event syslog id 111004 action 0 cli command "backup /noconfirm location tftp://192.168.1.20/configs/" output none
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide