Re: Displaying AAA username in syslog

codewize · ‎02-26-2024

Firepower 1010 locally managed
Failed login attempts are logged as 'user = *****'
I need to be able to see those attempted user names like ASA would do.

How can I do that?

Rob Ingram · ‎02-26-2024

@codewize try the command "no logging hide username" to display the username in SYSLOG messages.

codewize · ‎02-26-2024

At what prompt would that be typed?
Or is this another FlexConfig entry

Rob Ingram · ‎02-26-2024

@codewize yes try FlexConfig, there is no native GUI configuration when using FDM.

codewize · ‎02-26-2024

Seems like the command is 'no login hide username'

testing now
Nope, it doesn't like anything after 'log' throws errors deploying

Rob Ingram · ‎02-27-2024

@codewize FlexConfig is used to deploy ASA commands to FTD, the ASA command "no logging hide username" is to display usernames in SYSLOG. Did you try that syntax? I do not know what command "no login hide username" is and it's not valid on ASA.

codewize · ‎03-08-2024

no logging hide username is NOT valid on the FTD 1010
FlexConfig won't even accept it
Nor is no loggin hide username.

It will take 'no log hide username' but the deploy fails with an invalid command because putting anything after log is not acceptable.

codewize · ‎02-26-2024

Anyone have any other ideas?

codewize · ‎02-27-2024

Still need help with this

MHM Cisco World · ‎02-27-2024

you mgmt the FPR by FDM ?
MHM

codewize · ‎02-27-2024

FDM yes

codewize · ‎03-03-2024

Bump

Marvin Rhoads · ‎03-03-2024

The solution you should use is the one suggested by @Rob Ingram on 28 February.

codewize · ‎03-04-2024

Except the syntax is either wrong or that particular command is not supported on the 1010
Either way, FlexConfig won't even accept that.

MHM Cisco World · ‎03-09-2024

can you share steps you done
two days ago we face issue in IPsec and the solution was engineer missing add ""-"" between command
so please share steps let check it

thanks

MHM