Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
416
Views
0
Helpful
1
Replies

How can see who/when log onto ASA ?

eigrpy
Level 4
Level 4

‎07-30-2015 07:05 AM - edited ‎03-11-2019 11:21 PM

Hi The below is the first parts output of command show run in ASA

I hope I can see who log onto the ASA and when he did the change on the ASA. As we know, we can do this on router, but in ASA it looks like that we cannot do that, right? Maybe the only way is see it in tacacs, right ? Thank you

 

----------------------------------------

act# sh run
: Saved
:
ASA Version 8.4(7) 
!
hostname act
domain-name 
enable password .VAdgdlWvbA115RTd encrypted
passwd 2FdfghdfIdI.2KYOU encrypted
names
!
interface GigabitEthernet0/0

 

 

 

Labels:
0 Helpful
1 Reply 1

joseoroz
Cisco Employee
Cisco Employee

‎07-30-2015 11:49 AM

This is another post with the same question. Here it explains the multiple ways that you can see who access the firewall:

 

https://supportforums.cisco.com/discussion/12056731/display-users-logged-firewall

 

Since you only have the enable user the syslog 605005 will at least give you the IP that they are connected from. You can use AAA authentication and use a local database and create multiple users to be able to differentiate them.

 

Regards,

 

Jose Orozco.

 

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card