Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
823
Views
6
Helpful
3
Replies

Logging Router & Switches

nitinnigam
Level 1
Level 1

‎07-26-2005 06:33 PM - edited ‎02-21-2020 12:17 AM

Hi,

We have 20 routers and switches of different models and we want to log or audit all the changes made to these devices.

Can someone please tell me whats the best way to log everything from these devices including telent, config chagnes ....etc.

Thanks

0 Helpful
3 Replies 3

Richard Burts
Hall of Fame
Hall of Fame

‎07-27-2005 08:17 AM

I think that you can get pretty much what you want through the aaa accounting feature of IOS and of CatOS. I usually include these in the config of IOS routers that I configure:

aaa accounting exec default start-stop group tacacs+

this will generate an accounting record when someone accesses the router.

aaa accounting commands 15 default start-stop group tacacs+

this will generate an accounting record when someone enters a privilege level command including config changes.

The corresponding commands that I use for CatOS based switches are:

set accounting exec enable start-stop tacacs+

set accounting commands enable all stop-only tacacs+

HTH

Rick

HTH

Rick

nhabib
Level 9
Level 9

‎07-27-2005 04:24 PM

Adding to the previous response, accounting is done on the ACS (Cisco Secure)

nitinnigam
Level 1
Level 1

‎07-27-2005 07:57 PM

Thanks for all the help guys...

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card