Router login

pramod · ‎07-02-2009

How to keep track of users logging in to the routers!I need to know who are all logging in to my router and what change they done!from which source IP.please help!tell me an application which keep track of login details of users

pompeychimes · ‎07-02-2009

TACACS or RADIUS.

Richard Burts · ‎07-02-2009

K.G. Pramod

You can configure aaa accounting exec to send accounting records that will show who has logged in to your routers (and it will show from what IP address they have logged in). You can also configure aaa accounting commands 15 that will send accounting records that will show the privilege commands that are entered (including all config changes).

HTH

Rick

HTH

Rick

Joseph W. Doherty · ‎07-02-2009

As Richard notes, TACACS can log individual changes. However, I believe if the router has a valid external time source, and an authenicated user, it will record the user ID and time in the config file and will note the change in the syslog. This wouldn't indicate detailed changes, only when something was changed and by who (user ID) (and source IP?).

Another alternative, some external packages will track config changes. For instance, I've worked with Cisco's NCM. Such a package will provide not only who changed the config (requires authenicated logon?) but can show before and after configs with changes highlighted.

Leo Laohoo · ‎07-02-2009

If you don't have a TACACS or RADIUS but you have a SYSLOG server, use the "archive" commands.

muca · ‎07-02-2009

You don't necessarily need a syslog server to use "Change Notification and Logging"

http://www.cisco.com/en/US/docs/ios/fundamentals/configuration/guide/cf_config-logger_ps6922_TSD_Products_Configuration_Guide_Chapter.html#wp1054669