This issue occurs due the presence of Cisco bug ID CSCsg97429.
In this issue, TACACS+ Command Accounting does not work in ACS 4.1(1) Build 23. After you enter the commands on the NAS, no accounting records are seen in the TACACS+ Administration log file. Debugs on the NAS show the records as sent, and they do arrive at the ACS server, but the appropriate log file is not updated.
With ACS logging set to Full, under System Configuration > Service Control, the log file of the CSLog service shows these entries each time a command is entered on the NAS:
12/06/2006 14:22:52 U 5111 2608 Handling message at 0x010A7FF8 (339 bytes) 12/06/2006 14:22:52 A 0000 0960 Logger CSV TACACS+ Accounting: filter denies logging
In order to resolve this issue, download and install the ACS 188.8.131.52.4 accumulative patch at Cisco Downloads.
Complete these steps in order to install the patch on ACS appliance"
Stop CSAgent from CLI.
Reboot the appliance.
Issue the download command plus the IP address of the machine from the bat file that you run from the CLI of appliance, for example the download 184.108.40.206 command.
You should be asked to proceed, and choose Yes.
Then issue the upgrade command .
Once the upgrade is successfull,start CSAgent.
In order to install the patch on distribution server, complete these steps:
I am having an issue with incoming rules. Here is my running config. : Saved:: Serial Number: JAD21290D2D: Hardware: ASA5506, 4096 MB RAM, CPU Atom C2000 series 1250 MHz, 1 CPU (4 cores):ASA Version 9.8(1)!hostname ciscoasaenable password $sha512$500...
Question - Where is the "posture requirement policy" from the headend stored on the endpoint? How accessible is it, what security controls do we have to prevent this data from being maliciously used by an attacker if he/she gets access to the endpoint an...
Hello, I have a couple of firewalls on FMC 1000, and two internet routers in front of the firewalls.I have enabled anyconnect VPN and a nat was added to use anyconnect and RA VPN.then i have configured PBR to use one internet link for some vlans and ...