I want to set accounting of PIX.
The equipment composition is as follows.
ACS SE : 184.108.40.206.5
PIX 515E : 7.0(6)
PIX setting is as follows.
aaa-server TACACS+ protocol tacacs+
aaa-server TACACS+ host xx.xx.xx.xx
aaa accounting command TACACS+
aaa accounting telnet console TACACS+
As a result, configuration parameter was written in ACS.
But User-Name is enable_15.(attached 1.jpg)
Is this a restriction??
Seems like we have command authorization configured on the pix. You must have enable authentication configured from the tacacs server then only we would get username is accounting, unlike IOS device pix does not send username to tacacs server, it would send enable_15 as username for all the users.
Configure the following command to make it work.
aaa authentication enable console tacacs+ LOCAL