Acccess History

Unanswered Question
Jul 26th, 2009

Hello,

Our Organization have 5 Administrator, how can I log activities like change configuration / change password / logged successfully or Unsuccessfull Attempts and keep a history of these records.

Alert via Email would be good to have.

Any suggestion

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Giuseppe Larosa Sun, 07/26/2009 - 23:17

Hello Mohammed,

you should implement a complete AAA solution for this:

deploy a TACACS+ server (or Radius server) for example Cisco ACS.

all devices have to be configured to use the server for:

authentication

authorization

accounting

on the server are defined the user profiles of the administrator.

see

http://www.cisco.com/en/US/partner/docs/ios/sec_user_services/configuration/guide/sec_cfg_authentifcn_ps6350_TSD_Products_Configuration_Guide_Chapter.html

or

http://www.cisco.com/en/US/docs/ios/sec_user_services/configuration/guide/sec_cfg_authentifcn_ps6350_TSD_Products_Configuration_Guide_Chapter.html

Hope to help

Giuseppe

Chetan Kumar Ress Mon, 07/27/2009 - 01:10

Its good to have TACAUS+ ..... But for intial stage if you want log ..... Go for SYSLOG server . KIWI Syslog server Free ware search in google & configure following things in router .....

login block-for 180 attempts 3 within 60

login quiet-mode access-class XXX

login on-failure log

login on-success log

logging userinfo

logging console warnings

logging rate-limit all 10

logging trap notifications

logging origin-id hostname

logging reload informational

logging X.X.X.X

Actions

This Discussion