07-26-2009 10:47 PM - edited 03-06-2019 06:57 AM
Hello,
Our Organization have 5 Administrator, how can I log activities like change configuration / change password / logged successfully or Unsuccessfull Attempts and keep a history of these records.
Alert via Email would be good to have.
Any suggestion
07-26-2009 11:17 PM
Hello Mohammed,
you should implement a complete AAA solution for this:
deploy a TACACS+ server (or Radius server) for example Cisco ACS.
all devices have to be configured to use the server for:
authentication
authorization
accounting
on the server are defined the user profiles of the administrator.
see
or
Hope to help
Giuseppe
07-27-2009 01:10 AM
Its good to have TACAUS+ ..... But for intial stage if you want log ..... Go for SYSLOG server . KIWI Syslog server Free ware search in google & configure following things in router .....
login block-for 180 attempts 3 within 60
login quiet-mode access-class XXX
login on-failure log
login on-success log
logging userinfo
logging console warnings
logging rate-limit all 10
logging trap notifications
logging origin-id hostname
logging reload informational
logging X.X.X.X
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide