how to see logs on the console or via vty prompt

mirzaakberali · ‎10-22-2009

Hello All,

I want to configure my switch to show me logs of all the activities performed by a any specific user which is created on that switch.

I donot have tacacs server .

I have used the below command to achive so but cudnt succeed.

aaa new-model

aaa authentication login default group tacacs+ local

username test privilege 15 password 0 test

But when i see sh log command it is only shows as below-

%SYS-5-CONFIG_I: Configured from console by test1 on conso

le

But i want to see some thing as test1 user has shutdown vlan 10 for example and if any other user also do some global changes on the switch it should show exactly in the switch lile what that user has done.

Can this be possible, please help me .

Appreciate your help.

Thanks,

Mirza.

Edison Ortiz · ‎10-22-2009

At this moment, you can only do that in routers, not switches - with the 'archive logging enable' command

http://www.cisco.com/en/US/docs/ios/fundamentals/command/reference/cf_a1.html#wp1018716

Without this command, you need a TACACS+ server and have AAA accounting configured in the switch.

Regards

Edison.

mirzaakberali · ‎10-22-2009

Hello Edison,

Thanks for your post!

I am not able to achieve my desired result

with the above post.

Can you suggest me how this command will help me to show per user log of their changes what i type in the global mode.. when we want to see in Sh log command.

Thanks,

Mirza.

thinakraj · ‎10-23-2009

hi try this,

logging history notifications

logging trap notifications

logging source-interface Vlan1

logging 192.168.X.X

192.168.x.x is your logging server.

Thaks.

Thinakaraj.M