aaa accounting on a pix

Unanswered Question

Here is my current configuration and the authentication works fine.


aaa-server Auth protocol tacacs+

aaa-server Auth (inside) host XXX.XXX.XXX.XXX Password timeout 5

aaa authentication ssh console Auth

aaa authentication ssh telnet Auth


Now I want to apply accounting to the configuration so that I know what is being changed on the pix (version 6.2) and who is logged on.


aaa accounting include any outbound 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0 Auth


Accounting is working fine on my switches and routers.


Thanks,

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
mhoda Sun, 05/11/2003 - 10:53
User Badges:
  • Silver, 250 points or more

Seems like you are trying to get accounting for managing the pix, like what commadns the user executes after they telnet/ssh etc.. this feature is not available as of yet on the pix.


aaa accounting include any outbound 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0 Auth


This command will only do the accounting for the pass-thru traffic, not the activities (commands executed on the pix) done on the pix. I hope this answers your question.


Thanks,


Mynul

Actions

This Discussion