aaa accounting on a pix

Unanswered Question
Apr 10th, 2003

Here is my current configuration and the authentication works fine.

aaa-server Auth protocol tacacs+

aaa-server Auth (inside) host XXX.XXX.XXX.XXX Password timeout 5

aaa authentication ssh console Auth

aaa authentication ssh telnet Auth

Now I want to apply accounting to the configuration so that I know what is being changed on the pix (version 6.2) and who is logged on.

aaa accounting include any outbound Auth

Accounting is working fine on my switches and routers.


I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
tepatel Thu, 04/10/2003 - 19:45

Here is the besy url which talks about "Performing Authentication, Authorization, and Accounting of Users Through PIX Versions 5.2 and Later"

You can refer just accounting part on that url to configure accounting

mhoda Sun, 05/11/2003 - 10:53

Seems like you are trying to get accounting for managing the pix, like what commadns the user executes after they telnet/ssh etc.. this feature is not available as of yet on the pix.

aaa accounting include any outbound Auth

This command will only do the accounting for the pass-thru traffic, not the activities (commands executed on the pix) done on the pix. I hope this answers your question.



rklinkhammer@1f... Mon, 05/12/2003 - 06:48

Thanks that answers my question. Any idea when it is going to be available?

sghosh Mon, 05/12/2003 - 09:30


We do not have any dates for this, I would suggest you you contact your account team .




Login or Register to take actions

This Discussion

Posted April 10, 2003 at 5:44 AM
Replies:4 Overall Rating:
Views:305 Votes:0
Tags: No tags.