Authentication and authorization of NAS work normally, but accounting don't work properly. If I use only exec accounting, in "logged-in report" on ACS the users appears; Ok, if I add the accounting for commands level 0, 1 or 15, the users appears in "logged-in report" ,but if I use any command (enable, show..., debug, etc) the users disappears from the report and only commands are reported in TAC+ administration report. I tested using ACS 3.1 and accounting works normally.
Is this a BUG ? If no, why I resolve this problem ?
the configuration of my equipament is:
Cisco 2620 IOS (C2600-I-M), Version 12.1(5)T7
logging rate-limit console 10 except errors
aaa authentication login default group tacacs+ local
aaa authentication ppp default group tacacs+ local
aaa authorization console
aaa authorization exec default group tacacs+ none
aaa authorization network default group tacacs+ none
aaa accounting update newinfo
aaa accounting exec default start-stop group tacacs+
aaa accounting commands 0 default start-stop group tacacs+
aaa accounting commands 1 default start-stop group tacacs+
aaa accounting commands 15 default start-stop group tacacs+
aaa accounting network default start-stop group tacacs+
aaa accounting connection default start-stop group tacacs+
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...