cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
504
Views
0
Helpful
5
Replies

Is it possible to log CLI without tacacs?

Jason Fraioli
Level 3
Level 3

I am curious to know if it is possible to log user command line actions on Cisco devices, without having a tacacs server.

1 Accepted Solution

Accepted Solutions

archive

log config

logging enable

notify syslog

hidekeys

View solution in original post

5 Replies 5

cisco24x7
Level 6
Level 6

yes, starting with IOS version either 12.3 or

12.3T, you can log user command via syslog.

I implemented this feature on my production

router with IOS 12.4(16) IP Advanced services

I will post the configuration for you tomorrow.

CCIE Security

archive

log config

logging enable

notify syslog

hidekeys

Fantastic! Thanks so much.

Edit. Does this functionality require advanced IP services, or will this work on IP services with crypto?

One last question pertaining to logging. Is there a way to limit the interfaces UP/DOWN informationals being syslogged? In Kiwi Syslog the interface informational messages show up as Level7.Notice for the protocol and Level7.Error for the link. Is there a way to just filter out the link/protocol informationals and allow all others?

Thanks in advance

For more detailed information on the archive command.

http://www.cisco.com/en/US/docs/ios/12_3t/12_3t4/feature/guide/gtconlog.html

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: