Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

IDSM - Login and Command History

Hi,

How can the login and command history/log along with timestamp be configured on IDSM modules.

Regards.

2 REPLIES
Gold

Re: IDSM - Login and Command History

I'm sorry to tell you it can't be configured because that feature doesn;t exist. There is an event generated when a user logs in that can be seen in the event database, aong with a boatload of other system events (show events past 23:59), but no command history logs.

For a security device, it has very little security in and of itself. No AAA, multiple logins on the same username permitted, no forced password change (unless you count the default password).

Re: IDSM - Login and Command History

The modules don't support AAA, therefore they cannot do any 'accounting'. Syslogs are not supported either.

You might be able to get this information from the UNIX backend (regarding who is logging in, and not the commands). But this would not be reocmmended, and perhaps not supported by TAC.

Regards

Farrukh

141
Views
0
Helpful
2
Replies