cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
442
Views
4
Helpful
7
Replies

Logging

netsec123
Level 1
Level 1

Hi.

We have a very interesting problem. Using KIWI as a syslog server, we are trying to record each and every time a user logs into a pix or asa device and ALSO every command entered. Is this possible via programming on the security device OR MUST it be done on syslog???

Thanks!

1 Accepted Solution

Accepted Solutions

Hi Net,

Please mark this thread as resolved so other can benefit.

Regards,

~JG

View solution in original post

7 Replies 7

These are standard in-built features of a TACACS service. If this is an option for you it will be far easier than trying to bend the syslog features do it

Thank u so much.

Would u know of a freeware tacacs+ prod? We don't have cworks. :(

Cheers.

Also, is there any way to record the show commands somebody enters as well..

Hi,

With tacacs you can log all commands entered by users. You can download the eval ver using your CCO id.

http://www.cisco.com/univercd/cc/td/doc/product/access/acs_soft/csacs4nt/acs40/user/r.htm#wp550550

Regards,

~JG

Yes, all commands entered are logged. You can get quite complex with login authentication and permissions too.

I have good success with tacplus from shrubbery.net if you're willing to get your hands a little dirty compiling in *nix http://shrubbery.net/tac_plus

If you're talking pure MSWin world, I have no idea sorry

Thank you so much! This definitely helps!

Hi Net,

Please mark this thread as resolved so other can benefit.

Regards,

~JG

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: