07-21-2007 11:40 AM - edited 03-09-2019 06:26 PM
Hi.
We have a very interesting problem. Using KIWI as a syslog server, we are trying to record each and every time a user logs into a pix or asa device and ALSO every command entered. Is this possible via programming on the security device OR MUST it be done on syslog???
Thanks!
Solved! Go to Solution.
07-24-2007 04:57 AM
Hi Net,
Please mark this thread as resolved so other can benefit.
Regards,
~JG
07-21-2007 10:07 PM
These are standard in-built features of a TACACS service. If this is an option for you it will be far easier than trying to bend the syslog features do it
07-22-2007 06:09 AM
Thank u so much.
Would u know of a freeware tacacs+ prod? We don't have cworks. :(
Cheers.
07-22-2007 06:46 AM
Also, is there any way to record the show commands somebody enters as well..
07-23-2007 07:07 AM
Hi,
With tacacs you can log all commands entered by users. You can download the eval ver using your CCO id.
http://www.cisco.com/univercd/cc/td/doc/product/access/acs_soft/csacs4nt/acs40/user/r.htm#wp550550
Regards,
~JG
07-23-2007 01:34 PM
Yes, all commands entered are logged. You can get quite complex with login authentication and permissions too.
I have good success with tacplus from shrubbery.net if you're willing to get your hands a little dirty compiling in *nix http://shrubbery.net/tac_plus
If you're talking pure MSWin world, I have no idea sorry
07-23-2007 02:04 PM
Thank you so much! This definitely helps!
07-24-2007 04:57 AM
Hi Net,
Please mark this thread as resolved so other can benefit.
Regards,
~JG
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: