[c-nsp] Cisco logging commands
Henry-Nicolas Tourneur
hntourneur at autempspourmoi.be
Mon Dec 7 04:44:22 EST 2009
Hi,
We are currently changing our servers and we are going to get rid of our
old Tacacs+ server. The new AAA server is based on Radius
(freeradius/debian).
The problem is that IOS can't log commands (enable and configure) into
Radius.
I found that functionality to work around that problem :
http://www.cisco.com/en/US/docs/switches/lan/catalyst3750/software/release/12.2_46_se/configuration/guide/swlog.html
But the problem is that it's only logging configure commands to syslog,
not enable, that's not enough for me.
So the question is : any idea about how to get IOS to log enable
commands into syslog ? or how to use Radius accounting for commands ?
What are the possibilities without Tacacs+ ?
TIA.
--
Henry-Nicolas Tourneur
More information about the cisco-nsp
mailing list