[c-nsp] Cisco logging commands
Tassos Chatzithomaoglou
achatz at forthnet.gr
Mon Dec 7 15:08:48 EST 2009
In case you're interested for another radius server, Radiator (you have to pay for it)
supports a lot of tacacs functionality too.
--
Tassos
Henry-Nicolas Tourneur wrote on 07/12/2009 11:44:
> Hi,
>
> We are currently changing our servers and we are going to get rid of our
> old Tacacs+ server. The new AAA server is based on Radius
> (freeradius/debian).
>
> The problem is that IOS can't log commands (enable and configure) into
> Radius.
> I found that functionality to work around that problem :
> http://www.cisco.com/en/US/docs/switches/lan/catalyst3750/software/release/12.2_46_se/configuration/guide/swlog.html
>
> But the problem is that it's only logging configure commands to syslog,
> not enable, that's not enough for me.
>
> So the question is : any idea about how to get IOS to log enable
> commands into syslog ? or how to use Radius accounting for commands ?
> What are the possibilities without Tacacs+ ?
>
> TIA.
>
More information about the cisco-nsp
mailing list