[c-nsp] cisco users accounting and logging
Peter Rathlev
peter at rathlev.dk
Fri Jan 15 05:47:33 EST 2010
On Fri, 2010-01-15 at 09:23 +0000, Mehdi Badreddine wrote:
> I've already installed tac_plus on BSD, though it doesn't provide
> users accounting, just authentication.
We use tac_plus with accounting, no problems there. The relevant
configuration is:
accounting file = /var/log/tacacs-accounting.log
or similar in the tac_plus.conf file, and then:
aaa accounting exec [method] start-stop group tacacs+
aaa accounting commands 0 [method] start-stop group tacacs+
aaa accounting commands 15 [method] start-stop group tacacs+
aaa accounting connection [method] start-stop group tacacs+
besides you normal AAA config on the Cisco devices.
I wouldn't know about Juniper or HP.
--
Peter
More information about the cisco-nsp
mailing list