[j-nsp] Supporting Audit Requirements in JUNOS
Eugeniu Patrascu
eugen at imacandi.net
Wed Jul 23 11:16:33 EDT 2008
Jose Madrid wrote:
> Going back to Christian's point, Rancid doesn't know who made the
> changes and if there are multiple changes between rancid run-times, it
> will pick up various changes and not just the one in particular. I
> currently use a mixture of rancid and logs from devices to see who
> logged in at a time nearest when the change was picked up. This is
> less than ideal solution, but all we currently have.
>
Wouldn't TACACS+ solve the 'who' and the 'what' and the 'when' ?
Parsing the log files and summarizing them shouldn't take log for a Perl
guy.
More information about the juniper-nsp
mailing list