Re: Detail cisco logging

["Vijay Avarachen" <vavarachen@gmail.com>]

Ok I accomplished this outside of FreeRadius.  Requires IOS vers > 12.3(4)T and 12.2(25)S.  Here are the important sections from the config:

archive
 log config
  logging enable
  logging size 1000
  notify syslog
  hidekeys

logging xxx.xxx.xxx.xxx

Reference:

1. http://www.cisco.com/en/US/products/sw/iosswrel/ps5207/products_feature_guide09186a00801d1e81.html
2. http://www.linuxhomenetworking.com/cisco-hn/syslog-cisco.htm

You can also specify facility (default local7).

Log entries will look like:
Feb  1 04:15:08 172.16.40.204 55: 1d21h: %PARSER-5-CFGLOG_LOGGEDCMD: User:vavarachen  logged command:logging host 172.17.13.215 
Feb  1 04:15:41 172.16.40.204 56: 1d21h: %PARSER-5-CFGLOG_LOGGEDCMD: User:vavarachen  logged command:logging facility local7 
Feb  1 04:15:54 172.16.40.204 57: 1d21h: %PARSER-5-CFGLOG_LOGGEDCMD: User:vavarachen  logged command:logging on 


Hope this helps someone.

Vijay Avarachen

On Feb 1, 2008 1:33 PM, Vijay Avarachen <vavarachen@gmail.com> wrote:

Hello,
     I have successfully configured freeradius 2.x to do AAA for my Cisco Catalyst 3560.  Using modules rlm_detail I am able to log when the session starts and ends, however I am also interested in logging exactly what commands were issued by the user.  Does anyone know how I can accomplish this?

Thank you,
Vijay Avarachen

--
"Knowledge is the only wealth that grows as you spend it, and diminishes as you save it."

-- 
"Knowledge is the only wealth that grows as you spend it, and diminishes as you save it."
-- ancient Sanskrit saying