9 Feb
2011
9 Feb
'11
4:54 p.m.
Brian Candler <B.Candler@pobox.com> wrote:
Incidentally, it's quite reasonable to use RADIUS for authentication and authorization, and TACACS for accounting (e.g. point your aaa accounting at an instance of tac_plus). Then you have a real-time log of individual commands run.
I would say it is easier to send the command log over syslog, but that's just how we like to skin our cats round here. Cheers -- Alexander Clouter .sigmonster says: ... and furthermore ... I don't like your trousers.