Lab Minutes Forum
Technical Discussion => Security => Topic started by: amsa on October 27, 2013, 01:21:35 PM
-
Hi
Please answer me this question.....
what is it command ? Which we doing on the switch to give me any user enters & applies the command, such as shutdown any interfaces, and the results we see on the Cisco ISE.
Thanks
-
If I may get you correctly you want to log all command that you type on your switch console.
Well is like this:
archive
log config
logging enable
logging size 200
notify syslog contenttype plaintext
hidekeys
logging trap
logging ISE IP udp/20514
Hope this help else let's know what the issues are.
Thanks.
-
Thanks
-
If I may get you correctly you want to log all command that you type on your switch console.
Well is like this:
archive
log config
logging enable
logging size 200
notify syslog contenttype plaintext
hidekeys
logging trap
logging ISE IP udp/20514
Hope this help else let's know what the issues are.
Thanks.
Can you really pull syslog messages on ISE? I don't think I have done that before. I would think you would want to point to your normal syslog server. It's too bad ISE still does not support TACACS so we can do command accounting.
-
My understanding of the question is logging command on ISE, and since ISE logging support syslog on udp port 20514 viewing the logs should not be an issues. Except there is more to what the question is asking..