Lab Minutes Forum

Technical Discussion => Security => Topic started by: amsa on October 27, 2013, 01:21:35 PM

Title: commands
Post by: amsa on October 27, 2013, 01:21:35 PM

Hi

Please answer me this question.....

what is it command ? Which we doing on the switch to give me any user enters & applies the command, such as shutdown any interfaces, and the results we see on the Cisco ISE.

Thanks

Title: Re: commands
Post by: adecisco on October 28, 2013, 08:08:24 AM

If I may get you correctly you want to log all command that you type on your switch console.

Well is like this:

archive
log config
  logging enable
  logging size 200
  notify syslog contenttype plaintext
  hidekeys
 
 logging trap
logging ISE IP udp/20514

Hope this help else let's know what the issues are.

Thanks.
 

Title: Re: commands
Post by: amsa on October 28, 2013, 01:14:34 PM

Thanks

Title: Re: commands
Post by: MC on October 29, 2013, 12:35:47 AM

You are not allowed to view links. Register or Login

If I may get you correctly you want to log all command that you type on your switch console.

Well is like this:

archive
log config
  logging enable
  logging size 200
  notify syslog contenttype plaintext
  hidekeys
 
 logging trap
logging ISE IP udp/20514

Hope this help else let's know what the issues are.

Thanks.

Can you really pull syslog messages on ISE? I don't think I have done that before. I would think you would want to point to your normal syslog server. It's too bad ISE still does not support TACACS so we can do command accounting. 

Title: Re: commands
Post by: adecisco on October 29, 2013, 03:22:59 AM

My understanding of the question is logging command on ISE, and since ISE logging support syslog on udp port 20514 viewing the logs should not be an issues. Except there is more to what the question is asking..