TACACS+ Accounting Question
Dear all,
I would like to know TACACS+ accounting option in cisco.
We deployed AAA machine which is Avenda in our operation network and able to capture accounting commands ONLY for valid commands. Does the TACACS+ also can capture invalid commands and send to Avenda (Our AAA machine) ?
Please help to clarify.
Hi,
This is something device specific. In case of IOS it forwards only valid commands to tacacs server. Example- If we issue command "show user" it will log it and if we issue command "show dog" it will not be logged.
Hope that helps!
Regards,
~JG
Do rate helpful posts
Similar Messages
-
Tacacs+ accounting log question
I have a tacacs server running for accounting purpose only (so I use local authentiation). So I can collect all accounting logs only.
This is a snapshot for accounting part.
Tacacs accounting logs
<102> 2014-02-23 10:20:22 [10.254.1.2:22823] 02/23/2014 10:20:22 NAS_IP=10.254.1.x Port=443 rem_addr=10.254.50.129 User= brian Flags=Stop task_id=57 cmd=perfmon interval 10 service=shell elapsed_time=0
<102> 2014-02-23 10:23:51 [10.254.1.2:58167] 02/23/2014 10:23:51 NAS_IP=10.254.1.x Port=0 rem_addr=10.254.50.129 User=brian Flags=Stop task_id=58 cmd=configure term service=shell elapsed_time=0
<102> 2014-02-24 07:06:31 [10.254.1.2:19784] 02/24/2014 07:06:31 NAS_IP=10.254.1.x Port=443 rem_addr=10.254.51.166 User=mike Flags=Stop task_id=59 cmd=perfmon interval 10 service=shell elapsed_time=0
<102> 2014-02-24 07:07:53 [10.254.1.2:19254] 02/24/2014 07:07:53 NAS_IP=10.254.1.x Port=0 rem_addr=10.254.51.166 User=mike Flags=Stop task_id=5a cmd=configure term service=shell elapsed_time=0
As you can see, I can't see any command lines, such as show int ip b. I can see all routers and switches logs, but ASA logs shows only like above. No mather what commands I used, it only shows above logs. Do i miss something? I like to capture all commands lines when users use ASDM because we use always ASDM.
I used Free tacacs+ server, not ACS.
Thanks for your time.Hi Patrick,
In the ACS View Reports (Monitoring & Reports > Reports > Catalog > AAA Protocol) you can select the
radio button and by selecting 'Run' on the bottom run a specific query. Without that by default you will see only a report from one day.
For the 2nd question, yes the ACS View is designed to store that information, however if needed you can send the logs to an external syslog server or perfrom regular backups of the ACS View database.
Kind regards,
Pawel -
Read a file having name (TACACS+ Accounting active.csv) in java
how to read a file having name (TACACS+ Accounting active.csv) in java through buffer reader
Did you take even a millisecond to try anything?
Here's my hint.
"The same way you read anything else with a BufferedReader." -
If I choose to authenticate NCS users through Cisco ACS (5.4 in this instance) via TACACS, do I still have the ability to do accounting to track what changes they have made? I'm not getting anything in the TACACS accounting reports and I don't see anywhere to configure TACACS for accounting within NCS gui like I can on a WLC. I know that NCS has an internal audit trail but if a users account is both a local account on NCS as well as an account being authenticated through ACS does the Audit trail on NCS for that local user still contain the information about changes the user made? I ask because it looks like it does but I want to make sure I'm not going mad. Here is my example:
Local account username: NCS_Admin2
AD account via TACACS username: NCS_Admin2
Audit trail for the NCS_Admin2 account on NCS looks like changes are being logged to NCS even though the user is logging in with their AD credentials via TACACS.
I know that is probably as clear as mud.
Thanks.
ToddUser is authenticated with TACACS
NCS_Admin2
NCS.customerdomain.local
2013-Mar-05, 10:18:30 EST
2013-Mar-05, 11:22:36 EST
TACACS+
Admin -
Dear All,
This is regarding Tacacs+ accounting. We have Cisco ACS server 4.2 for AAA. I want to configure accounting in such a way that I should get the reports containing what are the commands used by user after successfully logged in into the route. Currently I am getting reports containing IN and OUT time , who was the user etc. So what to change if I want all the commands used by user on the router after logged in?
Thanks,
Abhisar.hi,
You will have to configure command authorization for that and then the command accounting.
following link throws some light on it.
http://www.cisco.com/en/US/docs/security/asa/asa72/configuration/guide/mgaccess.html#wp1059882
Hope this helps.
Regards,
Anisha
P.S.: please mark this post as answered if you feel your query is answered. Do rate helpful posts. -
TACACS+ Accounting "Network Access Profile" name is missing
Hello,
I have a problem trying to export logs to the Cisco ACS View from my ACS 4.2
In the document http://www.cisco.com/en/US/docs/net_mgmt/cisco_secure_access_control_server_view/4.0/user/guide/appendixA.html Cisco states that one of the mandatory attributes for export to work is "Network Access Profile Name" under TACACS+ Accounting (under ACS 4.2 System configuration -> Logging settings). Well, I don't have this mandatory attribute listed in ACS under TACACS+ accounting log configuration. I tried to ignore this attribute, but then ACS View complains about null value for the attribute mentioned above.
Is this some bug in ACS View or ACS or maybe I simply missing something?;)
Best Regards,
IgorCisco created a new bug for it:
CSCtq85420
Best Regards,
Igor -
Config the TACACS+ Accounting attributes
hi,
the ACS4.1 as AAA server using TACACS+ ,the customer wants to record the command they used when they loggined the AAA client ,how to config the TACACS+ Accounting attributes ?These commands will perform accounting records whenever a level 0,1,15 command is used
This is logged to the
"Reports and Activities" -> "TACACS+ Administration"
aaa accounting commands 0 default start-stop group tacacs+
aaa accounting commands 1 default start-stop group tacacs+
aaa accounting commands 15 default start-stop group tacacs+ -
How do I verify my account questions if I forgot the answers
How do I verify my account questions if I forgot the answers
Forgotten security questions - https://discussions.apple.com/message/18402551
More involved forgotten question issues - https://discussions.apple.com/thread/3961813
Frequently asked questions about Apple ID - http://support.apple.com/kb/HE37
If none of the above work, contact iTunes Support at http://www.apple.com/support/itunes/contact/ and follow the instructions to report the issue to the iTunes Store. -
How do i purchase music and movies on the new computor with out knowing my verification question and anwser?
Welcome to the Apple Community.
Contact Apple through iTunes Store Support, and explain that you have forgotten your 3 security questions, that you can reset your password, but doing so doesn't reset your security questions.
Explain that after resetting your password, you are still asked for the answers you have forgotten, before you can gain access to My Apple ID > Manage your account > Password & security, which is where you need to be to change your answers.
Remember, support will receive hundreds, if not thousands of requests per day, some from people trying it on, others with little explanation and others that are written extremely poorly. Take the time to explain your situation properly, be precise and concise, brief but comprehensive. -
2 Devices 1 iCloud Account Question
I have 2 devices connected to the same iCloud account, however on one Device "Notes" is turned off,and the other it is turned on.
The 2 devices have notes on them and they are different notes,my question is what will happen when if I turn on notes on the one that is selected off.
Will it merge the notes from both devices or delete the older ones?I don't recall 100% to be honest, it's also something I'm unable to test since I no longer have 'on my mac' notes, but...
If you turn iCloud notes off, you aren't prompted to keep them and indeed are told they will be deleted. This suggests to me that they won't be merged and will stay in two separate accounts once iCloud notes has been enabled.
On your Mac you can drag notes between accounts, which isn't possible on an iOS device. I also seem to recall that once you remove your last note from the 'on my mac' account, that account will be removed and can't be reinstated whilst you have other accounts.
So I think they aren't merged, but can't be sure. -
Photo stream account questions
good day all!
hoping to get some advice as i searched the web and cant find it.
both questions pertain to photo stream
1. if i am using a 'shared photo stream' is there a setting that will allow me to automatically upload every photo i take on my iphone 4s to the shared photo stream. if such what is the method.
2. is it possible to have more than one photo stream account on the same computer. i know i downloaded icloud on my computer but it didnt tell me if it was possible to have more than one photo stream account. i noticed i could sign out of icloud and assume sign in with a different account but how would it seperate both and what would happen to the first photo stream account when i logged off the computer.
thanks for answering!
mattbut my old mobile me settings
Make sure you are using the correct Apple ID user name and password.
On your MBAir, open System Preferences > iCloud. Deselect the box next to Photo Stream then reselect the box then restart your Mac.
On your iOS devices tap Settings > iCloud. Switch Photo Stream off then back on, then reset.
Hold the On/Off Sleep/Wake button and the Home button down at the same time for at least ten seconds, until the Apple logo appears.
Support artilce > iCloud: Photo Stream Troubleshooting -
Syncing multiple iPhones with 1 iTunes account questions.
Hello community. Just had a few questions about my iphone and my wifes. I have had an iphone for almost a year now and have had my login email address and password set up since the beginning. I have the iphone 4. My wife today received her iphone 4s in the mail. I also currently have my iphone set up on the cloud to sync my contacts and calendar. We also have an ipad 2 which is set up through the cloud and I am the only person who uses this for work purposes. One of the main questions I have is how can I sync her iphone and mine using the same iTunes account on our Mac book we have and at the same time not have every purchase or app downloaded onto both phones? I use a few apps for work which she doesn't want but if she was to sync with the cloud or itunes she doesn't want to constantly delete the app or un-select it from syncing to her phone. Also we do enjoy playing some of the same games especially against each other but is ther a way for her to have her own seperate login for either downloading apps or a different login for getting into the game center? Also since we share the same wi-fi network at home is there a way to make it so that when I get home or she gets home and had downloaded apps while away that they don't automatically get sent to each other's phones or the iPad which I use for work? Sorry if I'm a little bit of everywhere with the questions but just trying to get this resolved the best we can. Thank you for all your help!
" how can I sync her iphone and mine using the same iTunes account on our Mac book we have and at the same time not have every purchase or app downloaded onto both phones"
Each device will only sync what you select to sync. If your wife does not want an app, then she should not select it to sync.
" Also since we share the same wi-fi network at home is there a way to make it so that when I get home or she gets home and had downloaded apps while away that they don't automatically get sent to each other's phones or the iPad which I use for work?
Again, if she does not select them to sync, then they will not sync.
How to use multiple iPods, iPads, or iPhones with one computer -
Hi Gurus,
I got some questions for asset accounting request all of you to kindly extend your help
my questions are
What is Asset History? ( OAOA)
2) How the data flows from Asset Accounting to Controlling?
3) When the asset value is zero and the Company is still using the asset then, how the Company generally proceed to calculate depreciation further? (Curb) (SPRO>Financial Accounting>Asset Accounting>Depreciation>Valuation Methods> Depreciation Key>Calculation Methods> Define Base Methods)
4) In asset accounting, why 0% Tax code is created for not taxable transaction and why it is compulsory to do it before assigning the chart of depreciation to company code?
5) What configuration is required to bring all the Fields in depreciation area tap of Asset master creation?(AO21) and (AS01)
[If we make any changes in Tcode AO21 and they are not getting reflected in depreciation area (Last Tab) in creation of asset master (AS01). So how to make the configuration to get those changes reflected in dep. area (last tab) in creation of asset]
6) What are difference between Germany Chart of Dep. and Great Britain Chart of Dep. (UK)?
Be assured about the points
Thx
Vinod R KhelaniHello
Charts of depreciation are used in order to manage various legal requirements for the depreciation and valuation of assets. These charts of depreciation are usually country-specific and are defined independently of the other organizational units. A chart of depreciation, for example, can be used for all the company codes in a given country
In the simplest scenario, all of your company codes are in the same country and are subject to the same legal requirements for asset valuation, meaning that you only need one chart of depreciation.
The chart of depreciation consists of the following parts:
In general, you are required to calculate values for assets for different needs, both internal and external (such as book depreciation and cost depreciation). Therefore, the Asset Accounting component enables you to manage values for assets in parallel in up to 99 depreciation areas. The chart of depreciation, therefore, is a directory of depreciation areas organized according to business management requirements. You define the characteristics, and thereby the significance, of the individual depreciation areas in each chart of depreciation. A depreciation area is always assigned to only one chart of depreciation.
You flexibly define the keys for the automatic depreciation of assets in each chart of depreciation. They are based on elements for calculation (calculation methods, period controls, and so on) that are available client-wide.
Use
SAP supplies typical reference charts of depreciation for each country. They have different depreciation areas and depreciation keys depending on that countrys specific requirements. You cannot use these charts of depreciation directly. You must create your own chart of depreciation by copying the reference chart of depreciation. Delete any depreciation areas that are not needed.
You can document the meaning of any chart of depreciation you set up in the system by writing a description for it.
Reg
*assign points if useful -
HT1918 How can you change your security account questions
After your account has been unlocked after eight hours how do you change the security questions answered if you have forgotten ?
Check the AppleCare number for your country here:
http://support.apple.com/kb/HE57
Call them up, and let them know you would like to be transferred to the Account Security Team. -
I want to know what can i do if i forgot the three account question?
I redeemed $25 in my account by the app card, but i cant buy items in the games because it said that i need to answer the three questions. But i forgot the questions, what can i do for it? i want to know if i can use the money.
If you have a rescue email address set up on your account then you can try going to https://appleid.apple.com/ and click 'Manage your Apple ID' on the right-hand side of that page and log into your account. Then click on 'Password and Security' on the left-hand side of that page and on the right-hand side you might see an option to send security question reset info to your rescue email address.
If you don't have a rescue email address then go to Express Lane and select 'iTunes' from the list of 'products' in the middle of the screen.
Then select 'iTunes Store', and on the next screen select 'Account Management'
Next choose 'iTunes Store Account Security' and fill in that you'd like your security questions/answers reset.
You should get an email reply within, I think, about 24 to 48 hours (and check your Spam folder as well as your Inbox)
Maybe you are looking for
-
I am unable to put new songs on my ipod
I am unable to put new songs on my ipod. When I put new songs into my itunes, i see them just fine. I go to sync my ipod and it says "sync is complete" within seconds, so I know nothing has been synced. New playlists are also not showing up. Many of
-
I bought a $15 app GTA Vice City a while ago and I just started using it and it doesn't work. I checked all the requirements and my laptop meets all of them. I also have contacted Rockstar Games and they didn't help. Can I get my money back? Its frus
-
How to turn off standard warning?
Hi, I am hitting the warning below when I hit Check and Send button for one of the MSS service. "Event to start workflow for vacancy administration not triggered." I can actually continue to submit and complete the request without any issue. But I wo
-
HI All, Can any one tell me is there any standard report for the t.codes used by users for certain period other than t.code sm20 and st03n Thanks phaneendra
-
Hi, I need to make the over all status of the credit check (VBUK-CMGST) as space, if the payment term (VBKD-ZTERM) is Z000. I tried it using MV45FAZZ, FORM USEREXIT_SAVE_DOCUMENT, but its not working. Can any one help me out