AS5300 past Ganymede accounting-duration = 0

Similar Questions

• GANYMEDE + accounting issue

  Hi all

  I would like to know GANYMEDE-accounting option in cisco.

  We have deployed AAA machine which is Avenda in our network operation and able to enter orders accounting ONLY for valid orders. The GANYMEDE + also can capture invalid orders and sent to Avenda (our AAA machine)?

  Please help clarify.

  Hello

  It is a device-specific thing. In the case of IOS, it only passes the valid commands to the RADIUS server. Example - If we issue the command 'show the user' it will record it and if we run the command "show dog", it will not be logged.

  Hope that helps!

  Kind regards

  ~ JG

  Note the useful messages

• Comment of the NAC and preconfigured server accounts duration

  There seems to be a bug in the way the comment of the NAC Server manages the lifetime pre-configured of guest accounts.

  I followed the manual and I did:

  -Set up 3 times (24 h, 48 h and 1 week) under templates/accounts/accounts times.

  - And the value 'period maximum of account' under user groups

  I understand I should now be able to select one of the configured three times when I log on as a co-author.

  However, I get only the number I mentioned to the user group.

  The strange thing is that if I change the Maximum duration per user group, I have this as the only choice (for example 14 days).

  If other have experienced this?

  Best regards

  Steffen Lindemann

  You can use one of the option to know the number of days or hours.

  For days;

  Authentication > user groups > Add Group | Edit Group includes two new parameters for the number of days in the future, the account can be created and maximum duration of the account (in days)

  For the opening hours:

  User interface > models > add model. Change the Template > accounts > account duration

  http://www.Cisco.com/en/us/docs/security/NAC/guestserver/Release_notes/11/gsrn110.html

• Cisco ACS SE GANYMEDE + accounting fails

  Hello

  I'm under Cisco ACS SE 4.1.23.5. My problem is that the ACS don't Jrnl of the remote switches. I have configured the following accounting commands:

  AAA accounting exec default start-stop Ganymede group.

  orders accounting AAA 0 arrhythmic default group Ganymede +.

  orders accounting AAA 15 by default start-stop Ganymede group.

  Default connection accounting AAA power Ganymede group.

  When I enable aaa accounting debugging, I get the following logs on the switch.

  001091: 12 sep 12:06:06.464 TSB: AAA/ACCT: user johndoe, acct type 3 (2684940942): method = Ganymede + (Ganymede +)

  001092: 12 sep 12:06:06.665 TSB: TAC +: (2684940942): received the status of response acct = SUCCESS

  001093: 12 sep 12:06:11.128 TSB: AAA/ACCT/CMD: user johndoe, tty2, 15 private Port:

  'show running-config '."

  001094: 12 sep 12:06:11.128 TSB: AAA/ACCT/CMD: find the "default" list

  001095: 12 sep 12:06:11.346 TSB: AAA/ACCT: user johndoe, acct type 3 (1583033889): method = Ganymede + (Ganymede +)

  001096: 12 sep 12:06:12.000 TSB: TAC +: (1583033889): received the status of response acct = SUCCESS

  001097: 12 sep 12:08:16.303 TSB: AAA/ACCT/CMD: user johndoe, tty2, 15 private Port:

  ' configure terminal '."

  001098: 12 sep 12:08:16.303 TSB: AAA/ACCT/CMD: find the "default" list

  001099: 12 sep 12:08:16.303 TSB: AAA/ACCT: user johndoe, acct type 3 (1098049616): method = Ganymede + (Ganymede +)

  001100: 12 sep 12:08:16.504 TSB: TAC +: (1098049616): received the status of response acct = SUCCESS

  001101: 12 sep 12:08:29.884 TSB: AAA/ACCT/CMD: user johndoe, tty2, 15 private Port:

  It seems that the switch is well a response but the CSA record. I have updated the ACS for the latest patch (4.1.23.5), which is supposed to resolve this known bug.

  Is there something that I am missing?

  Thank you.

  ESD

  And what you get in the newspapers of Ganymede Administration?

  Kind regards

  Prem

• AAA GANYMEDE + accounting - CLI question by user not appear in the report of the ACS.

  Can I know why CLI cancelled by the user does not show on GANYMEDE ACS accounting report. The length of time is displayed, but I also wanted to connect what is the commands issued by the user.

  WHA is missing here?

  enable AAA authentication login VTY P1_ACS local group

  Group default AAA authorization exec local P1_ACS authenticated by FIS

  AAA authorization exec CONSOLE none

  AAA exec by default start-stop accounting P1_ACS group

  AAA commands 5 default start-stop accounting P1_ACS group

  AAA commands 15 arrhythmic default accounting P1_ACS group

  Accounting logs command is stroed in the newspapers of the administration of Ganymede.

  There is also a known issue on ver 4.1.1 and we must

  apply the ACS 4.1.1.23.5 patch to fix the problem.

  Patch for the unit is available on

  http://www.Cisco.com/cgi-bin/tablebuild.pl/ACS-Soleng-3DES

  The patch name: ACS SE 4.1.1.23.5 rollup

  Acs hotfix for windows is available on

  http://www.Cisco.com/cgi-bin/tablebuild.pl/ACS-win-3DES

  The patch name: ACS 4.1.1.23.5 rollup

  CCIE Security

• GANYMEDE accounting

  I've implemented a Cisco Secure ACS with Protocol GANYMEDE. We have problems with network connectivity, and whenever this happens GANYMEDE fallsback to the local database. Is it possible to allow the capture of executed orders when the ACS to disconnect. Can be when GBA comes back as these (accounting) commands can be sent to it by the device itself.

  My requirement might seem weird. But I am convinced that anything is possible with Cisco :)

  What you ask, it is to have the client IOS T + cache commands and then send to the Association once that customer T + can still communicate with ACS. Yes? By IOS T + controls, no, this is not available. The connection T + is going to fail and fall back to either an another T + server or stop sending documents.

  The only solution here is to have two ACS servers online and have the drop T-return to the ACS secondary loss of connection to the primary. Then, have the two ACSes before accounting to a third-party server, ACS or syslog. Of course, this assumes that the customer T + is not lose connectivity to two ACSes.

• ISE 1.2 change account duration - date error invalid account

  When I tried to extend the duration of certain accounts to July 2014 on my 1.2 ISE I got the error of invalid account date. When I tried to expand the user for February 5, it worked. I could not go over all that day although I can choose a date 365 days away now.

  Is there a limitation when you want to change the duration of the account?

  Kind regards

  Mathieu

  Hi Mathieu,

  Probably hit you this defect

  CSCum10047.

  This issue will be resolved in future releases mostly in ISE 1.2.0. 899 patch 7, which is tentatively scheduled to be released at the end of February.

• I find no connection to a long Facebook account duration. Facebook admits my e-mail address but says that it belongs to someone else. Why?

  I can not access my long standing account Facebook. I can't use the password I've always used. Some of my stats are on a new account. New account has a friend from the old account (2 friends, total) Does does not recognize security question answer. I should know where I lived when I was 8.je has never seen this question before this problem. He sent me an e-mail that I changed a year ago, when my spouse died and I can access is more...

  Hello

  Use the following website links to Facebook help.

  Facebook Help Center | Facebook:

  http://www.Facebook.com/help/

  Facebook Support Forums:

  http://www.thefacebookforum.NET/forum

  Concerning

• the Setup program does not recognize the serial number, even if I copied and pasted my account

  then what should I do?

  I have Adobe Acrobat Pro 9.5.5 installed on an old laptop and want to install it on a new laptop.  There has never been a single installation, and the Adobe website says I can install the product on two computers.  As see you in the title I downloaded Acrobat 9 Pro on Adobe site and tried to enter the serial number, an error message pops up stating that I had entered an incorrect serial number

  Hi Adrian C 20% 20Thompson %.

  Please refer to the following document: error "incorrect serial number | Adobe Acrobat 9 | Adobe Creative Suite 4

• Accounting control GANYMEDE

  Hello

  We have set up accoutnig in our network devices. But orders that users type does not appear in the section GANYMEDE + accounting. We use the ACS 4.1se and orders of posting to the devices are given below.

  AAA accounting exec default start-stop Ganymede group.

  orders accounting AAA 1 by default start-stop Ganymede group.

  orders accounting AAA 15 by default start-stop Ganymede group.

  Help, please

  Command accounting logs are stored in the newspapers of the administration of Ganymede. There is also a known issue on ver 4.1.1 and we must apply the ACS 4.1.1.23.5 patch to fix the problem.

  Patch for the unit is available on

  http://www.Cisco.com/cgi-bin/tablebuild.pl/ACS-Soleng-3DES

  The patch name: ACS SE 4.1.1.23.5 rollup

  Acs hotfix for windows is available on

  http://www.Cisco.com/cgi-bin/tablebuild.pl/ACS-win-3DES

  The patch name: ACS 4.1.1.23.5 rollup

  Kind regards

  ~ JG

  Note the useful messages

• Past POP IMAP in El Capitan - big mess!

  Past my account POP of Comcast to IMAP, in order to better coordinate the Mail (9.3) on my iMac (El Capitan 10.11.4), with a Macbook Pro (also El Capitan 19.11.4) an I Pad (latest IOS) and an old iPod.  Now I can receive and send messages on all devices via IMAP Comcast.

  However my mailboxes (Inbox, Outbox etc.) are now in total disarray after I imported their mboxes into the library folder to my new IMAP Comcast account.  The iMac, which had about 7000 messages in his Inbox now has about 400, while the iPad seems to have each of them, and the MacBook Pro a few thousand.  iCloud is lit and have backup on my time machine.

  Cruelly for expert advice!  Useful suggestions on how to make things work properly would be very appreciated!

  Check the webmail site all messages are there and that the IMAP settings are activated it. Then check each device to ensure that the appropriate settings of IMAP are there and correct as the server and port.

  If the messages still not displayed, you can reindex messages. Quit Mail and access your user library and follow this path:

  ~Library/Mail/v3/MailData

  Find all files starting with the Index of the envelope or ExternalUpdate and move it to the trash. Launch of Mail and click on continue to reindex messages. Be patient and let it finish indexing. This could take a long time with a lot of messages.

  If this fix a computer, repeat the operation on the other.

• Kernel panic caused by the second user account

  Hi, I just bought a MacBook Pro 15 second hand "."

  When I use it on a non secure past admin account, it works very well. But, if I use it on my protected standard user account it restarts continuously soon after the connection, almost as soon as I try to use any application or even before you start an application.

  It has two drives, SSD for the boot and applications and a HARD drive for data.

  I get the following error report to send to Apple, which includes details of the machine in paragraph 6.

  No one knows what is the cause and what could be the solution. I am grateful for the help that anyone can provide. Thank you, Bill

  Wednesday, may 4, 12:47:24 2016

  Panic report *.

  panic (the appellant 2 cpu 0xffffff7f9828bbd5): "panic GPU: 7f [< no >] 3 3 0 0 0 0 3: NVRM [0 / 1:0:0]: error 0 x 00000100 reading: CFG 0xffffffff, 0xffffffff, 0xffffffff, BAR0 0xd2000000 0xffffff90c0c05000 sControl-3.12.6/src/AppleMuxControl/kext/GPUPanic.cpp:127 P2/4\n"@/Library/Caches/com.apple.xbs/Sources/AppleGraphicsControl/AppleGraphic 0x0a5480a2, D0,

  Backtrace (2 CPU), Frame: Return address

  0xffffff90afcc3630: 0xffffff80150dab12

  0xffffff90afcc36b0: 0xffffff7f9828bbd5

  0xffffff90afcc3790: 0xffffff7f95deffa4

  0xffffff90afcc3850: 0xffffff7f95ebcadd

  0xffffff90afcc3890: 0xffffff7f95ebcb48

  0xffffff90afcc3910: 0xffffff7f96141a23

  0xffffff90afcc3a80: 0xffffff7f95ee0b79

  0xffffff90afcc3aa0: 0xffffff7f95df6cfd

  0xffffff90afcc3b50: 0xffffff7f95df4690

  0xffffff90afcc3d50: 0xffffff7f95df5891

  0xffffff90afcc3e30: 0xffffff7f95d9ba24

  0xffffff90afcc3e90: 0xffffff7f98258fd1

  0xffffff90afcc3ee0: 0xffffff7f982578e2

  0xffffff90afcc3f00: 0xffffff801510f1ea

  0xffffff90afcc3fb0: 0xffffff80151c8e27

  Extensions of core in backtrace:

  com.apple.driver.AppleMuxControl (3.12.6) [44D361A1-4938-3AA5-9F73-9C909B66214B] @ 0xffffff7f9827d000-> 0xffffff7f98290fff

  dependency: com.apple.driver.AppleGraphicsControl (3.12.6) [1654475C-9A4B-386C-AFA8-0A530194A 2F9]@0xffffff7f98275000

  dependency: com.apple.iokit.IOACPIFamily (1.4) [5D7574C3-8E90-3873-BAEB-D979FC215A7D] @0xfffff f7f95bb3000

  dependency: com.apple.iokit.IOPCIFamily (2.9) [4FE41F9B-2849-322A-BBF8-A94816C003D6] @ 7f9592c000 0xffffff

  dependency: com.apple.iokit.IOGraphicsFamily (2.4.1) [172C2960-EDF5-382D-80A5-C13E97D74880] @0 xffffff7f95d42000

  dependency: com.apple.driver.AppleBacklightExpert (1.1.0) [C49819CE - 729A - 36B 2 - 9AC1 - 744A43DC23 6F]@0xffffff7f98278000

  com.apple.nvidia.classic.NVDAResmanTesla (10.0) [05FC5D7E-BB0B-3232-BBBD-8A49B687 0D8B]@0xffffff7f95d99000-> 0xffffff7f9600efff]

  dependency: com.apple.iokit.IOPCIFamily (2.9) [4FE41F9B-2849-322A-BBF8-A94816C003D6] @ 7f9592c000 0xffffff

  dependency: ffff7f95d89000 @0xff com.apple.iokit.IONDRVSupport (2.4.1) [1114B99F-E439-329E-876D-1FEC4CF45DF6]

  dependency: com.apple.iokit.IOGraphicsFamily (2.4.1) [172C2960-EDF5-382D-80A5-C13E97D74880] @0 xffffff7f95d42000

  com.apple.nvidia.classic.NVDANV50HalTesla (10.0) [CA 56199, 6 - 3C8D - 3EBB - B5EF - 7B1B467 8ACF9]@0xffffff7f96019000-> 0xffffff7f962c6fff]

  dependency: com.apple.nvidia.classic.NVDAResmanTesla (10.0.0) [05FC5D7E-BB0B-3232-BBBD-8A49B6 870D8B]@0xffffff7f95d99000

  dependency: com.apple.iokit.IOPCIFamily (2.9) [4FE41F9B-2849-322A-BBF8-A94816C003D6] @ 7f9592c000 0xffffff

  com.apple.driver.AGPM (110.21.18) [8076C6C9-1F88-3B1D-A661-56B820AB18F1] @0xffffff 7f98255000-> 0xffffff7f9826bfff

  dependency: com.apple.iokit.IOPCIFamily (2.9) [4FE41F9B-2849-322A-BBF8-A94816C003D6] @ 7f9592c000 0xffffff

  dependency: com.apple.driver.IOPlatformPluginFamily (6.0.0d7) [5BF60B]@0xffffff7f9696e000 4BEF649C-7CFD - 31CA - 8 d 84-1F0DB2

  dependency: ffff7f95d89000 @0xff com.apple.iokit.IONDRVSupport (2.4.1) [1114B99F-E439-329E-876D-1FEC4CF45DF6]

  dependency: com.apple.iokit.IOGraphicsFamily (2.4.1) [172C2960-EDF5-382D-80A5-C13E97D74880] @0 xffffff7f95d42000

  dependency: com.apple.AppleGraphicsDeviceControl (3.12.6) [F211EB28-182 a-34BB-A610-87667618F9 25]@0xffffff7f9824e000

  Corresponding to the current thread BSD process name: kernel_task

  Mac OS version:

  15E65

  Kernel version:

  15.4.0 Darwin kernel version: Fri Feb 26 22:08:05 PST 2016; root:XNU-3248.40.184~3/RELEASE_X86_64

  Kernel UUID: 4E7B4496-0B81-34E9-97AF-F316103B0839

  Slide kernel: 0x0000000014e00000

  Text of core base: 0xffffff8015000000

  Text __HIB base: 0xffffff8014f00000

  Name of system model: MacBookPro6, 2 (Mac-F22586C8)

  Availability of the system in nanoseconds: 27743575513

  last load kext to 8294719606: com.avast.AvastFileShield 3.0.0 (addr 0xffffff7f9837f000 size 40960)

  kexts responsible:

  com.avast.AvastFileShield 3.0.0

  com.avast.PacketForwarder 2.1

  com.apple.driver.AudioAUUC 1.70

  com Apple.filesystems.autofs 3.0

  com.apple.driver.AppleHWSensor 1.9.5d0

  com.apple.driver.AppleTyMCEDriver 1.0.2d2

  com.apple.driver.AGPM 110.21.18

  com.apple.driver.AppleOSXWatchdog 1

  com.apple.driver.AppleMikeyHIDDriver 124

  com.apple.driver.AppleMikeyDriver 274.7

  com.apple.driver.AppleHDAHardwareConfigDriver 274.7

  com.apple.driver.AppleHDA 274.7

  com Apple.Driver.pmtelemetry 1

  com.apple.iokit.IOUserEthernet 1.0.1

  com.apple.driver.AppleUpstreamUserClient 3.6.1

  com.apple.iokit.IOBluetoothSerialManager 4.4.4f4

  com.apple.Dont_Steal_Mac_OS_X 7.0.0

  com.apple.driver.AppleIntelHDGraphics 10.0.0

  com.apple.GeForceTesla 10.0.0

  com.apple.driver.AppleBacklight 170.8.9

  com.apple.driver.AppleHV 1

  com.apple.driver.AppleSMCPDRC 1.0.0

  com.apple.driver.AppleMCCSControl 1.2.13

  com.apple.nvidia.NVDAStartup 10.1.0

  com.apple.iokit.BroadcomBluetoothHostControllerUSBTransport 4.4.4f4

  com.apple.driver.AppleSMCLMU 208

  com.apple.driver.AppleMuxControl 3.12.6

  com.apple.driver.AppleLPC 3.1

  com.apple.driver.AppleIntelSlowAdaptiveClocking 4.0.0

  com.apple.driver.AppleIntelHDGraphicsFB 10.0.0

  com.apple.driver.AppleFIVRDriver 4.1.0

  com.apple.driver.ACPI_SMC_PlatformPlugin 1.0.0

  com.apple.driver.SMCMotionSensor 3.0.4d1

  com.apple.driver.AppleUSBTCButtons 245,4

  com.apple.iokit.IOBluetoothUSBDFU 4.4.4f4

  com.apple.driver.CoreStorageFsck 517.20.1

  com.apple.iokit.SCSITaskUserClient 3.7.7

  com.apple.driver.AppleFileSystemDriver 3.0.1

  com.apple.AppleFSCompression.AppleFSCompressionTypeDataless 1.0.0d1

  com.apple.AppleFSCompression.AppleFSCompressionTypeZlib 1.0.0

  com.apple.BootCache 38

  com.apple.driver.AppleUSBStorageCoexistentDriver 3.7.1

  com.apple.driver.AppleUSBCardReader 3.7.1

  com.apple.driver.AppleIRController 327,5

  com.apple.driver.AppleUSBTCKeyEventDriver 245,4

  com.apple.driver.AppleUSBTCKeyboard 245,4

  2.8.5 com.apple.iokit.IOAHCIBlockStorage

  com.apple.driver.AppleFWOHCI 5.5.2

  com.apple.driver.AirPort.Brcm4331 800.20.24

  com.apple.iokit.AppleBCM5701Ethernet 10.2.0

  com.apple.driver.AirPort.Brcm4360 1040.1.1a6

  com.apple.driver.AppleAHCIPort 3.1.8

  com.apple.driver.usb.AppleUSBEHCIPCI 1.0.1

  com.apple.driver.usb.AppleUSBUHCIPCI 1.0.1

  com.apple.driver.AppleSmartBatteryManager 161.0.0

  com.apple.driver.AppleRTC 2.0

  com.apple.driver.AppleACPIButtons 4.0

  com.apple.driver.AppleHPET 1.8

  com.apple.driver.AppleSMBI

  Model: MacBookPro6, 2, MBP61.0057.B11 of BootROM, 2 processors, Intel Core i7, 2.66 GHz, 4 GB, MSC 1.58f15

  Graphics: integrated graphics card Intel HD, Intel HD Graphics,

  Graphics card: NVIDIA GeForce GT 330 M, NVIDIA GeForce GT 330 M, PCIe, 512 MB

  Memory module: BANK 0/DIMM0, 2 GB, DDR3, 1067 MHz, 0x80AD, 0x484D54313235533642465238432D47372020

  Memory module: BANK 1/DIMM0, 2 GB, DDR3, 1067 MHz, 0x80AD, 0x484D54313235533642465238432D47372020

  Airport: spairport_wireless_card_type_airport_extreme (0x14E4, 0 x 93), Broadcom BCM43xx 1.0 (5.106.98.100.24)

  Bluetooth: Version 4.4.4f4 17685, 3 services, 27 aircraft, 1 incoming serial ports

  Network service: Wi - Fi, AirPort, en1

  Serial ATA Device: ST1000LM024 HN-M101MBB, 1 TB

  Serial ATA Device: SanDisk SD7SB6S128G1122, 128,04 GB

  USB device: USB 2.0 Bus

  USB device: Hub

  USB Device: Card reader

  USB device: Apple keyboard / Trackpad

  USB device: Hub BRCM2070

  USB Device: USB Bluetooth host controller

  USB device: USB 2.0 Bus

  USB device: Hub

  USB Device: IR receiver

  USB device: ISight built-in

  Crush Bus:

  The unit has a faulty logic board. If possible, return it to the seller. Fixing it would cost over what you paid for it.

• AAA accounting report is not with issued orders.

  Hello everyone, I have a problem with the AAA accounting on my ACS 4.0 device. When I view the posting journal lists the connections, protocols and addresses IP but not the commands executed on the specific switch. When I debug AAA accounting I see ouput but when I debug Ganymede accounting I see nothing. An exammple of my config is:

  AAA new-model

  AAA group Ganymede Server + ACS

  Server [ip address here]

  Server [ip address here]

  AAA accounting exec by default start-stop group ACS

  AAA accounting command 0 arrhythmic group ACS

  orders accounting AAA 15 start-stop ACS group

  RADIUS-server key [here].

  I left on the framework for the authentication of the configuration (in the example above) that it works very well.

  Someone at - it ideas why the actual orders are not be captured on GBA?

  Thanks in advance.

  GBA, accounting of the order must be recorded in the Administration of GANYMEDE + do not connect not the journal GANYMEDE + accounting! Don't ask me why, what just. At least it is on my own and took me a while to discover as well.

  Hope this helps

  Concerning

  Mike

• GANYMEDE + records of command problems

  All,

  Working on a problem I'll have get record installation for my switch / router infrastructure.  Here's my config authentication works, the two console & SSH.  Authorization is also working.  Some of my accounting functions work, like GANYMEDE + successful connections, but all my logging features of command do not work correctly.

  I am running ACS V4.1.  In addition, what is the difference between using named auth / accounting of lists and by default?  Is it fair that I need to apply some interfaces, where the default value is applied to all interfaces?

  Configs:

  AAA new-model

  AAA SSH authentication connection group Ganymede + local
  local authentication AAA CONSOLE connection
  authorization AAA console
  local CONSOLE AAA authorization exec
  exec authorization AAA SSH group Ganymede +.
  network of local AAA CONSOLE authorization
  authorization for AAA network SSH group Ganymede +.
  exec accounting AAA SSH start-stop group Ganymede +.
  AAA accounting command 0 SSH start-stop group Ganymede +.
  AAA accounting command SSH 1 start-stop Ganymede group.
  AAA accounting command SSH 15 group arrhythmic Ganymede +.
  network accounting AAA SSH start-stop group Ganymede +.

  access-list 1 permit X.X.56.0 0.0.0.255
  GANYMEDE-server host X.X.X.X XXXXXXXXXXXXX key
  RADIUS-server timeout 30
  RADIUS-server application made
  !
  control plan
  !
  !
  Line con 0
  session-timeout 10
  exec authorization CONSOLE
  the CONSOLE connection authentication
  line vty 0 4
  session-timeout 10
  access-class 1
  exec authorization SSH
  accounting of the SSH commands 0
  accounting controls 1 SSH
  SSH 15 orders accounting
  accounting SSH exec
  the SSH connection authentication
  entry ssh transport
  line vty 5 15
  session-timeout 10
  access-class 1
  exec authorization SSH
  accounting of the SSH commands 0
  accounting controls 1 SSH
  SSH 15 orders accounting
  accounting SSH exec
  the SSH connection authentication
  entry ssh transport

  Any help is appreciated.

  Thank you!

  Jon

  Hi Jon,

  Could you let us know the exact version of the CSA? If it's the ACS 4.1.1.23, then you would have to apply the latest patch from FAC as there is a bug in ACS 4.1.1.23 in what order accountant does not work.

  Here is the information about the bug:

  CSCsg97429:

  GANYMEDE + accounting command does not work in ACS 4.1 Build 23 (1).

  Symptom:

  GANYMEDE + accounting command does not work in ACS 4.1 Build 23 (1).
  No accounts appear in the log of Administration GANYMEDE +.

  Conditions:

  Accounting command is configured on the NAS server. After the seizure of the orders on the NAS
  no record is visible in the Administration GANYMEDE log file +. Debugs on the show NAS
  files sent and they get to the ACS server, but if
  log file is not updated.

• Administrator command accounting Pix 515

  Hello

  Is there a way to connect firewall admin commands issued to the firewall? As for example, send to a GANYMEDE Server +?

  Thanks for the help.

  Hello noipt,

  Accounting command can be configured ONLY in PIX v7.x. In addition, looks not - show only orders will be sent.

  By the order No.

  Accounting messages to the GANYMEDE + accounting server when you enter one command other display commands in the CLI, use the command of control accounting aaa in global configuration mode.

  AAA accounting command

  http://www.Cisco.com/univercd/CC/TD/doc/product/multisec/asa_sw/v_7_2/cmd_ref/a1_711.htm#wp1428200

  For version 6.x.

  Authentication and authorization in order for PIX 6.2

  http://www.Cisco.com/warp/public/110/pix_command.shtml#accounting

  There is no command available real accounts, but in having enabled on the PIX of syslog, you can see what steps have been made, as shown in this example:

  307002: allows connection of the 172.18.124.111 Telnet session

  111006: connection to pixtest to the console console

  611103: user disconnected: Uname: pixtest

  307002: allows connection of the 172.18.124.111 Telnet session

  111006: connection to pixtest to the console console

  502103: user priv level changed: Uname: pixtest of: 1:15

  111008: user 'pixtest' command 'enable '.

  111007: configuration Begin: 172.18.124.111 reading of the terminal

  111008: user 'pixtest' run the command "configure t."

  111008: user 'pixtest' run the command "write t.

  I hope this helps! If Yes, please rate.

  Thank you