We help IT Professionals succeed at work.

Executed command logging on Cisco switches

Medium Priority
669 Views
Last Modified: 2012-05-12
I configure logging on Cisco ASA and Cisco routers to tell me what commands are entered into the device and from what user.

Is there a similar command for cisco switches?

I want a syslog message generated when a command is executed.
Comment
Watch Question

SouljaSr.Net.Eng
CERTIFIED EXPERT
Top Expert 2011

Commented:
I am not aware of any command set for Cisco switches that will perform this. It can most likely be accomplished with AAA and a TACACs server.
Top Expert 2011
Commented:
You can do it using Cisco ACS server (TACACS) Administration Logs
CERTIFIED EXPERT
Commented:
Can we say there isn't a way to do this without ACS then?

I read that the archive command (which is what I am using on the routers) was integrated into Cisco IOS Release 12.2(25)S.

Do this apply to the switches also? I am upgrading the IOS on the switch to verify.
Sr.Net.Eng
CERTIFIED EXPERT
Top Expert 2011
Commented:
I just checked my 3750 at home and yes, you can do this now.
SouljaSr.Net.Eng
CERTIFIED EXPERT
Top Expert 2011

Commented:
My version :  c3750-advipservicesk9-mz.122-46.SE
CERTIFIED EXPERT

Author

Commented:
Here is the proper configuration:

archive
 log config
   logging enable
   hidekeys
   notify syslog

Explore More ContentExplore courses, solutions, and other research materials related to this topic.