Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
508
Views
3
Helpful
9
Replies

Tacacs audit logs legacy

Go to solution
acapit
Level 1
Level 1

‎12-30-2023 09:17 AM

Hello,
I'm trying to enable audit logs on my network device and when I configure the following command I get a warning message
1. aaa accounting commands
2. aaa accounting exec
I get a message that says "Hidden command. Use of this command is not recommended/supported will be removed in the future" (message code "PARSER-5-HIDDEN")
What should I use instead?

Any thoughts?

Labels:
0 Helpful
2 Accepted Solutions

Accepted Solutions

Go to solution
MHM Cisco World
VIP
VIP
In response to acapit

‎12-30-2023 12:56 PM

aaa accounting commands visible-keys 

try this 

View solution in original post

9 Replies 9

Go to solution
M02@rt37
VIP
VIP

‎12-30-2023 11:57 AM

Hello @acapit 

For aaa accounting in cisco devices, the recommended and supported commands are associated with specific accounting methods (e.g., "start-stop," "stop-only") and accounting lists. The exact syntax may vary based on your specific device and IOS version...

Basic example using "aaa accounting" with the "start-stop" method for command accounting:

aaa accounting exec default start-stop group tacacs+
aaa accounting commands 15 default start-stop group tacacs+

First command, log the start and stop of EXEC session to the device. When the user logged in and when the user logged out. Total time spent.

The second command, log all the commands executed by the user, that are at privilege level 15.

 

Best regards
.ı|ı.ı|ı. If This Helps, Please Rate .ı|ı.ı|ı.
0 Helpful

Go to solution
acapit
Level 1
Level 1
In response to M02@rt37

‎12-30-2023 12:36 PM

I know that as I said when I configure the following commands I get a warning

 "Hidden command. Use of this command is not recommended/supported will be removed in the future" (message code "PARSER-5-HIDDEN"), 

Do you have any other solution?

0 Helpful

Go to solution
M02@rt37
VIP
VIP
In response to acapit

‎12-30-2023 12:40 PM

Please share your aaa configuration 

Best regards
.ı|ı.ı|ı. If This Helps, Please Rate .ı|ı.ı|ı.
0 Helpful

Go to solution
acapit
Level 1
Level 1
In response to M02@rt37

‎12-30-2023 01:18 PM

Sadly I cannot share with you my configuration due to my company policy.

0 Helpful

Go to solution
MHM Cisco World
VIP
VIP
In response to acapit

‎12-30-2023 12:56 PM

aaa accounting commands visible-keys 

try this 

Go to solution
MHM Cisco World
VIP
VIP

‎12-30-2023 12:01 PM

Can I see all aaa config 

MHM

0 Helpful

Go to solution
acapit
Level 1
Level 1
In response to MHM Cisco World

‎12-30-2023 01:18 PM

Sadly I cannot share with you my configuration due to my company policy.

Go to solution
MHM Cisco World
VIP
VIP
In response to acapit

‎12-30-2023 01:26 PM

aaa accounting commands visible-keys 

Try using this command to see command without mask

0 Helpful
Customers Also Viewed These Support Documents