Hi, Thanks I have now configured the freeradius and the Cisco switch is now getting authenticated against the AD user but I can't see the commands executed in the switch by this user in the radius account log.
Is it possible to see the command executed in accounting log ? Regards, /Neo Sent from my iPhone On 20-Jan-2013, at 5:57 PM, [email protected] wrote: > Hi, > >> I. FreeRADIUS integration with Microsoft AD > > http://deployingradius.com/documents/configuration/active_directory.html > >> II. Cisco switches needs to be the client > > http://www.cisco.com/cisco/web/support/index.html > > find your switch model and the documents for it. > >> II. The accounting information should also contain the commands executed >> in the Switch as well, Example If a used called "test" login to the >> switch and exexuted a command "Show config" that should be captured in the >> accounting information. > > Cisco switches. their RADIUS for such stuff is weak and usually non existant. > use TACACS+ > >> Do i need a DB like MySQL for accounting or AD LDAP DB will help in doing >> so? > > I'd advise using SQL for accounting records but its not necessary. a plain > flat file will > do just as well in the beginning. > > alan > - > List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
