Cisco MDS-9124 Troubleshooting Guide - Page 348
Verifying User Login with System Messages Using the CLI, Switch Logging, debug, Apply
View all Cisco MDS-9124 manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 348 highlights
User and Role Issues Chapter 18 Troubleshooting Users and Roles Send documentation comments to [email protected] Step 3 Step 4 Select the Switch Logging tab, select debug from the LogFileMsgSeverity radio buttons, and click Apply, This sets the switch to save system messages at the debug level or above in the switch log file. At this point, all future login attempts are tracked in the log file. After a login attempt, choose Logs > Switch Resident > Syslogs > Since Reboot, and click Last Page to view the most recent messages. You should see messages such as: 2006 Mar 2 22:08:44 v_190 %AUTHPRIV-6-SYSTEM_MSG: START: telnet pid=10654 from= ::ffff:161.44.67.125 2006 Mar 3 03:08:49 v_190 %AUTHPRIV-7-SYSTEM_MSG: Got user name 2006 Mar 3 03:08:53 v_190 %AUTHPRIV-7-SYSTEM_MSG: user testUser authenticated 2006 Mar 3 03:08:53 v_190 %AUTHPRIV-7-SYSTEM_MSG: PAM login: updating snmpv3 US M for user testUser 2006 Mar 3 03:08:53 v_190 %AUTHPRIV-7-SYSTEM_MSG: PAM login: snmpv3 attribute v alue (null) 2006 Mar 3 03:08:53 v_190 %AUTHPRIV-7-SYSTEM_MSG: PAM login: updating snmpv3 US M success for user testUser 2006 Mar 3 03:08:53 v_190 %AUTH-6-SYSTEM_MSG: (login) session opened for user t estFoo by (uid=0) 2006 Mar 3 03:08:53 v_190 %AAA-6-AAA_ACCOUNTING_MESSAGE: start:/dev/pts/1_161.4 4.67.125:testUser: Verifying User Login with System Messages Using the CLI To configure the switch logging to capture system messages when a user attempts to log into a switch, follow these messages: Step 1 Step 2 Use the logging level command to change the level to 7 (debug) for auth, authPriv, and aaad. switch(config)# logging level aaa 7 This sets the switch to log debug information for these facilities. Use the logging logfile command to set the logging level to 7 (debug) for system messages saved to the named log file. switch(config)# logging logfile TestFile 7 This sets the switch to save system messages at the debug level or above in the TestFile log file. At this point, all future login attempts are tracked in the log file. 18-6 Cisco MDS 9000 Family Troubleshooting Guide, Release 3.x OL-9285-05