Enabling Audit logging on Cisco Router

Enable logging on the Router:

Define logging level:
CiscoR1(config)#logging trap

Loggin to Cisco router via telnet or ssh(preferred)

Enter into Global configuration mode :
CiscoR1# conf t

Type archive to enter archive configuration mode:
CiscoR1(config)# archive

Enter into log config mode:
CiscoR1(config-archive)#log config

Enable archive logging:
CiscoR1(config-archive-log-cfg)#logging enable

Specifies the maximum number of entries retained in the configuration log:
CiscoR1(config-archive-log-cfg)#logging size < any number from 0-1000, default:100, recommended 500 >

Suppresses the display of password information in configuration log files:

Enables the sending of notifications of configuration changes to a remote syslog server.
CiscoR1(config-archive-log-cfg)#notify syslog

Exits to privileged EXEC mode.

Leave a Reply

Your email address will not be published. Required fields are marked *