Radius authentification mandatory configuration

Hello my primary point is to configure radius authentication and do the logging (with radius accounting ?) ?

1) Do the after basic AAA configuration wich includes: aaa new model, defined radius server and etc: do it's mandatory to enable authorization ?

aaa authorization exec default group radius local ?

without this its impossible to get to the privileged mode ?

2) If i want to do the logging for every command the user executes do i need to use aaa accounting ?

could you provide (example) how the aaa accounting line should follow if i want to see what every user has typed ?

Thanks

Sign In or Register to comment.