This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
RUCKUS Self Help |   ASK the Pack
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Logging user who runs commands for SZ-CLI user [ICX[

djninjanz
New Contributor

‎02-22-2023 12:06 AM

Hi Ruckus guys,

 

vSZ: v6.1.0.0.935

ICX: SPS08095h

When trying to look at logging when using the GUI SZ-CLI option on the SmartZone. I noticed I can't see who has run what command from the GUI. Is this possible?

 

I have enabled logging of cli commands but it doesn't show the user 😞

Feb 22 08:03:18:I:CLI CMD: "show logging" by SZ-CLI user from telnet client ip
Feb 22 08:03:08:I:CLI CMD: "show logging" by SZ-CLI user from telnet client ip
Feb 22 07:38:52:I:CLI CMD: "show logging" by SZ-CLI user from telnet client ip
Feb 22 07:38:35:I:CLI CMD: "show running-config" by SZ-CLI user from telnet client ip
Feb 22 07:38:32:I:CLI CMD: "show running-config" by SZ-CLI user from telnet client ip
Feb 22 07:38:27:I:CLI CMD: "show logging" by SZ-CLI user from telnet client ip
Feb 22 07:38:19:I:CLI CMD: "show logging" by SZ-CLI user from telnet client ip
Feb 22 07:38:18:I:CLI CMD: "end" by SZ-CLI user from telnet client ip

I have also downloaded the support bundles and searched but haven't seen the user access logs for the user or access to the switch initated by any users.

How can I track what the GUI users are doing on the switches if they access it via the web gui CLI option? Just their public IP address?

0 Kudos
7 REPLIES 7

aalvarez6
RUCKUS Team Member

‎02-24-2023 09:02 AM

Hello, 

You can run this command in the switch to check the users that made changes:
show cli-command-history
Here is the information that you will get:
Slno / Session / User-name / Ip-address / Executed-time/ Command

0 Kudos

djninjanz
New Contributor
In response to aalvarez6

‎02-26-2023 10:30 AM

Thanks Aalvarez6

My problem is the SmartZone GUI when using this does not generate who is using it just un-authenticated user. So we have no record of who did what on the switches from SmartZone GUI like so. IP address and un-authenticated user 

0 Kudos

sanjay_kumar
RUCKUS Team Member
In response to djninjanz

‎02-26-2023 11:00 PM

Hi @djninjanz 
Can you check the "admin activities" on the SZ GUI and see if you can find any details there?

0 Kudos

djninjanz
New Contributor
In response to sanjay_kumar

‎02-26-2023 11:09 PM

Thanks @sanjay_kumar  there is some information there but I don't trust it as the truth for all events.

We have at least 20 support staff working on the vSZ any one day and external 3rd parties who have access. I didn't see any mention of the support staff so i'm not sure what triggers these logs to show up?

 

0 Kudos
Copyright © 2024 Khoros, LLC