Cisco ISR 4000 Family Routers Administrator Guidance
Page 52 of 66
Additional
Audit Record
Contents
ID: 147461 (syslogd) app_name: ssl
Process: syslogd
Any attempts at
unlocking of an
[local] interactive
session.
In the TOE this is represented by login
attempts that occur after the timeout of a
local administrative user.
001383: May 10 18:06:34.091: %SYS-6-
EXEC_EXPIRE_TIMER: (tty 0
(0.0.0.0)) exec-timeout timer expired for
user securityperson
001384: May 10 18:06:34.091: %SYS-6-
EXIT_CONFIG: User securityperson has
exited tty session 0(0.0.0.0)
The termination of
a remote session
by the session
locking
mechanism.
No additional
information.
Audit record generated when SSH
session is terminated because of idle
timeout:
May 29 2012 15:18:00 UTC: %SYS-6-
TTY_EXPIRE_TIMER: (exec timer
expired, tty 0 (0.0.0.0)), user admin
The termination of
an interactive
session.
No additional
information.
Audit record generate when admin logs
out of CONSOLE.
May 17 2011 16:29:09: %PARSER-5-
CFGLOG_LOGGEDCMD:
User:test_admin logged command:exit
Audit record generated when the admin
logs out of SSH:
Jun 18 11:17:36.653: SSH0: Session
terminated normally
Initiation of the
trusted channel.
Termination of the
trusted channel.
Failure of the
trusted channel
functions.
Identification
of the initiator
and target of
failed trusted
channels
establishment
attempt.
AUDIT: See logs provided by
FCS_IPSEC_EXT.1.
To Next Page
Loading...
Need help?
General
