Specifications
© 2006 Cisco Systems, Inc.
All rights reserved.
System Admin 4-33
NAM / Traffic Analyzer v3.5 Tutorial
© 2006 Cisco Systems, Inc. All rights reserved.
Sys tem Admin 4-33
NAM / Traffic Analyzer v3.5 Tutorial
Diagnostics
Check Audit Trail
Diagnostics
Check Audit Trail
View activities that
have occurred
View activities that
have occurred
Check Audit Trail
You can view a listing of recent critical activities that have been recorded in an internal syslog log file. Syslog
messages can also be sent to an external log. The following user activities are logged in the audit trail:
• All CLI commands
• User logins (including failed attempts)
• Unauthorized access attempts
• SPAN changes
• NDE data source changes
• Enabling and disabling data collections
• Creating and deleting reports
• Starting and stopping captures
• Adding and deleting users
This information can be viewed by going to the Admin > Diagnostics > Audit Trail screen in the NAM
Traffic Analyzer software.
As illustrated above, each activity includes a date, the user id, an IP address (in case of a remote access),
and a note describing the activity. The internal log files are rotated after reaching certain size limit.