Administrator Guide

Pre-requisites

To configure a secure connection from the switch to the syslog server:

1. On the switch, enable the SSH server

Dell(conf)#ip ssh server enable

2. On the syslog server, create a reverse SSH tunnel from the syslog server to the switch, using following syntax:

ssh -R <remote port>:<syslog server>:<syslog server listen port> user@remote_host -nNf

In the following example the syslog server IP address is 10.156.166.48 and the listening port is 5141. The switch IP address is

10.16.131.141 and the listening port is 5140

ssh -R 5140:10.156.166.48:5141 admin@10.16.131.141 -nNf

3. Configure logging to a local host. locahost is “127.0.0.1” or “::1”.

If you do not, the system displays an error when you attempt to enable role-based only AAA authorization.

Dell(conf)# logging localhost tcp port

Dell(conf)#logging 127.0.0.1 tcp 5140

Track Login Activity

Dell Networking OS enables you to track the login activity of users and view the successful and unsuccessful login events.

When you log in using the console or VTY line, the system displays the last successful login details of the current user and the number of

unsuccessful login attempts since your last successful login to the system, and whether the current user’s permissions have changed since

the last login. The system stores the number of unsuccessful login attempts that have occurred in the last 30 days by default. You can

Switch Management