Cisco Systems 5, NAM manual Diagnostics, System Alerts, Audit Trail, Tech Support

Chapter 5 User and System Administration

Diagnostics

Diagnostics

The Diagnostics option of the Administration menu provides tools to aid in troubleshooting. You can use these tools when you have a problem that might require assistance from the Cisco Technical Assistance Center (TAC). There are options for:

•System Alerts, page 5-14

•Audit Trail, page 5-14

•Tech Support, page 5-15

System Alerts

You can view any failures or problems that the NAM Traffic Analyzer has detected during normal operations. To view System Alerts, choose Administration > Diagnostics > System Alerts.

Each alert includes a date, the time the alert occurred, and a message describing the alert. The NAM displays up to one thousand (1,000) of the most-recent alerts. If more than 1,000 alerts have occurred, you need to use the NAM CLI command show tech support to see all of the alerts.

If you notice an alert condition and troubleshoot and attempt to solve the condition causing the alert, you might want to click Clear to remove the list of alerts to see if additional alerts occur.

Audit Trail

The Audit Trail option displays a listing of recent critical activities that have been recorded in an internal syslog log file. Syslog messages can also be sent to an external log.

The following user activities are logged in the audit trail:

•All CLI commands

•User logins (including failed attempts)

•Unauthorized access attempts

•SPAN changes

•NDE data source changes

•Enabling and disabling data collections

•Starting and stopping captures

•Adding and deleting users

Each log entry will contain the following: