ssh server acl-deny-log enable
Use ssh server acl-deny-log enable to enable logging for SSH login attempts that are denied by the SSH login control ACL.
Use undo ssh server acl-deny-log enable to disable logging for SSH login attempts that are denied by the SSH login control ACL.
Syntax
ssh server acl-deny-log enable
undo ssh server acl-deny-log enable
Default
Logging is disabled for SSH login attempts that are denied by the SSH login control ACL.
Views
System view
Predefined user roles
network-admin
mdc-admin
Usage guidelines
Only SSH clients permitted by the SSH login control ACL can access the SSH server. The logging feature generates log messages for SSH login attempts that are denied by the SSH login control ACL, and sends the messages to the information center.
For information about log message output, see the information center in Network Management and Monitoring Configuration Guide. For information about configuring an SSH login control ACL, see the ssh server acl or ssh server ipv6 acl command.
Examples
# Enable logging for SSH login attempts that are denied by the SSH login control ACL.
<Sysname> system-view [Sysname] ssh server acl-deny-log enable
Related commands
ssh server acl
ssh server ipv6 acl