Home > Cisco > Interface > Cisco Ise 13 User Guide

Cisco Ise 13 User Guide

Add to Favourites
    Download as PDF

    Here you can view all the pages of manual Cisco Ise 13 User Guide. The Cisco manuals for Interface are available online for free. You can easily download all the documents as PDF.

    Overview View all the pages Comments

    Page 251

    Page 251 DescriptionField Priorityvalueofthemessage;a combinationofthefacilityvalueand theseverityvalueofthemessage. Priorityvalue=(facilityvalue*8)+ severityvalue.SeeSetSeverityLevels forMessageCodesforsecuritylevels. Thefacilitycodevalidoptionsare: •LOCAL0(Code=16) •LOCAL1(Code=17) •LOCAL2(Code=18) •LOCAL3(Code=19) •LOCAL4(Code=20) •LOCAL5(Code=21) •LOCAL6(Code=22;default) •LOCAL7(Code=23) pri_num Cisco Identity Services Engine Administrator Guide, Release 1.3 205 Cisco ISE System Logs 
    DescriptionField
Priorityvalueofthemessage;a
combinationofthefacilityvalueand
theseverityvalueofthemessage.
Priorityvalue=(facilityvalue*8)+
severityvalue.SeeSetSeverityLevels
forMessageCodesforsecuritylevels.
Thefacilitycodevalidoptionsare:
•LOCAL0(Code=16)
•LOCAL1(Code=17)
•LOCAL2(Code=18)
•LOCAL3(Code=19)
•LOCAL4(Code=20)
•LOCAL5(Code=21)
•LOCAL6(Code=22;default)
•LOCAL7(Code=23)
pri_num
Cisco Identity Services Engine Administrator Guide, Release 1.3    
205
Cisco ISE System Logs

    Page 252

    Page 252 DescriptionField Dateofthemessagegeneration, accordingtothelocalclockofthe originatingCiscoISEserver,inthe formatYYYYMmmDDhh:mm:ss. Possiblevaluesare: •YYYY=Numericrepresentation oftheyear. •Mmm=Representationofthe month—Jan,Feb,Mar,Apr, May,Jun,Jul,Aug,Sep,Oct, Nov,Dec. •DD=Numericrepresentationof thedayofthemonth.For single-digitdays(1to9),aspace precedesthenumber. •hh=Thehouroftheday—00to 23. •mm=Theminuteofthe hour—00to59. •ss=Thesecondofthe minute—00to59. Somedevicesendmessagesthat... 
    DescriptionField
Dateofthemessagegeneration,
accordingtothelocalclockofthe
originatingCiscoISEserver,inthe
formatYYYYMmmDDhh:mm:ss.
Possiblevaluesare:
•YYYY=Numericrepresentation
oftheyear.
•Mmm=Representationofthe
month—Jan,Feb,Mar,Apr,
May,Jun,Jul,Aug,Sep,Oct,
Nov,Dec.
•DD=Numericrepresentationof
thedayofthemonth.For
single-digitdays(1to9),aspace
precedesthenumber.
•hh=Thehouroftheday—00to
23.
•mm=Theminuteofthe
hour—00to59.
•ss=Thesecondofthe
minute—00to59.
Somedevicesendmessagesthat...

    Page 253

    Page 253 DescriptionField UniquemessageID;1to4294967295. ThemessageIDincreasesby1with eachnewmessage.MessageIDs restartat1eachtimetheapplication isrestarted. msg_id Totalnumberofsegmentsinalog message.Longmessagesaredivided intomorethanonesegment. Thetotal_segdependsonthe MaximumLengthsettingin theremoteloggingtargets page.SeeRemoteLogging TargetSettings. Note total_seg Segmentsequencenumberwithina message.Usethisnumbertodetermine whatsegmentofthemessageyouare viewing. seg_num... 
    DescriptionField
UniquemessageID;1to4294967295.
ThemessageIDincreasesby1with
eachnewmessage.MessageIDs
restartat1eachtimetheapplication
isrestarted.
msg_id
Totalnumberofsegmentsinalog
message.Longmessagesaredivided
intomorethanonesegment.
Thetotal_segdependsonthe
MaximumLengthsettingin
theremoteloggingtargets
page.SeeRemoteLogging
TargetSettings.
Note
total_seg
Segmentsequencenumberwithina
message.Usethisnumbertodetermine
whatsegmentofthemessageyouare
viewing.
seg_num...

    Page 254

    Page 254 •Accounting •ExternalMDM •PassiveID •PostureandClientProvisioningAudit •PostureandClientProvisioningDiagnostics •Profiler Logsofthefollowingcategoriesaresentbyallnodesinthedeploymenttotheloggingtargets: •AdministrativeandOperationalAudit •SystemDiagnostics •SystemStatistics Cisco ISE Message Codes Aloggingcategoryisabundleofmessagecodesthatdescribeafunction,aflow,orausecase.InCiscoISE, eachlogisassociatedwithamessagecodethatisbundledwiththeloggingcategoriesaccordingtothelog... 
    •Accounting
•ExternalMDM
•PassiveID
•PostureandClientProvisioningAudit
•PostureandClientProvisioningDiagnostics
•Profiler
Logsofthefollowingcategoriesaresentbyallnodesinthedeploymenttotheloggingtargets:
•AdministrativeandOperationalAudit
•SystemDiagnostics
•SystemStatistics
Cisco ISE Message Codes
Aloggingcategoryisabundleofmessagecodesthatdescribeafunction,aflow,orausecase.InCiscoISE,
eachlogisassociatedwithamessagecodethatisbundledwiththeloggingcategoriesaccordingtothelog...

    Page 255

    Page 255 Cisco ISE Message Catalogs YoucanusetheMessageCatalogpagetoviewallpossiblelogmessagesandthedescriptions.Choose Administration>System>Logging>MessageCatalog. TheLogMessageCatalogpageappears,fromwhichyoucanviewallpossiblelogmessagesthatcanappear inyourlogfiles.Thedataavailableinthispagearefordisplayonly. Debug Logs Debuglogscapturebootstrap,applicationconfiguration,runtime,deployment,monitoring,reporting,and publickeyinfrastructure(PKI)information.Criticalandwarningalarmsforthepast30daysandinfoalarms... 
    Cisco ISE Message Catalogs
YoucanusetheMessageCatalogpagetoviewallpossiblelogmessagesandthedescriptions.Choose
Administration>System>Logging>MessageCatalog.
TheLogMessageCatalogpageappears,fromwhichyoucanviewallpossiblelogmessagesthatcanappear
inyourlogfiles.Thedataavailableinthispagearefordisplayonly.
Debug Logs
Debuglogscapturebootstrap,applicationconfiguration,runtime,deployment,monitoring,reporting,and
publickeyinfrastructure(PKI)information.Criticalandwarningalarmsforthepast30daysandinfoalarms...

    Page 256

    Page 256 TheDebugLogConfigurationpagedisplaysalistofcomponentsbasedontheservicesthatarerunningin theselectednodeandthecurrentloglevelthatissetfortheindividualcomponents. Step 3Selectthecomponentforwhichyouwanttoconfigurethelogseveritylevel,andthenclickEdit.Choosethe desiredlogseveritylevelfromtheLogLeveldrop-downlist,andclickSave. Changingthelogseverityleveloftheruntime-AAAcomponentchangestheloglevelofits subcomponentprrt-JNIaswell.Achangeinsubcomponentlogleveldoesnotaffectitsparent component. Note Endpoint Debug... 
    TheDebugLogConfigurationpagedisplaysalistofcomponentsbasedontheservicesthatarerunningin
theselectednodeandthecurrentloglevelthatissetfortheindividualcomponents.
Step 3Selectthecomponentforwhichyouwanttoconfigurethelogseveritylevel,andthenclickEdit.Choosethe
desiredlogseveritylevelfromtheLogLeveldrop-downlist,andclickSave.
Changingthelogseverityleveloftheruntime-AAAcomponentchangestheloglevelofits
subcomponentprrt-JNIaswell.Achangeinsubcomponentlogleveldoesnotaffectitsparent
component.
Note
Endpoint Debug...

    Page 257

    Page 257 Collection Filters YoucanconfiguretheCollectionFilterstosuppressthesyslogmessagesbeingsenttothemonitoringand externalservers.ThesuppressioncanbeperformedatthePolicyServicesNodelevelsbasedondifferent attributetypes.Youcandefinemultiplefilterswithspecificattributetypeandacorrespondingvalue. Beforesendingthesyslogmessagestomonitoringnodeorexternalserver,CiscoISEcomparesthesevalues withfieldsinsyslogmessagestobesent.Ifanymatchisfound,thenthecorrespondingmessageisnotsent. Configure Collection Filters... 
    Collection Filters
YoucanconfiguretheCollectionFilterstosuppressthesyslogmessagesbeingsenttothemonitoringand
externalservers.ThesuppressioncanbeperformedatthePolicyServicesNodelevelsbasedondifferent
attributetypes.Youcandefinemultiplefilterswithspecificattributetypeandacorrespondingvalue.
Beforesendingthesyslogmessagestomonitoringnodeorexternalserver,CiscoISEcomparesthesevalues
withfieldsinsyslogmessagestobesent.Ifanymatchisfound,thenthecorrespondingmessageisnotsent.
Configure Collection Filters...

    Page 258

    Page 258 CiscoISEcapturestheseconfigurationchangesintheChangeConfigurationAuditReport.Thisreportprovides informationonwhoconfiguredaneventsuppressionorabypasssuppressionandthedurationoftimefor whichtheeventwassuppressedorthesuppressionbypassed. Cisco Identity Services Engine Administrator Guide, Release 1.3 212 Collection Filters 
    CiscoISEcapturestheseconfigurationchangesintheChangeConfigurationAuditReport.Thisreportprovides
informationonwhoconfiguredaneventsuppressionorabypasssuppressionandthedurationoftimefor
whichtheeventwassuppressedorthesuppressionbypassed.
   Cisco Identity Services Engine Administrator Guide, Release 1.3
212
Collection Filters

    Page 259

    Page 259 CHAPTER 12 Backup and Restore Operations •BackupDataType,page213 •BackupandRestoreRepositories,page213 •On-DemandandScheduledBackups,page215 •CiscoISERestoreOperation,page220 •ExportAuthenticationandAuthorizationPolicyConfiguration,page226 •SynchronizePrimaryandSecondaryNodesinaDistributedEnvironment,page226 •RecoveryofLostNodesinStandaloneandDistributedDeployments,page226 Backup Data Type CiscoISEallowsyoutobackupdatafromthePrimaryPANandfromtheMonitoringnode.Backupcanbe donefromtheCLIoruserinterface.... 
    CHAPTER 12
Backup and Restore Operations
•BackupDataType,page213
•BackupandRestoreRepositories,page213
•On-DemandandScheduledBackups,page215
•CiscoISERestoreOperation,page220
•ExportAuthenticationandAuthorizationPolicyConfiguration,page226
•SynchronizePrimaryandSecondaryNodesinaDistributedEnvironment,page226
•RecoveryofLostNodesinStandaloneandDistributedDeployments,page226
Backup Data Type
CiscoISEallowsyoutobackupdatafromthePrimaryPANandfromtheMonitoringnode.Backupcanbe
donefromtheCLIoruserinterface....

    Page 260

    Page 260 •SFTP •NFS •CD-ROM •HTTP •HTTPS Repositoriesarelocaltoeachdevice.Note Werecommendthatyouhavearepositorysizeof10GBforsmalldeployments(100endpointsorless), 100GBformediumdeployments,and200GBforlargedeployments. Note Create Repositories YoucanusetheCLIandGUItocreaterepositories.WerecommendthatyouusetheGUIduetothefollowing reasons: •RepositoriesthatarecreatedthroughtheCLIaresavedlocallyanddonotgetreplicatedtotheother deploymentnodes.TheserepositoriesdonotgetlistedintheGUI’srepositorypage.... 
    •SFTP
•NFS
•CD-ROM
•HTTP
•HTTPS
Repositoriesarelocaltoeachdevice.Note
Werecommendthatyouhavearepositorysizeof10GBforsmalldeployments(100endpointsorless),
100GBformediumdeployments,and200GBforlargedeployments.
Note
Create Repositories
YoucanusetheCLIandGUItocreaterepositories.WerecommendthatyouusetheGUIduetothefollowing
reasons:
•RepositoriesthatarecreatedthroughtheCLIaresavedlocallyanddonotgetreplicatedtotheother
deploymentnodes.TheserepositoriesdonotgetlistedintheGUI’srepositorypage....
    Start reading Cisco Ise 13 User Guide

    Related Manuals for Cisco Ise 13 User Guide

    All Cisco manuals