Update packets in accounting logs – Cisco 3.3 User Manual
Page 437
11-5
User Guide for Cisco Secure ACS for Windows Server
78-16592-01
Chapter 11 Logs and Reports
Update Packets in Accounting Logs
Posture validation requests resulting in an system posture token (SPT) of Healthy
are logged in the Passed Authentications log. Posture validation requests resulting
in an SPT of anything other than Healthy are logged in the Failed Attempts log.
For more information about posture tokens, see
.
Update Packets in Accounting Logs
Whenever you configure Cisco Secure ACS to record accounting data for user
sessions, Cisco Secure ACS records start and stop packets. If you want, you can
configure Cisco Secure ACS to record update packets, too. In addition to
providing interim accounting information during a user session, update packets
drive password expiry messages via CiscoSecure Authentication Agent. In this
use, the update packets are referred to as watchdog packets.
Note
To record update packets in Cisco Secure ACS accounting logs, you must
configure your AAA clients to send the update packets. For more information
about configuring your AAA client to send update packets, refer to the
documentation for your AAA clients.
•
Logging Update Packets Locally—To log update packets according to local
Cisco Secure ACS logging configuration, enable the Log Update/Watchdog
Packets from this Access Server option for each AAA client in Network
Configuration.
For more information on setting this option for a AAA client, see
.
•
Logging Update Packets Remotely—To log update packets on a remote
logging server, enable the Log Update/Watchdog Packets from this remote
AAA Server option for the remote server AAA Server table entry on the local
Cisco Secure ACS.
For more information on setting this option for a AAA server, see