11-03-2009 02:30 PM - edited 03-11-2019 09:35 AM
Hello,
As per new security Policy
(1) any unsuccessful or successful attempts to Core Backbone switches/routers should be logged and email alert goes to Security Team
(2) Any config changes including resetting of password should be logged and Email Alert goes to security Team
(3) Bandwidth Utilization more than 75% should send alert via email to IT Team
(4) All authentication should be with Active Directory.
I need to understand which can be done with ACS
11-04-2009 07:33 AM
BTW, 1) and 2) are done with ACS too.
So, only 3) is not doable with ACS.
PK
11-04-2009 07:33 AM
1) You can do using aaa accounting on the switch and collect the logs.
2) You can do using aaa accounting
3) Not supported, interface monitoring tools with snmp will do that for it
4) ACS integration with AD and aaa on the cisco devices will achieve that.
I hope it helps.
PK
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: