Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

ACS 4.2 Question about the Logs

We use ACS quite abit in form of mapping back to AD for the user database, which can be some what cryptic in the ACS logs of trying to figure out who a username really is. There is a column for 'Real Name', has anyone figure out how to incorporate AD's userfield of Real Name to show up in the ACS log?

1 REPLY
Silver

Re: ACS 4.2 Question about the Logs

ACS doesnt pull any data back from AD such as real name etc.

It does (or used to) populate the "External DB Info" field with the name of the authenticating domain.

If you need that level of audit it probably wouldnt be too hard to script an export of the user information from AD, format appropriately for RDBMS Sync and push it into ACS.

RDBMS Sync action code 1 can set the User Define Fields, eg

Action,UN,VN,V1,V2,AI

1,fred,USER_DEFINED_FIELD_0,Fred Jones,TYPE_STRING,APP_CSAUTH

Full info on RDBMS Sync at http://www.cisco.com/en/US/docs/net_mgmt/cisco_secure_access_control_server_for_windows/4.1/user/A_RDBMS.html

Assuming auditing your ACS logs is important to you... take a look at http://www.extraxi.com. We have tools for log harvesting and reporting!

126
Views
0
Helpful
1
Replies