Cisco Cisco Content Security Management Appliance M1070 Mode D'Emploi

This appendix illustrates and describes a number of common ways to implement features of the Cisco 
Content Security Management appliance, and includes the following sections:

This section describes examples using a Security Management appliance and Web Security appliances.

All of these scenarios assume that you have enabled web reporting and web tracking on the Security 
Management appliance and on your Web Security appliances. For information on how to enable web 
tracking and web reporting, see 

 

This example demonstrates how a system administrator would investigate a particular user at a company. 

In this scenario, a manager has gotten a complaint that an employee is visiting inappropriate web sites 
at work. To investigate this, the system administrator now needs to track the details of their web activity.

Once the web activity is tracked, a web report is generated with information about the employee’s 
browsing history.

On the Security Management appliance, choose Web > Reporting > Users.

In the Users table, click on the User ID or Client IP address you want to investigate.

If you do not know the User ID or the Client IP address, type what you can remember of the User ID or 
Client IP address in text field, and click on Find User ID or Client IP address. The IP address does not 
need to be an exact match to return results. The Users table is populated with the User ID and Client IP 
addresses that you have specified. In this example, we are looking for information on Client IP address 
10.251.60.24.