Cisco Systems Servers Manuale Utente

For more information about configuring the content of CSV logs, see the 

. For more information about 

configuring the content of an ODBC log, see the 

Access Device—The name of the AAA client sending the logging data to 
Cisco Secure ACS.

Network Device Group—The network device group to which the access 
device (AAA client) belongs.

Filter Information—The result of network access restrictions (NARs) 
applied to the user, if any. The message in this field indicates whether all 
applicable NARs permitted the user access, all applicable NARs denied the 
user access, or more specific information about which NAR denied the user 
access. If no NARs apply to the user, this logging attribute notes that no 
NARs were applied.

The Filter Information attribute is available for Passed Authentication and 
Failed Attempts logs.

Device Command Set—The name of the device command set, if any, that 
was used to satisfy a command authorization request. 

The Device Command Set attribute is available for Passed Authentication and 
Failed Attempts logs.

Whenever you configure Cisco Secure ACS to record accounting data for user 
sessions, Cisco Secure ACS records start and stop packets. If you want, you can 
configure Cisco Secure ACS to record update packets, too. In addition to 
providing interim accounting information during a user session, update packets 
drive password expiry messages via CiscoSecure Authentication Agent. In this 
use, the update packets are referred to as watchdog packets.

To record update packets in Cisco Secure ACS accounting logs, you must 
configure your AAA clients to send the update packets. For more information 
about configuring your AAA client to send update packets, refer to the 
documentation for your AAA clients.