Cisco Systems Servers Manuale Utente
9-31
Cisco Secure ACS 3.0 for Windows 2000/NT Servers User Guide
78-13751-01, Version 3.0
Chapter 9 Working with Logging and Reports
Remote Logging
Remote Logging Options
Cisco Secure ACS provides the remote logging options listed below. These
options appear on the Remote Logging page, available from the Logging page in
the System Configuration section.
options appear on the Remote Logging page, available from the Logging page in
the System Configuration section.
•
Do not Log Remotely—Cisco Secure ACS writes accounting data of locally
authenticated sessions only to the local logs that are enabled.
authenticated sessions only to the local logs that are enabled.
•
Log To All Selected Hosts—Cisco Secure ACS sends accounting data for
locally authenticated sessions to all the AAA servers in the Log To list.
locally authenticated sessions to all the AAA servers in the Log To list.
•
Log to Subsequent Selected Hosts on Failure—Cisco Secure ACS sends
accounting data for locally authenticated sessions to the first
Cisco Secure ACS server in the Log To list that is operational. This behavior
enables you to configure one or more backup central logging servers so that
no accounting data is lost if the first central logging server fails or is
otherwise unavailable to the local Cisco Secure ACS server.
accounting data for locally authenticated sessions to the first
Cisco Secure ACS server in the Log To list that is operational. This behavior
enables you to configure one or more backup central logging servers so that
no accounting data is lost if the first central logging server fails or is
otherwise unavailable to the local Cisco Secure ACS server.
•
Log Servers—This list represents the AAA servers configured in the AAA
Servers table in Network Configuration to which the Cisco Secure ACS
server does not send accounting data for locally authenticated sessions.
Servers table in Network Configuration to which the Cisco Secure ACS
server does not send accounting data for locally authenticated sessions.
•
Log To—This list represents the AAA servers configured in the AAA
Servers table in Network Configuration to which the Cisco Secure ACS
server does send accounting data for locally authenticated sessions.
Servers table in Network Configuration to which the Cisco Secure ACS
server does send accounting data for locally authenticated sessions.
Configuring a Central Logging Server
A central logging server is a Cisco Secure ACS server that is to receive
accounting data from Cisco Secure ACS servers configured to do remote logging.
Configuring a central logging server consists entirely of making sure that all
Cisco Secure ACS servers that are to send their accounting data are defined in the
central logging server’s AAA Servers table.
accounting data from Cisco Secure ACS servers configured to do remote logging.
Configuring a central logging server consists entirely of making sure that all
Cisco Secure ACS servers that are to send their accounting data are defined in the
central logging server’s AAA Servers table.
For each Cisco Secure ACS server that the central logging server is to log
watchdog and update packets, be sure that the Log Update/Watchdog Packets
from this remote AAA Server check box is selected in that server’s entry in the
central logging server’s AAA Servers table.
watchdog and update packets, be sure that the Log Update/Watchdog Packets
from this remote AAA Server check box is selected in that server’s entry in the
central logging server’s AAA Servers table.
For more information about the AAA Servers table, see the
.