Cisco Cisco Web Security Appliance S380 Guida Utente

cs-auth-mechanism

%m

The authentication mechanism used on the 
transaction. Possible values are:

BASIC. The user name was 
authenticated using the Basic 
authentication scheme.

NTLMSSP. The user name was 
authenticated using the NTLMSSP 
authentication scheme.

SSO_TUI. The user name was obtained 
by matching the client IP address to an 
authenticated user name using 
transparent user identification.

SSO_ASA. The user is a remote user and 
the user name was obtained from a Cisco 
ASA using the Secure Mobility.

FORM_AUTH. The user entered 
authentication credentials in a form in 
the web browser when accessing a SaaS 
application.

GUEST. The user failed authentication 
and instead was granted guest access.

cs-bytes

%q

Request size (headers + body)

cs-method

%y

Method

cs-mime-type

%c

Response body MIME type. This field is 
written with double-quotes in the access logs.

x-req-first-line

%r

Request first line - request method, URI.

cs-uri

%U

Request URI

cs-url

%Y

The entire URL

cs-username

%A

Authenticated user name. This field is written 
with double-quotes in the access logs.

cs-version

%P

Protocol

date

%v

Date in YYYY-MM-DD

DCF

%j

Do not cache response code; DCF flags

s-computerName

%N

Server name or destination hostname. This 
field is written with double-quotes in the 
access logs.

s-hierarchy

%H

Hierarchy retrieval

s-hostname

%d

Data source or server IP address

s-ip

%k

Data source IP address (server IP address)

s-port

%p

Destination port number