Cisco Cisco Identity Services Engine 1.3 개발자 가이드

SSH 명령

WSA GUI 경로

기능

로그 파일

ssh admin@WSA

tail ise_service_log

System Administration > Log
Subscriptions > ise_service_log

ISE 서버와의 통신 성공 또
는 실패 같은 ISE 사용과 관
련된 메시지를 기록합니다.

ISE 로그

ssh admin@WSA

tail proxylogs

System Administration > Log
Subscriptions > proxylogs

웹 프록시와 관련된 오류를
기록합니다. 이는 모든 웹
프록시 관련 로그 중에서
가장 기본적인 기록입니다.
웹 프록시와 관련하여 더욱
구체적인 문제를 해결하려
면, 해당 웹 프록시 모듈에
대한 로그 서브스크립션을
생성합니다.

프록시 로그

액세스 로그 파일 - 예

트러블슈팅에 사용할 수 있는 액세스 로그 파일의 몇 가지 예는 아래와 같습니다.

예 1: SGT가 없는 ISE 캐시의 사용자에게 적용된 정책에 액세스합니다.

1424330486.386 320 10.19.75.75 TCP_MISS/200 68632 GET http://www.bing.com/ "user1" DIRECT/www.bing.com text/html
DEFAULT_CASE_12-DefaultGroup-DefaultGroup-NONE-NONE-NONE-DefaultGroup
<IW_srch,6.1,1,"-",-,-,-,1,"-",-,-,-,"-",1,-,"-","-",-,-,IW_srch,-,"-","-","Bing","Search
Engine","-","-",1715.80,0,-,"-","-",1,"-",-,-,"-","-"> - SSO_ISE

예 2: 일치하는 SGT가 있는 ISE 캐시의 사용자에게 적용된 정책에 액세스합니다.

1424331112.566 0 10.19.75.75 TCP_DENIED/403 0 GET http://www.bing.com/ "user1" NONE/- -
BLOCK_WEBCAT_12-BYODPolicy-DefaultGroup-NONE-NONE-NONE-NONE
<IW_srch,6.1,-,"-",-,-,-,-,"-",-,-,-,"-",-,-,"-","-",-,-,IW_srch,-,"-","-","Unknown","Unknown","-","-",0.00,0,-,"-","-",-,"-",-,-,"-","-">

- SSO_ISE

예 3: 게스트로 대체되는 정책에 액세스합니다.

1424330523.414 155 172.29.177.25 TCP_MISS/200 68647 GET http://www.bing.com/ "(Unauthenticated)172.29.177.25"

DIRECT/www.bing.com text/html DEFAULT_CASE_12-DefaultGroup-Default

Group-NONE-NONE-NONE-DefaultGroup
<IW_srch,6.1,1,"-",-,-,-,1,"-",-,-,-,"-",1,-,"-","-",-,-,IW_srch,-,"-","-","Bing","Search
Engine","-","-",3543.07,0,-,"-","-",1,"-",-,-,"-","-
"> - GUEST

예 4: 트랜잭션 차단으로 대체되는 정책에 액세스합니다.

1424331683.561 0 172.29.177.25 TCP_DENIED/403 0 GET http://www.bing.com/ - NONE/- -
OTHER-NONE-DefaultGroup-NONE-NONE-NONE-NONE
<-,-,-,"-",-,-,-,-,"-",-,-,-,"-",-,-,"-","-",-,-,-,-,"-","-","-","-","-","-",0.00,0,-,"-","-",-,"-",-,-,"-","-">

- NONE