Cisco Cisco Web Security Appliance S360 Guia Do Utilizador
24-41
Cisco IronPort AsyncOS 7.0 for Web User Guide
OL-23079-01
Chapter 24 Logging
Custom Formatting in Access Logs and W3C Logs
cs-auth-mechanism
%m
The authentication mechanism used on the
transaction. Possible values are:
transaction. Possible values are:
•
BASIC. The user name was
authenticated using the Basic
authentication scheme.
authenticated using the Basic
authentication scheme.
•
NTLMSSP. The user name was
authenticated using the NTLMSSP
authentication scheme.
authenticated using the NTLMSSP
authentication scheme.
•
SSO_EDIR. The user name was
obtained by matching the client IP
address to an authenticated user name in
Novell eDirectory.
obtained by matching the client IP
address to an authenticated user name in
Novell eDirectory.
•
SSO_ASA. The user is a remote user and
the user name was obtained from a Cisco
ASA using the Secure Mobility Solution.
the user name was obtained from a Cisco
ASA using the Secure Mobility Solution.
•
FORM_AUTH. The user entered
authentication credentials in a form in
the web browser when accessing a SaaS
application.
authentication credentials in a form in
the web browser when accessing a SaaS
application.
•
GUEST. The user failed authentication
and instead was granted guest access.
and instead was granted guest access.
cs-bytes
%q
Request size (headers + body)
cs-method
%y
Method
cs-mime-type
%c
Response body MIME type. This field is
written with double-quotes in the access logs.
written with double-quotes in the access logs.
N/A
%r
Request first line - request method, URI,
HTTP version
HTTP version
cs-uri
%U
Request URI
cs-url
%Y
The entire URL
cs-username
%A
Authenticated user name. This field is written
with double-quotes in the access logs.
with double-quotes in the access logs.
Table 24-11
Log Fields in W3C Logs and Format Specifiers in Access Logs
W3C Log Field
Format Specifier in
Access Logs
Access Logs
Description