Cisco Cisco Firepower Management Center 2000

To configure the agent, you can take any of the actions described in 

FireSIGHT

You can view up to 250 status messages logged by the agent in the 

 tab. The agent logs status 

messages to the local event log for the following events when they occur:

the agent successfully polls data from an Active Directory server 

the agent fails to connect to an Active Directory server

the agent fails to retrieve data from the Active Directory server

the agent successfully connects to a Cisco appliance

the agent fails to connect to a Cisco appliance 

The agent logs each status message with a timestamp and the severity level. The following table 
describes the possible severity levels by increasing severity.

The agent can log status messages to Windows application logs, in addition to the local event log. The 
agent can also export the local event log contents to a comma-separated value file.

You can configure whether status messages are stored, how long they are stored, and clear the event log 
of all status messages. You can also configure maintenance options, such as viewing debug status 
messages and accessing the 

 tab.

Debug status messages are stored for seven days before being removed from the event log. Configuring 
how long status messages are stored and clearing the event log does not affect debug status message 
storage. 

Any

Select the 

tab.

If directed to do so by Support, select 

to view debug status messages in the 

event log and enable the 

 tab.

Debug messages display in the 

 tab. The 

 tab is available.

debug

grey

The event is logged for debugging purposes. 

These messages are not displayed by default.

information

green

The event is consistent with normal agent operation.

warning

yellow The event is unexpected, but does not necessarily disrupt normal agent 

operation.

error

red

The event is unexpected, and normal agent operation is disrupted.