Skip to content

Commit

Permalink
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Changes as per comment.
Browse files Browse the repository at this point in the history
vinit-chauhan committed Apr 15, 2022
1 parent 32615e2 commit ba58236
Showing 39 changed files with 816 additions and 511 deletions.
4 changes: 3 additions & 1 deletion packages/cisco_ise/_dev/build/docs/README.md
Original file line number Diff line number Diff line change
@@ -1,6 +1,6 @@
# Cisco ISE

The Cisco ISE integration collects and parses data from Cisco ISE using TCP/UDP.
The Cisco ISE ([More info](https://www.cisco.com/c/en/us/products/security/identity-services-engine/index.html)) integration collects and parses data from Cisco ISE using TCP/UDP.

## Compatibility

@@ -25,6 +25,8 @@ This module has been tested against `Cisco ISE server version 3.1.0.518`.

## Logs

Reference link for Cisco ISE Syslog: [Here](https://www.cisco.com/c/en/us/td/docs/security/ise/syslog/Cisco_ISE_Syslogs/m_SyslogsList.html)

### log

This is the `log` dataset.
Original file line number Diff line number Diff line change
@@ -10,3 +10,4 @@
<179>Mar 3 10:40:58 cisco-ise-host CISE_AD_Connector 0000083076 1 0 2022-03-03 10:40:58.892 +00:00 0000083143 25046 ERROR AD-Connector: Joined domain is unavailable, AD-Domain=89.160.20.112, AD-Log-Id=1645524126/39,
<179>Mar 14 05:59:30 cisco-ise-host CISE_AD_Connector 0000000032 1 0 2022-03-14 05:59:30.442 +00:00 0000000122 25058 ERROR AD-Connector: ISE is not joined to an Active Directory Domain Controller, ConfigVersionId=10, AD-Domain=10.0.14.108,
<182>Mar 3 10:42:25 cisco-ise-host CISE_AD_Connector 0000083089 2 1 AD-Domain=host.local, AD-Domain-Controller=host.local, AD-Log-Id=1645676126/42, AD-Site=Default-First-Site-Name,
<182>Mar 3 10:42:25 +02:00 cisco-ise-host CISE_AD_Connector 0000083089 2 1 AD-Domain=host.local, AD-Domain-Controller=host.local, AD-Log-Id=1645676126/42, AD-Site=Default-First-Site-Name,

Large diffs are not rendered by default.

Large diffs are not rendered by default.

Large diffs are not rendered by default.

Large diffs are not rendered by default.

Original file line number Diff line number Diff line change
@@ -39,7 +39,6 @@
"number": 0,
"total": 1
},
"sequence_number": "0000083382",
"user": {
"type": "NON_GUEST"
}
@@ -55,6 +54,7 @@
],
"kind": "event",
"original": "\u003c182\u003eMar 3 11:20:37 cisco-ise-host CISE_Guest 0000083315 1 0 2022-03-03 11:20:37.938 +00:00 0000083382 86005 INFO Guest: Guest user has accepted the Use Policy, ConfigVersionId=1694, UserType=NON_GUEST, UserName=test123, IpAddress=89.160.20.112, AuthenticationIdentityStore=Internal Users, PortalName=Self-Registered Guest Portal (default), IdentityGroup=Any, PsnHostName=ise.host.local, GuestUserName=test123, ResponseTime=31,",
"sequence": 83382,
"timezone": "+00:00",
"type": [
"info"
@@ -72,6 +72,7 @@
}
}
},
"message": "2022-03-03 11:20:37.938 +00:00 0000083382 86005 INFO Guest: Guest user has accepted the Use Policy, ConfigVersionId=1694, UserType=NON_GUEST, UserName=test123, IpAddress=89.160.20.112, AuthenticationIdentityStore=Internal Users, PortalName=Self-Registered Guest Portal (default), IdentityGroup=Any, PsnHostName=ise.host.local, GuestUserName=test123, ResponseTime=31,",
"related": {
"hosts": [
"cisco-ise-host"
@@ -127,7 +128,6 @@
"number": 0,
"total": 1
},
"sequence_number": "0000083638",
"user": {
"type": "NON_GUEST"
}
@@ -143,6 +143,7 @@
],
"kind": "event",
"original": "\u003c182\u003eMar 3 12:01:09 cisco-ise-host CISE_Guest 0000083571 1 0 2022-03-03 12:01:09.743 +00:00 0000083638 86022 INFO Guest: Device Registration Web Authentication AUP Accepted, ConfigVersionId=1698, UserType=NON_GUEST, UserName=test1123, IpAddress=89.160.20.112, AuthenticationIdentityStore=Internal Users, PortalName=My Devices Portal (default), IdentityGroup=Any, PsnHostName=ise.host.local, ResponseTime=15,",
"sequence": 83638,
"timezone": "+00:00",
"type": [
"info"
@@ -160,6 +161,7 @@
}
}
},
"message": "2022-03-03 12:01:09.743 +00:00 0000083638 86022 INFO Guest: Device Registration Web Authentication AUP Accepted, ConfigVersionId=1698, UserType=NON_GUEST, UserName=test1123, IpAddress=89.160.20.112, AuthenticationIdentityStore=Internal Users, PortalName=My Devices Portal (default), IdentityGroup=Any, PsnHostName=ise.host.local, ResponseTime=15,",
"related": {
"hosts": [
"cisco-ise-host"
@@ -233,6 +235,7 @@
"priority": 182
}
},
"message": "AuthenticationIdentityStore=Internal Users, PortalName=My Devices Portal (default), IdentityGroup=Any, PsnHostName=cisco-ise-host.local, ResponseTime=41,",
"related": {
"hosts": [
"cisco-ise-host"
@@ -282,6 +285,7 @@
"priority": 182
}
},
"message": "PortalName=Hotspot Guest Portal (default),",
"related": {
"hosts": [
"cisco-ise-host"
@@ -334,6 +338,7 @@
"priority": 182
}
},
"message": "PortalName=Hotspot Guest Portal (default), FailureReason=86023 Device Registration Web Authentication AUP Declined,",
"related": {
"hosts": [
"cisco-ise-host"
Loading

0 comments on commit ba58236

Please sign in to comment.