https://community.cisco.com/t5/network-access-control/acs-and-asa-logging/m-p/2215681#M136714 <HTML><HEAD></HEAD><BODY><P>k.. let me try this....</P></BODY></HTML> Mon, 13 May 2013 12:29:30 GMT lzakariya 2013-05-13T12:29:30Z https://community.cisco.com/t5/network-access-control/acs-and-asa-logging/m-p/2215676#M136689 <P>Is it possible to use Cisco ACS server for reporting all the logs of Cisco ASA firewall?</P> Mon, 11 Mar 2019 03:25:33 GMT https://community.cisco.com/t5/network-access-control/acs-and-asa-logging/m-p/2215676#M136689 lzakariya 2019-03-11T03:25:33Z https://community.cisco.com/t5/network-access-control/acs-and-asa-logging/m-p/2215677#M136694 <HTML><HEAD></HEAD><BODY><P>ACS can log all the authentication, authorization and accounting. Could you please explain what kind of attempts you want ACS to log from ASA.</P><P></P><P>Are you taking about administrative access like SSH/TELNET or you wanted to log authentication and accounting hits of vpn users.</P><P></P><P>DO let me know version of ACS you are using.</P><P></P><P></P><P>Jatin Katyal <BR /> <BR /> <BR />- Do rate helpful posts -</P></BODY></HTML> Mon, 13 May 2013 10:06:53 GMT https://community.cisco.com/t5/network-access-control/acs-and-asa-logging/m-p/2215677#M136694 Jatin Katyal 2013-05-13T10:06:53Z https://community.cisco.com/t5/network-access-control/acs-and-asa-logging/m-p/2215678#M136699 <HTML><HEAD></HEAD><BODY><P>I want to report all the ASA security logs using ACS v4.2. ie., whatever traffic flowing throught ASA</P></BODY></HTML> Mon, 13 May 2013 10:09:32 GMT https://community.cisco.com/t5/network-access-control/acs-and-asa-logging/m-p/2215678#M136699 lzakariya 2013-05-13T10:09:32Z https://community.cisco.com/t5/network-access-control/acs-and-asa-logging/m-p/2215679#M136703 <HTML><HEAD></HEAD><BODY><P>Whatever ACS authenticate/authorise/account for users terminating on ASA via administrative or network session can be logged. You need to look inside reports and activity and than click on the specific reports. You can see the passed and failed authentication by clicking on passed and failed csv reports. Command authorization can be viewed under tacacs administration. Accounting for network session can be checked on radius accounting report. </P><P></P><P><A class="jive-link-external-small" href="https://www.cisco.com/en/US/docs/net_mgmt/cisco_secure_access_control_server_for_windows/4.2/user/guide/LgsRpts.html">https://www.cisco.com/en/US/docs/net_mgmt/cisco_secure_access_control_server_for_windows/4.2/user/guide/LgsRpts.html</A></P><P></P><P>Let me know if you have any questions.</P><P></P><P>Jatin Katyal <BR /> <BR /> <BR />- Do rate helpful posts -</P></BODY></HTML> Mon, 13 May 2013 10:31:06 GMT https://community.cisco.com/t5/network-access-control/acs-and-asa-logging/m-p/2215679#M136703 Jatin Katyal 2013-05-13T10:31:06Z https://community.cisco.com/t5/network-access-control/acs-and-asa-logging/m-p/2215680#M136709 <HTML><HEAD></HEAD><BODY><P>Labeeb, did that answer your question?</P><P></P><P>Just wanted to let you know that pleas make sure you have ASA added as a AAA client on the ACS. If you don;t see any specific logging happening on ACS than it also means that its disabled and you need to enable it inside the system configuration &gt; logging&nbsp; and select the parameters/field you want to see in the logs. It can be controlled by Admin.</P><P></P><P>you can also run the debugs on the asa to troubleshoot aaa related issues.</P><P></P><P>debug aaa authentication</P><P>debug aaa authorization</P><P>debug aaa accounting</P><P>debug radius</P><P>debug tacacs</P><P></P><P>In order to disable it use no form of it.</P><P></P><P>Jatin Katyal <BR /> <BR /> <BR />- Do rate helpful posts -</P></BODY></HTML> Mon, 13 May 2013 11:13:18 GMT https://community.cisco.com/t5/network-access-control/acs-and-asa-logging/m-p/2215680#M136709 Jatin Katyal 2013-05-13T11:13:18Z https://community.cisco.com/t5/network-access-control/acs-and-asa-logging/m-p/2215681#M136714 <HTML><HEAD></HEAD><BODY><P>k.. let me try this....</P></BODY></HTML> Mon, 13 May 2013 12:29:30 GMT https://community.cisco.com/t5/network-access-control/acs-and-asa-logging/m-p/2215681#M136714 lzakariya 2013-05-13T12:29:30Z https://community.cisco.com/t5/network-access-control/acs-and-asa-logging/m-p/2215682#M136716 <HTML><HEAD></HEAD><BODY><P>sure <SPAN __jive_emoticon_name="happy" __jive_macro_name="emoticon" class="jive_macro jive_emote" src="https://community.cisco.com/4.5.4/images/emoticons/happy.gif"></SPAN></P></BODY></HTML> Mon, 13 May 2013 13:45:05 GMT https://community.cisco.com/t5/network-access-control/acs-and-asa-logging/m-p/2215682#M136716 Jatin Katyal 2013-05-13T13:45:05Z