https://community.cisco.com/t5/network-access-control/acs-proxy-distribution-table-logs/m-p/1119206#M374494 <HTML><HEAD></HEAD><BODY><P>The starting point for enabling and configuring service logs is the Service Control page, which you access by choosing System Configuration &gt; Service Control. The starting point for enabling and configuring all other logs and loggers is the Logging Configuration page, which you access by choosing System Configuration &gt; Logging. The Logging Configuration page also displays which ACS logs are currently enabled. </P><P></P></BODY></HTML> Wed, 29 Oct 2008 19:43:39 GMT smahbub 2008-10-29T19:43:39Z https://community.cisco.com/t5/network-access-control/acs-proxy-distribution-table-logs/m-p/1119205#M374484 <P>Hello,</P><P></P><P>I have setup a proxy distribution table in my Cisco ACS v4.2 (patch 6).</P><P></P><P>I have two type of users: Suppliers (external) and TI user (internal). They connect to our Internal Network by a VPN SSL connection (AEP Netilla box).</P><P></P><P>This box have 2 realms. One for suppliers, another for TI users.</P><P></P><P>The aim is that:</P><P>* For the suppliers connect trought the Netilla box which forwards the authentication (RADIUS Authentication) to the ACS which forwards the request to an RSA server.</P><P>* For TI User, they connect trought the Netilla Box which forwards the request (RADIUS Authentication) to the ACS which check the Active Directory.</P><P></P><P>=&gt; It's working perfectly.</P><P></P><P>The problem is that I have no logs from the ACS box about the suppliers which are forwarded to the RSA server. If possible, I want to know which users try to connect, if they are permit (or not) and eventually how many times they are connected.</P><P></P><P>The problem is the Netilla box doesn't have Radius Accouting.</P><P></P><P>I was hoping that the ACS logs these kinds of connections. (It's working for users, TI users, authenticated by the Active Directory).</P><P>Is-it possible that the ACS forwards only the request without taking attention of what it is forwared (except remove the Character String).</P><P></P><P>Is there another way to do what I'm talking about ?</P><P></P><P>See my VISIO attachement.</P><P></P><P>Thanks in advance for your attention,</P><P></P><P> </P><P></P> Sun, 10 Mar 2019 23:08:50 GMT https://community.cisco.com/t5/network-access-control/acs-proxy-distribution-table-logs/m-p/1119205#M374484 glemaire 2019-03-10T23:08:50Z https://community.cisco.com/t5/network-access-control/acs-proxy-distribution-table-logs/m-p/1119206#M374494 <HTML><HEAD></HEAD><BODY><P>The starting point for enabling and configuring service logs is the Service Control page, which you access by choosing System Configuration &gt; Service Control. The starting point for enabling and configuring all other logs and loggers is the Logging Configuration page, which you access by choosing System Configuration &gt; Logging. The Logging Configuration page also displays which ACS logs are currently enabled. </P><P></P></BODY></HTML> Wed, 29 Oct 2008 19:43:39 GMT https://community.cisco.com/t5/network-access-control/acs-proxy-distribution-table-logs/m-p/1119206#M374494 smahbub 2008-10-29T19:43:39Z https://community.cisco.com/t5/network-access-control/acs-proxy-distribution-table-logs/m-p/1119207#M374507 <HTML><HEAD></HEAD><BODY><P>I really hate draggin up old posts, but I have the same exact question.&nbsp; In my scenario, I am proxying requests for eduroam (basically any user name that ends in .uk, .com, .ca or any other country suffix) off to our national server(s).&nbsp; I would like to know if/when these requests get proxied over.&nbsp; smahbub's suggestion only directs where to find the settings for loggin.&nbsp; I have these enabled, but cannot seem to locate any setting that applies to the proxy distribution table.&nbsp; If anyone has any idea, it would be greatly appreciated.</P><P></P><P>Thanks,</P></BODY></HTML> Mon, 17 May 2010 18:14:48 GMT https://community.cisco.com/t5/network-access-control/acs-proxy-distribution-table-logs/m-p/1119207#M374507 Patrick Knee 2010-05-17T18:14:48Z