https://community.cisco.com/t5/network-access-control/ise-authentication-certificate-audit/m-p/3522770#M517000 <HTML><HEAD></HEAD><BODY><P>Would you be able to tell me how I would extract the information via Syslog?</P></BODY></HTML> Tue, 22 May 2018 14:04:56 GMT jcresdee 2018-05-22T14:04:56Z https://community.cisco.com/t5/network-access-control/ise-authentication-certificate-audit/m-p/3522768#M516995 <HTML><HEAD></HEAD><BODY><P>My customer is looking to perform an audit on which certificates are being used by which endpoint for authentication. They are trying to deprecate an old certificate and would like to understand which devices are still actively using it for authentication. They are using an external CA and not using ISE as a CA.&nbsp; Is there a way of capturing that data in a report? If not, can we raise it as a feature request?</P></BODY></HTML> Mon, 21 May 2018 18:15:40 GMT https://community.cisco.com/t5/network-access-control/ise-authentication-certificate-audit/m-p/3522768#M516995 jcresdee 2018-05-21T18:15:40Z https://community.cisco.com/t5/network-access-control/ise-authentication-certificate-audit/m-p/3522769#M516997 <HTML><HEAD></HEAD><BODY><P>AFAIK we have no summary reports on such.</P><P>In auth detail reports, there is field TLSCipher; e.g.</P><TABLE border="0" class="content_table" style="color: #000000; font-family: -webkit-standard;"><TBODY><TR><TD width="33%">TLSCipher</TD><TD width="67%">ECDHE-RSA-AES256-SHA</TD></TR></TBODY></TABLE><P></P><P>If that is what the customer can use for this, then either get it from individual auth detail reports or use a remote syslog target to capture it.</P><P></P><P>If you would like it as an enhancement, please contact our product management team.</P></BODY></HTML> Mon, 21 May 2018 18:58:51 GMT https://community.cisco.com/t5/network-access-control/ise-authentication-certificate-audit/m-p/3522769#M516997 hslai 2018-05-21T18:58:51Z https://community.cisco.com/t5/network-access-control/ise-authentication-certificate-audit/m-p/3522770#M517000 <HTML><HEAD></HEAD><BODY><P>Would you be able to tell me how I would extract the information via Syslog?</P></BODY></HTML> Tue, 22 May 2018 14:04:56 GMT https://community.cisco.com/t5/network-access-control/ise-authentication-certificate-audit/m-p/3522770#M517000 jcresdee 2018-05-22T14:04:56Z https://community.cisco.com/t5/network-access-control/ise-authentication-certificate-audit/m-p/3522771#M517003 <HTML><HEAD></HEAD><BODY><OL><LI>Define a remote syslog target</LI><LI>Enable auth success to (1)</LI><LI>Test</LI></OL><P></P><P><A href="https://community.cisco.com/videos/17053"> Video Link : 17053 </A></P></BODY></HTML> Wed, 23 May 2018 22:36:42 GMT https://community.cisco.com/t5/network-access-control/ise-authentication-certificate-audit/m-p/3522771#M517003 hslai 2018-05-23T22:36:42Z https://community.cisco.com/t5/network-access-control/ise-authentication-certificate-audit/m-p/3522772#M517005 <HTML><HEAD></HEAD><BODY><P>That is awesome, thank you so much!!</P></BODY></HTML> Thu, 24 May 2018 20:14:07 GMT https://community.cisco.com/t5/network-access-control/ise-authentication-certificate-audit/m-p/3522772#M517005 jcresdee 2018-05-24T20:14:07Z