https://community.cisco.com/t5/software-defined-access-sd-access/extended-device-tracking-in-sda/m-p/4886921#M2475 <P><SPAN>Cisco&nbsp;DNA Center&nbsp;Version 2.3.3.7-72328</SPAN></P><P>As I understand it standard Assurance Client information only goes back 7 days. I have a requirement from our CSIRT team to be able to tell them what client (MAC address) was using a specific IP address and where the device was seen on the network&nbsp;(for compliance /&nbsp; copyright infringement /&nbsp;security reasons) for the past 100 days.</P><P>Can DNAC be used for this or should we investigate a different tool, or develop our own?</P><P>thanks in advance - Michael&nbsp;</P> Tue, 18 Jul 2023 11:41:59 GMT Michael Warren 2023-07-18T11:41:59Z https://community.cisco.com/t5/software-defined-access-sd-access/extended-device-tracking-in-sda/m-p/4886921#M2475 <P><SPAN>Cisco&nbsp;DNA Center&nbsp;Version 2.3.3.7-72328</SPAN></P><P>As I understand it standard Assurance Client information only goes back 7 days. I have a requirement from our CSIRT team to be able to tell them what client (MAC address) was using a specific IP address and where the device was seen on the network&nbsp;(for compliance /&nbsp; copyright infringement /&nbsp;security reasons) for the past 100 days.</P><P>Can DNAC be used for this or should we investigate a different tool, or develop our own?</P><P>thanks in advance - Michael&nbsp;</P> Tue, 18 Jul 2023 11:41:59 GMT https://community.cisco.com/t5/software-defined-access-sd-access/extended-device-tracking-in-sda/m-p/4886921#M2475 Michael Warren 2023-07-18T11:41:59Z https://community.cisco.com/t5/software-defined-access-sd-access/extended-device-tracking-in-sda/m-p/4892183#M2506 <P>do u have this requirement only to ports protected by AAA? if u do u can take this info from ISE. assuming your operational DB on ISE has more than 100+ days of purge frequency</P> Tue, 25 Jul 2023 14:19:04 GMT https://community.cisco.com/t5/software-defined-access-sd-access/extended-device-tracking-in-sda/m-p/4892183#M2506 Andrii Oliinyk 2023-07-25T14:19:04Z https://community.cisco.com/t5/software-defined-access-sd-access/extended-device-tracking-in-sda/m-p/4892755#M2511 <P>Thanks for the reply Andy</P><P>Unfortunately we have this requirement for all end user hosts on the network. This is further complicated in that we have our switches set to no authentication atm (we hope to start using ISE in the very near future) and do not use Cisco wireless. The real problem we have is that we little control over much of the desktop clients (UK University with a highly fragmented federated IT environment - no single AD, multiple data sources of users, etc...) which will make&nbsp;things like 802.1X difficult to implement.</P><P><BR />I think the answer to all this lies with a tool outside of DNAC - or a custom built system. Although ISE might be central to this once we figure out how to use it!<BR /><BR />Mike&nbsp;</P> Wed, 26 Jul 2023 10:25:16 GMT https://community.cisco.com/t5/software-defined-access-sd-access/extended-device-tracking-in-sda/m-p/4892755#M2511 Michael Warren 2023-07-26T10:25:16Z https://community.cisco.com/t5/software-defined-access-sd-access/extended-device-tracking-in-sda/m-p/4892819#M2512 <P>u need to use external logger then to keep history on-boarding entries along the ISE deployment option.</P> <P>with ISE u may live on authentication open mode for infinity &amp; still have endpoint-info at its full extent.</P> <P>basically i'd expect a lot of whishes made already for this feature to be back in DNAC...</P> Wed, 26 Jul 2023 11:51:23 GMT https://community.cisco.com/t5/software-defined-access-sd-access/extended-device-tracking-in-sda/m-p/4892819#M2512 Andrii Oliinyk 2023-07-26T11:51:23Z