Api to fetch radius live log data

jagritibhardwaj471 · ‎12-02-2024

I want to fetch specific components from RADIUS live logs via an API .I need to retrieve the following data:

NAS Port
NAS IP
NAS Type
Location
Network Device Details
Authorization Profile
Reason for Non-Compliance (if the posture status is Non-Compliant)

If there's an API or another approach that supports fetching these specific data points from live RADIUS logs please do let me know

bigevilbeard · ‎12-02-2024

Try this Endpoint: https://<ISE_IP>/api/v1/policy/network-access/authorization-profiles should allow you to retrieve authorization profiles that can be associated with the RADIUS logs. Not sure the is a live logs check the ISE API documentation for endpoints related to RADIUS logs or session details.

All details are here in the doc https://developer.cisco.com/docs/identity-services-engine/latest/

https://community.cisco.com/t5/network-access-control/query-on-apis-to-fetch-specific-fields-from-ise/td-p/5229877

Please mark this as helpful or solution accepted to help others
Connect with me https://bigevilbeard.github.io

thomas · ‎01-09-2025

RADIUS Live Logs are available via the ISE MNT APIs - see ISE Monitoring API Examples for detailed instructions and examples. However this is a very old REST API - responding with XML only and no flexible query parameters.

Instead I highly recommend using the ISE 3.2+ Data Connect feature to allow you to directly query the ISE database. For details on enabling and using it, we have done a few ISE Webinars about it:

▷ Next Generation ISE Telemetry, Monitoring, and Custom Reporting Part 2 |
06:00 Reports vs Data Connect
08:10 Data Connect (ISE 3.2 and later)
▷How to Get Data Out of ISE | 2024-04-02
48:32 ISE Data Connect

I recommend posting Cisco Identity Services Engine (ISE), RADIUS, and TACACS+ related questions in the ISE/NAC Network Access Control (https://cs.co/ise-community) community forum for the best visibility and RADIUS expertise.