Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
738
Views
0
Helpful
2
Replies

Cisco CDA has its own system logs and can nessus scan CDA application?

fyz.sana@yahoo.com
Level 1
Level 1

‎01-14-2019 01:53 AM

Dear cisco team,

Our company is going to implement Cisco CDA feautre along with Cisco ISE. I wanted to ask , since CDA is a separate application and requires a dedicated server, does it has its own syslogs that can be forwarded to IBM QRadar to monitor unusual activities?

I know CDA can take logs of other devices and forward it to a target logging server. But does it has its own logs?

 

Also, will tenable Nessus be bale to scan the CDA application for vulnerabilities? is it possible?

Labels:
0 Helpful
2 Replies 2

balaji.bandi
Hall of Fame
Hall of Fame

‎01-14-2019 03:40 AM

As per the documentation it has support to send external log Server also own the logs, Once the Logs can export outside, any SIEM can able to identify based on the support and availability.

 

 

https://www.cisco.com/c/en/us/td/docs/security/ibf/cda_10/Install_Config_guide/cda10/cda_wrkng.html#77040

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

fyz.sana@yahoo.com
Level 1
Level 1
In response to balaji.bandi

‎01-14-2019 03:46 AM

there is no automated mechanism for sending these live logs to a target server?

Like in cisco ISE we define the target logging server and it will send the logs to it.

these live logs will have to be exported like in excel or such and then manually imported in any SIEM?

0 Helpful
Customers Also Viewed These Support Documents