09-18-2015 11:20 AM - edited 03-10-2019 11:04 PM
Hello everyone,
Is it at all possible for ACS's email alerts (especially the failed authentication alert) be able to include the IP address of the offending IP?
I've been looking through all the 5.5 guides / installations and can't seem to find if there is an option for this. I know I can log in, and access the monitoring and report viewer to get the IP's, but was hoping that it'd just send that in the email alert.
Thanks,
09-25-2015 10:56 AM
I am pretty sure there is no way to configure those messages with a dynamic value, such as the IP address causing the alert. This sounds like it would be an enhancement request for a future release.
I agree that it would be helpful to have all of the relevant data in the email alert rather than having to login and look at the report. This is especially true if it is just for one alert.
09-25-2015 11:00 AM
I kind of figured as much, since there isn't many posts / articles regarding a set up for such a feature. Hopefully something comes around in a later release.
Thanks for the insight David,
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide