Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
524
Views
0
Helpful
2
Replies

FGT Accounting on Cisco ISE - TACACS+ Live Logs

guicarvalho_
Level 1
Level 1

‎09-08-2023 12:57 PM

Hello Team,

I've just configured a Fortigate to authenticate via TACACS+ on Cisco ISE. All is working as expected, but it doesn't show the command accounting on TACACS Live Logs, only authentication logs.

If I go to Operations > Reports > Device Admin > TACACS Command Accounting, I can see all logs from command accounting.

Is it a normal Cisco ISE behaviour to show that just in Reports and not at Live Logs?

 

Thx

 

0 Helpful
2 Replies 2

Arne Bier
VIP
VIP

‎09-10-2023 02:49 PM

Hi @guicarvalho_ 

I haven't configured TACACS+ on Forti's, but on Cisco IOS devices you will see Authentication, as well as (command) Authorizations in TACACS+ Live Logs. 

Command Accounting is different to Command Authorization. The ISE Live Logs show AuthN and AuthZ - the command Accounting is not show in Live Logs. As you stated, you see command Accounting in Reports only

0 Helpful

Ruelb2214
Level 1
Level 1

‎05-10-2024 02:33 AM

Hello @guicarvalho_ are you able to share the docs or URL how you able to configure TACACS+ on FTG with Cisco ISE authorization

Thank u!

0 Helpful
Customers Also Viewed These Support Documents