09-08-2023 12:57 PM
Hello Team,
I've just configured a Fortigate to authenticate via TACACS+ on Cisco ISE. All is working as expected, but it doesn't show the command accounting on TACACS Live Logs, only authentication logs.
If I go to Operations > Reports > Device Admin > TACACS Command Accounting, I can see all logs from command accounting.
Is it a normal Cisco ISE behaviour to show that just in Reports and not at Live Logs?
Thx
09-10-2023 02:49 PM
I haven't configured TACACS+ on Forti's, but on Cisco IOS devices you will see Authentication, as well as (command) Authorizations in TACACS+ Live Logs.
Command Accounting is different to Command Authorization. The ISE Live Logs show AuthN and AuthZ - the command Accounting is not show in Live Logs. As you stated, you see command Accounting in Reports only
05-10-2024 02:33 AM
Hello @guicarvalho_ are you able to share the docs or URL how you able to configure TACACS+ on FTG with Cisco ISE authorization
Thank u!
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide