Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
3170
Views
0
Helpful
1
Replies

Hits count policy on ISE

Go to solution
creserva1
Level 1
Level 1

‎07-28-2018 06:37 AM

Is there anyway to keep the hits count on all active policy? After a reboot the accumulated counts are gone. 

0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
hslai
Cisco Employee
Cisco Employee

‎07-28-2018 08:32 AM

No. The HitCounts are cached in memory only and clear after a ISE service restart.

Please note that such counters are to give a relative measure how the policy rules are matched but not absolute.

ISE has an authentication summary report since ISE 2.3 but it's currently lacking statistics grouped by policy sets -- CSCvf95838. Instead, we may run and export a RADIUS authentications report and use other tools to gather matches on policy set, etc. A fairly popular option is to create a remote syslog target to forward authentication events to a tool like Splunk with Splunk Add-on for Cisco ISE

View solution in original post

0 Helpful
1 Reply 1

Go to solution
hslai
Cisco Employee
Cisco Employee

‎07-28-2018 08:32 AM

No. The HitCounts are cached in memory only and clear after a ISE service restart.

Please note that such counters are to give a relative measure how the policy rules are matched but not absolute.

ISE has an authentication summary report since ISE 2.3 but it's currently lacking statistics grouped by policy sets -- CSCvf95838. Instead, we may run and export a RADIUS authentications report and use other tools to gather matches on policy set, etc. A fairly popular option is to create a remote syslog target to forward authentication events to a tool like Splunk with Splunk Add-on for Cisco ISE

0 Helpful
Customers Also Viewed These Support Documents