Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
606
Views
0
Helpful
2
Replies

ISE Radius Auth syslog assistance

Go to solution
Adam White
Level 1
Level 1

‎05-07-2019 06:10 AM

Hi All, 

 

Any assistance would be greatly appreciated. 

I am sending radius auth logs to a Palo Alto for identity based policies. 

 

It works, but it seems every type of device sends the logs in a different manner for example

UserName=DOMAIN\\isetest
UserName=isetest
UserName=domain\domain\isetest

 

I am writing reg expressions and can keep doing this to match the usernames, but this doesnt seem scalable. 

Is there any way to tell ISE to just send the username instead of everything? 

 

 

0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Aravind Ravichandran
Level 3
Level 3

‎05-07-2019 06:39 AM

Identity is being sent by the supplicant as Domain\\isetest or domain\domain\isetest.

Please configure at the supplicant end to sent only username as identity. If you have to authenticate users from multiple domains. [domain]\[username] is a preferable identity.

 

-Aravind

View solution in original post

0 Helpful
2 Replies 2

Go to solution
Aravind Ravichandran
Level 3
Level 3

‎05-07-2019 06:39 AM

Identity is being sent by the supplicant as Domain\\isetest or domain\domain\isetest.

Please configure at the supplicant end to sent only username as identity. If you have to authenticate users from multiple domains. [domain]\[username] is a preferable identity.

 

-Aravind
0 Helpful

Go to solution
hslai
Cisco Employee
Cisco Employee

‎05-11-2019 10:31 PM

Aravind Ravichandran is correct on this. Such logs are more for ISE to consume and process further. pxGrid is more for partners to integrate with.

0 Helpful
Customers Also Viewed These Support Documents