ISE Reporting Questions
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
06-29-2018 11:54 AM
For ISE reporting - is it possible to generate reports on devices that tried to connect to the network, but failed authorisation? Also, is it possible to report on how many devices have specific vulnerabilities, based on passive scanning or checks from the posture client?
- Labels:
-
Identity Services Engine (ISE)
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
06-29-2018 01:27 PM
On reporting endpoints failing authorization, we may run the report "RADIUS Authentications" and filter on 15039, which is Rejected per authorization profile, as the Failure Reason.
On reporting specific vulnerabilities, if they are posture checks, then we run the report "Posture Assessment by Condition" and filter on the condition names. If they are data collected by application visibility, then we use ISE Context Visibility > Application.
