cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
731
Views
0
Helpful
1
Replies

Some statement log are missing in my ACS log

xine xine
Level 1
Level 1

Hi !

We are using our ACS server 5.6 running patch Level 4 to authenticate users on different telecom equipment  with in the Compagny.

I'm actually trying to configure "read only access" for some users to our BlueCoat Packet Shapper device.  The full access works properly actually.

I had add a new statement in the Policy before the Full access statement. 

Statements are pretty simple the restricted statement said :

if Identity group is "limited" and "Device Type" is "BlueCoat" Shell Profile is "Permit access" Rule number 8

the next statement do not take care of user member group membership  but "Device Type" is "BlueCoat" Shell Profile is "Permit Touch" Rule number 9

When I look at the AAA report I know some of my attemp aren't log (and I'd liked to know why...)

I don't know what I can do more to make my first statement match instead of the second

Anyone may help ?

1 Reply 1

Jatin Katyal
Cisco Employee
Cisco Employee