Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1374
Views
0
Helpful
1
Replies

How to get MAC address information from CISCO anyconnect VPN logs?

asadaliz123
Level 1
Level 1

‎12-22-2016 11:20 PM - edited ‎02-21-2020 09:06 PM

I need help in knowing If through "CISCO ANY CONNECT"  client MAC address information would be send in syslog payload. We are building a security monitoring use-case with a client, where we plan to whitelist MAC's and detect unauthorized access from Machines using MAC address from CISCO VPN logs generated by use of CISCO ANY connect. Could this be done?

Also, I have seen using cisco 5500 configured with DAP access protection can be enforced based upon device posture generation which is based upon MAC address given in link

http://www.cisco.com/c/en/us/td/docs/security/vpn_client/anyconnect/anyconnect30/administration/guide/anyconnectadmin30/acmobiledevices.html

I'm hoping this MAC address information would be present in the payload as well.

1 person had this problem
Labels:
0 Helpful
1 Reply 1

tjohnson@reliant-cap.com
Level 1
Level 1

‎09-27-2018 07:41 AM - edited ‎09-27-2018 07:42 AM

 
0 Helpful
Customers Also Viewed These Support Documents