Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1335
Views
10
Helpful
5
Replies

Captcha on WSA don´t appear image

marcio.tormente
Level 4
Level 4

‎12-03-2018 11:34 AM

Hello,

 

I'm trying to release some GOV websites in my company, but the captcha is not working.

I tried to monitor the session using grep option 2 by CLI, but I couldn´t see any error.

How can I identify the URL that store the captcha to release in my whitelist?

 

thanks

Labels:
0 Helpful
5 Replies 5

balaji.bandi
Hall of Fame
Hall of Fame

‎12-03-2018 12:59 PM

WSA in command level you need to use below steps :

 

grep

1

type the user IP here 

enter

enter

Y

enter

 

then you see logs what is happening with the requests.

 

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

marcio.tormente
Level 4
Level 4
In response to balaji.bandi

‎12-04-2018 04:55 AM

Hello Balaji,

 

thanks for your support.

What is the difference between option 1 and 2? I didn´t see difference.

In the log I saw one strange thing:

"ALLOW_CUSTOMCAT_12-HP_NAC_agents-Sitel_NAC_Authentication-DefaultGroup-NONE-NONE-DefaultGroup-NONE"

I didn´t understand why appear DefaultGroup.

In the Internet Explorer appear as "connection refused", without proxy works fine.

0 Helpful

balaji.bandi
Hall of Fame
Hall of Fame
In response to marcio.tormente

‎12-04-2018 05:53 AM

check you access policies.

 

different between 1 and 2 as below

 

1. Access log for all the logs  - this is used for diagnosis the issue.

2. for AMP related to log

 

Currently configured logs:
1. "accesslogs" Type: "Access Logs" Retrieval: FTP Poll
2. "amp_logs" Type: "AMP Engine Logs" Retrieval: FTP Poll

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

Ken Stieers
VIP
VIP
In response to marcio.tormente

‎12-04-2018 09:16 AM

@marcio.tormente wrote:

Hello Balaji,

 

thanks for your support.

What is the difference between option 1 and 2? I didn´t see difference.

In the log I saw one strange thing:

"ALLOW_CUSTOMCAT_12-HP_NAC_agents-Sitel_NAC_Authentication-DefaultGroup-NONE-NONE-DefaultGroup-NONE"

I didn´t understand why appear DefaultGroup.

In the Internet Explorer appear as "connection refused", without proxy works fine.

 

Run grep in a command line, and look at the list of log files, pick the Access log.   If you have added any log subscriptions, the access logs won't necessarily be #1 any more.

 

Show us the whole log entry...

 

0 Helpful

marcio.tormente
Level 4
Level 4
In response to Ken Stieers

‎12-05-2018 04:58 AM

Hello Ken,

 

follow atached the whole log.

 

thanks

Preview file
111 KB
0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents