08-31-2017 08:41 AM
I am looking for a document that will explains the following.
Solved! Go to Solution.
08-31-2017 09:41 AM
Many generic items so assume you are responding to RFP or other tender.
Recommend start here: https://www.cisco.com/c/en/us/td/docs/security/ise/2-3/admin_guide/b_ise_admin_guide_23/b_ise_admin_guide_23_chapter_011011.html#ID1116
Many reports available to track changes and any relevant event under Operations > Reports > Audit
Auth events will track the assignment of dACL or SGT. MAB is an auth event, not a config event. Not all config changes are detailed. When config changed, you may trigger config audit event against that admin, but may not spell out the exact detail of every change. Debug logs can track minute changes system, but not common or recommended to keep those enabled.
Log purging:
60198 MnT purge event occurred
Not clear on ask of human vs system accounts. The creds presented will represent identity. In some cases the access method may help dictate such as API vs UI.
Craig
08-31-2017 09:41 AM
Many generic items so assume you are responding to RFP or other tender.
Recommend start here: https://www.cisco.com/c/en/us/td/docs/security/ise/2-3/admin_guide/b_ise_admin_guide_23/b_ise_admin_guide_23_chapter_011011.html#ID1116
Many reports available to track changes and any relevant event under Operations > Reports > Audit
Auth events will track the assignment of dACL or SGT. MAB is an auth event, not a config event. Not all config changes are detailed. When config changed, you may trigger config audit event against that admin, but may not spell out the exact detail of every change. Debug logs can track minute changes system, but not common or recommended to keep those enabled.
Log purging:
60198 MnT purge event occurred
Not clear on ask of human vs system accounts. The creds presented will represent identity. In some cases the access method may help dictate such as API vs UI.
Craig
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide