Hi,
Our customer recently had some problems some PSNs in their ISE 1.3 deployment and didn't realize for quite some time.
They are now looking for the best way to monitor their deployment. I have not been able to find a full best practice around monitoring ISE deployments.
Info I have found:
http://pmbuwiki/Products/ISE/Technical/Design-Config/Monitoring#Appliance.c2.a0Monitoring
which contains:
- Syslog setup: How to configure, not what to configure.
- SNMP MIBs: Some info on the appliance/VM resources, but nothing on the ISE services availability.
- UCS/NAC appliance monitoring: Again looking at the appliance, but not the ISE services.
Basically I am looking for an ideal monitoring configuration:
We would configure a syslog server as remote logging target, but would to understand which Logging category to enable to send useful information about the status of the ISE deployment to the syslog server.
Any recommendations which Logging Categories to enable?
Secondly, is there a way to tune the Message Catalog to make sure some logs are sent to the syslog server?
Some Messages which are interesting are considered Debug and are therefore not triggered when the general Logging Category is set to Warn or Info.
Regards
Gert