Scribd
Upload
45 views

01 - Create Guest Reports

This document discusses running reports from the Cisco ISE dashboard regarding guest access. It provides examples of viewing currently authenticated guests from the home screen, as well as drilling down to see detailed attributes about a specific authenticated guest including device type, network access details, and authentication information. It also demonstrates running predefined reports from the Operations tab to view administrator logins, configuration changes, guest acceptance of policies, and overall guest interactions and account activities. In summary, the Cisco ISE dashboard and reporting tools provide visibility into current guest access and a detailed audit trail of operational, administrative, and guest activities.

Uploaded by

Nguyen Le
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as TXT, PDF, TXT or read online on Scribd
45 views

01 - Create Guest Reports

This document discusses running reports from the Cisco ISE dashboard regarding guest access. It provides examples of viewing currently authenticated guests from the home screen, as well as drilling down to see detailed attributes about a specific authenticated guest including device type, network access details, and authentication information. It also demonstrates running predefined reports from the Operations tab to view administrator logins, configuration changes, guest acceptance of policies, and overall guest interactions and account activities. In summary, the Cisco ISE dashboard and reporting tools provide visibility into current guest access and a detailed audit trail of operational, administrative, and guest activities.

Uploaded by

Nguyen Le
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as TXT, PDF, TXT or read online on Scribd
You are on page 1/ 1

In this session, we'll be running reports from the ISE dashboard regarding guest

access. So you can see here, we're currently on the Home tab for ISE. And in the
top part of the menu section, we see an area for Authenticated Guests. If we click
on the number 1 here, that will take us to a quick visual report on currently
authenticated guests.
We could see we're filtering around authenticated guests automatically by clicking
on that portion of the home page. And we see here one authenticated Mac, which is
our iPad within the lab environment. And the currently logged-in guest username is
one of our randomly created guest accounts.
If we click on the MAC address, this will take us to a wealth of information,
particularly around the Attributes tab. And we get several pages of information
regarding how this endpoint and guest endpoint arrived with access and how it
conveyed its information towards gaining that access.
We've seen ISE make a determination about the type of device via the portal
interaction. We could see the network access device that governed the access, the
portal that provided the interaction, the sponsor that created this guest account,
this randomly created guest account, the SSIDs that were used for access, the
username ultimately. It's a UserType of GuestUser, and the operating system, again,
all determined by interaction with the portal and the processing on ISE. Additional
details and a different summary are specific to authentication for this particular
guest user and endpoint.
Going back to the Home tab, we'll select Guests. And again, a different arrangement
of widgets or dashlets on this dashboard-- and we'll select the Guests Status. And
here, this will list out guests status as well as type, failure reasons, and
location information. And if we click on the MAC address here, that would take us
to that same information screen that we just saw with the attributes and
authentication information.
Another variation is by going into Context Visibility and Endpoints. And of course,
this is similar to the home screen and basic approach. One benefit, as we're
viewing details such as the MAC address, is that it doesn't open a new tab. It
retains the current tab that we're on without opening a new one. And we can again
view those details.
For actual reports that can be ran, we'll go to the Operations tab and Reports.
Select Reports on the left. And some of the reports that we can run that are
relatable-- we'll run this audit report. And some of things that can be evaluated
are our administrator logins. It's showing the login attempts and when those
attempts occurred. We can also view the Operations Audit, which will let us see
configuration changes that have occurred by particular administrators.
And then, further down here, we can see guest reports. And among some of the guest
reports that are valuable or could be helpful are AUP Acceptance Status-- we could
see our randomly created guest user has accepted the use policy-- and the Master
Guest Report, showing basic interactions, the login attempts, the suspension of
accounts, change of authorizations that have occurred for guest activities overall.
And some of those would be related to sponsor logins and audits, where we can see a
sponsor that has logged in and manipulated guest accounts, provided updates,
suspensions, bulk ads for user account creation.
In a quick summary, that's an example of some of the reports that can be ran on
ISE-- lots of helpful information within the Home and Context Visibility screens,
often providing quick answers towards the problem that you're trying to resolve.
And then a very nice set of reports providing a nice audit trail for activities--
operational, administration, and then, of course, endpoints and guests, among many
other reports that are available.

You might also like