topic Re: Where are loggend the authenticated dot1x users in Site engine? in ExtremeCloud IQ- Site Engine Management Center

Where are loggend the authenticated dot1x users in Site engine?

Antonio_Opromol — Sun, 19 Jun 2022 18:30:44 GMT

Hi,
I use the log file tamAudit.log file for defined an alert criteria of my web authenticated users:

in manner to trigger as action a workflow (and I use nother custom criteria when the user is removed for run a different workflow).
But I don't found in the log files all the user that ExtremeControl authenticate with for example by 802.1x or with Kerberos authentication method.
Where are these evetns loggend on site engine?
If are not logged, there is a manner to log these events?
Thanks

Re: Where are loggend the authenticated dot1x users in Site engine?

Ryan_Yacobucci — Mon, 20 Jun 2022 15:13:40 GMT

tamAudit.log will only capture information for users who register to the captive portal.

If you want to trigger actions based on authentication in Control go to Configurations --> Notifications. Here you can create a notification on say "Accept State" to perform an action based on an authentication. I would suggest caution using this tool as if there are a large number of authentications being handled configuring this tool to perform notification on every authentication can overrun the alarms processing system in XMC/XIQ-SE.

Thanks
-Ryan

Re: Where are loggend the authenticated dot1x users in Site engine?

Antonio_Opromol — Mon, 20 Jun 2022 15:31:21 GMT

Thanks Ryan for these details.

Re: Where are loggend the authenticated dot1x users in Site engine?

KateN — Thu, 25 Aug 2022 10:13:23 GMT

The local authentication server does not synchronize its database with the main RADIUS servers. It is necessary to manually configure the local authentication server with client usernames and passwords.