Cisco® Secure Access Control System (ACS) View provides the highest level of reporting, alerting, and troubleshooting functions for Cisco Secure ACS deployments. Providing maximum visibility into configured policies and authentication and authorization activities across the network, Cisco Secure ACS View is the ideal solution for organizations that require the greatest levels of reporting and control.
Cisco Secure ACS View collects and correlates data from multiple Cisco Secure ACS servers and logs to provide aggregate views of system activity as well as detailed information at the transaction level for both network access and device administration.
Cisco Secure ACS View provides essential information for network monitoring and planning, access problem detection and troubleshooting, and entitlement and compliance reporting. Its built-in reporting engine generates predefined reports and supports custom queries on demand or on a scheduled basis. Its Web-based user interface simplifies generating and accessing critical reports, making network access information more usable and available than ever.
Cisco Secure ACS View predefined reports include:
• Passed, failed, and total authentication attempts and percentages with breakdown by ACS server, users, groups, network access device, network device groups, and network access profiles for the monitoring of access activities
• Failed authentication reports for the detection and diagnosis of access issues
• Device administration activities reports for auditing the activities of network device administrators or auditing the administrative activities on a particular device
• ACS configuration reports on user accounts; authentication, authorization, and accounting (AAA) clients and network device groups; and network access profile definitions (with selection rules, protocol settings, and authentication and authorization rules)
• ACS server administrator entitlement and activity reports for review and audit of ACS administrator privileges and configuration activities
Cisco Secure ACS View goes beyond reporting, providing tools to query authentication and account status and generate custom notifications. Easy access to authentication data and account status information simplifies the diagnosis of access issues, while the Cisco Secure ACS View alerting capabilities allow you to define thresholds and triggers on authentication activity to detect abnormal operation or trends. This unique functionality facilitates rapid response to network access issues or improper activity.
Cisco Secure ACS View supports the following user-defined alerts:
• Failed (or passed) authentications over a specified period of time for a user, user group, ACS server, network access device, network device group, or network access profile
• Inactivity over a specified length of time for a user, user group, ACS server, network access device, network device group, or network access profile
• Specific TACACS+ command execution for a user, user group, network access device, or network device group
• ACS server administration operations on specified ACS servers
Features and Benefits
Cisco Secure ACS View is a valuable management tool for your Cisco Secure ACS deployment as detailed in Table 1.
Table 1. Key features and benefits of Cisco Secure ACS View 4.0
Advanced user interface
The ACS View dashboard provides quick access to favorite queries, generated reports, and alerts. The interactive viewer allows on-demand formatting, filtering, and sorting of generated reports to maximize the value of the information. You can export reports in HTML, PDF, or comma-separated value (CSV) format and e-mail and print reports from ACS View.
Data collection and aggregation
ACS View collects syslog messages from individual ACS servers or the central logging ACS server and has access to near real-time data without affecting the performance of your ACS deployment. ACS View can bulk-upload log and configuration data for historical and entitlement reporting.
Predefined authentication reports, session reports, device administration reports, configuration reports, and ACS administration reports provide ACS View with ready-to-use functionality.
ACS View includes a report design tool that allows you to pick and choose the data you need, group and aggregate data as required, and present the results in tabular and graphical form. It provides the flexibility to build queries and reports as required to meet the needs of your organization.
Troubleshooting reports and tools
ACS View provides reports to assist in troubleshooting access issues. User authentication status and user account status are quickly available, and the customizable authentication failure code utility lists possible root causes and recommendation actions for resolution. Additionally, connectivity testing functions are also provided for detection of basic connectivity issues.
Real-time monitoring and alerts
User-defined alerts can be used to monitor authentication activity, device administration command activity, ACS server administration activity, ACS server backup and replication operations, and ACS server process status. System-defined threshold alerts monitor ACS View system resources.
ACS View provides a scheduled database purge operation to help ensure that disk space is available for new data. On-demand or scheduled backup of the ACS View database, reports, and its configuration to a local or remote location is supported. Data in the ACS View database can also be exported in CSV format for use by other applications.
Cisco Secure ACS View 4.0 is a one-rack-unit (1RU) appliance. Table 2 lists the specifications of Cisco Secure ACS View 4.0.
Table 2. Cisco Secure ACS View 4.0 Specifications
Intel Core2 Duo 2.13 GHz, 1066 MHz front-side bus (FSB), 2 MB Level 2 cache
Hard disk drive
2x250 GB Serial-ATA
Ethernet network interface card (NIC)
Two onboard 10BASE-T/100BASE-TX/1000BASE-T Ethernet NIC
Physical dimensions (1RU)
Height 1.7 in. (4.3 cm)
Width 17.0 in. (43.2 cm)
Depth 20.0 in. (50.8 cm) without bezel or mounting hardware
Maximum power consumption
350W (maximum output, power supply rating)
540W (maximum input, power supply rating)
Cisco Secure ACS View 4.0 comes with a base license that supports the collection and processing of data from two Cisco Secure ACS servers. Additional licenses are available for managing larger Cisco Secure ACS deployments. Cisco Secure ACS View requires that ACS servers run ACS version 4.1.4 or 4.2 software. Cisco Secure ACS products are available for purchase through regular Cisco sales and distribution channels worldwide. Please refer to the Cisco Secure ACS View 4.0 product bulletins for Cisco Secure ACS View product numbers at http://www.cisco.com/go/acs.
Cisco offers a wide range of services programs to accelerate customer success. These innovative programs are delivered through a unique combination of people, processes, tools, and partners, resulting in high levels of customer satisfaction. Cisco services help you to protect your network investment, optimize network operations, and prepare your network for new applications to extend network intelligence and the power of your business. For more information about Cisco services, see Cisco Technical Support Services.