Logging and Troubleshooting
This chapter describes the following:
•
System Logging
•
Log Files
System Logging
All actions within the Cisco NAC Guest Server are logged into the database. This enables you to see any action that occurred as part of the normal operating process of the application.
To access the system log from the administration interface select Server > System Log from the left hand menu (Figure 11-1).
Figure 11-1 System Log
Log Files
The system records information in different log files depending on the application function:
•
Email Logging
•
RADIUS Logging
•
RADIUS Logging
•
Web Server Logging
Email Logging
Email is processed by the sendmail daemon on the Guest Server. To troubleshoot issues, you need to access the appliance at the command line and view the appropriate files.
Step 1
Connect to the appliance console through either keyboard/monitor, serial console, or SSH.
Step 2
Authenticate as the root user.
Step 3
View the maillog file at /var/log/maillog. You can use any of the Linux command line tools to view the file, such as cat, less, nano, and so on.
Note
To view the log file off the appliance you can copy the file using an SCP client.
RADIUS Logging
RADIUS is processed by the radiusd daemon on the Guest Server. To troubleshoot issues, you need to access the appliance at the command line and view the appropriate files.
Step 1
Connect to the appliance console through either keyboard/monitor, serial console, or SSH.
Step 2
Authenticate as the root user.
Step 3
View the log file at /var/log/radius/radius.log. You can use any of the Linux command line tools to view the file, such as cat, less, vi, nano, and so on.
Note
To view the file off the appliance you can download it using an SCP client.
CAM Update Logging
The accounts on the Cisco NAC Appliance Clean Access Manager are created by a process that runs every minute on the Cisco NAC Guest Server. To troubleshoot issues, you need to access the Guest Server at the command line and view the appropriate files.
Step 1
Connect to the appliance console through either keyboard/monitor, serial console, or SSH.
Step 2
Authenticate as the root user
Step 3
View the log file at /guest/logs/camlog. You can use any of the Linux command line tools to view the file, such as cat, less, vi, nano, and so on.
Note
To view the file off the appliance you can download it using an SCP client.
Web Server Logging
The httpd daemon on the appliance runs the application web server. To troubleshoot issues, you need to access the Guest Server at the command line and view the appropriate files.
Step 1
Connect to the appliance console through either keyboard/monitor, serial console, or SSH.
Step 2
Authenticate as the root user.
Step 3
View the log file at /var/log/http/error_log. You can use any of the Linux command line tools to view the file, such as cat, less, nano, and so on.
Note
To view the log file off the appliance you can copy the file using an SCP client.