- About This Guide
- Welcome to Cisco NAC Guest Server
- Installing Cisco NAC Guest Server
- System Setup
- Configuring Sponsor Authentication
- Configuring User Group Permissions
- Configuring Guest Login Policies
- Integrating with Cisco NAC Appliance
- Configuring RADIUS Clients
- Guest Account Notification
- Customizing the Application
- Logging and Troubleshooting
- Sponsor Documentation
- Open Source License Acknowledgements
Cisco NAC Guest Server Installation and Configuration Guide, Release 1.0.0
Bias-Free Language
The documentation set for this product strives to use bias-free language. For the purposes of this documentation set, bias-free is defined as language that does not imply discrimination based on age, disability, gender, racial identity, ethnic identity, sexual orientation, socioeconomic status, and intersectionality. Exceptions may be present in the documentation due to language that is hardcoded in the user interfaces of the product software, language used based on RFP documentation, or language that is used by a referenced third-party product. Learn more about how Cisco is using Inclusive Language.
- Updated:
- October 31, 2013
Chapter: Logging and Troubleshooting
Logging and Troubleshooting
This chapter describes the following:
System Logging
All actions within the Cisco NAC Guest Server are logged into the database. This enables you to see any action that occurred as part of the normal operating process of the application.
To access the system log from the administration interface select Server > System Log from the left hand menu (Figure 11-1).
Figure 11-1 System Log
Log Files
The system records information in different log files depending on the application function:
Email Logging
Email is processed by the sendmail daemon on the Guest Server. To troubleshoot issues, you need to access the appliance at the command line and view the appropriate files.
Step 1 
Connect to the appliance console through either keyboard/monitor, serial console, or SSH.
Step 2 Authenticate as the root user.
Step 3 View the maillog file at /var/log/maillog. You can use any of the Linux command line tools to view the file, such as cat, less, nano, and so on.
Note To view the log file off the appliance you can copy the file using an SCP client.
RADIUS Logging
RADIUS is processed by the radiusd daemon on the Guest Server. To troubleshoot issues, you need to access the appliance at the command line and view the appropriate files.
Step 1 Connect to the appliance console through either keyboard/monitor, serial console, or SSH.
Step 2 Authenticate as the root user.
Step 3 View the log file at /var/log/radius/radius.log. You can use any of the Linux command line tools to view the file, such as cat, less, vi, nano, and so on.
Note To view the file off the appliance you can download it using an SCP client.
CAM Update Logging
The accounts on the Cisco NAC Appliance Clean Access Manager are created by a process that runs every minute on the Cisco NAC Guest Server. To troubleshoot issues, you need to access the Guest Server at the command line and view the appropriate files.
Step 1 Connect to the appliance console through either keyboard/monitor, serial console, or SSH.
Step 2 Authenticate as the root user
Step 3 View the log file at /guest/logs/camlog. You can use any of the Linux command line tools to view the file, such as cat, less, vi, nano, and so on.
Note To view the file off the appliance you can download it using an SCP client.
Web Server Logging
The httpd daemon on the appliance runs the application web server. To troubleshoot issues, you need to access the Guest Server at the command line and view the appropriate files.
Step 1 Connect to the appliance console through either keyboard/monitor, serial console, or SSH.
Step 2 Authenticate as the root user.
Step 3 View the log file at /var/log/http/error_log. You can use any of the Linux command line tools to view the file, such as cat, less, nano, and so on.
Note To view the log file off the appliance you can copy the file using an SCP client.
Feedback