- Mark as New
- Bookmark Message
- Subscribe to Message
- Mute Message
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Missing field from Splunk for Cisco Identity Services (ISE) logs: AllowedProtocolMatchedRule.
TitanAE
New Member
05-20-2020
12:38 PM
I have a feeling this question will answer a lot of other questions I have.
This field - AllowedProtocolMatchedRule
- is missing from my Cisco ISE logs. The field is needed to populate data in the Cisco ISE App dashboard. But I have no record of this field, even going back to the beginning of time. I'm not sure how to resolve this problem.
- Mark as New
- Bookmark Message
- Subscribe to Message
- Mute Message
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
d1nd141
Engager
11-29-2021
11:59 AM
afaik 3.0p2 (i'm not the admin of ISE)
- Mark as New
- Bookmark Message
- Subscribe to Message
- Mute Message
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
d1nd141
Engager
11-23-2021
12:26 AM
Hi,
have the same issue.
You found a way to solve?
Thanks
- Mark as New
- Bookmark Message
- Subscribe to Message
- Mute Message
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
TitanAE
New Member
05-20-2020
01:23 PM
I'm also having the same problem. Wish I had an answer for you 😞 What version of ISE are you running.
