What's New in AsyncOS 13.7
Feature |
Description |
---|---|
Retrieving log information using AsyncOS APIs |
You can now retrieve the following log details from your appliance using AsyncOS APIs:
For more information, see the “Logging APIs” section in the AsyncOS 13.7 API for Cisco Email Security Appliances - Getting Started Guide. |
Recording AAA (Authentication, Authorization, and Accounting) events using Audit Logs |
The Cisco Email Security appliance supports a new type of log subscription – ‘Audit Logs’ that records AAA (Authentication, Authorization, and Accounting) events. Some of the audit log details are as follows:
For more information, see Logging. |
Configuring OpenID Connect 1.0 on Email Gateway for AsyncOS APIs |
The Cisco Email Security gateway supports integration with applications or clients that use Identity Providers (IDPs) with OpenID Connect 1.0 authentication to connect seamlessly with AsyncOS APIs available in your email gateway. Currently, your email gateway has been certified with OpenID Connect using Microsoft AD FS only. For more information, see System Administration and the CLI Reference Guide for AsyncOS for Cisco Email Security Appliances. |
New Access Privilege – Log Subscription for Delegated Administrators |
A new access privilege option - Log Subscription is added in the System Administration > User Role page in the web interface of your appliance. Use the Log Subscription option to define whether delegated administrators assigned to the custom user role can access log subscriptions or Logging APIs to view or download log files. For more information, see Distributing Administrative Tasks. |
Configuring Email Gateway to consume SecureX Threat Response Feeds |
You can configure your email gateway to consume threat feeds from the Cisco SecureX Threat Response portal. The Cisco SecureX Threat Response portal allows you to create custom feeds for the continuous gathering of observables and to consume them in your email gateway using the feed URL. A feed is a simple list of observables in JSON format. The feeds are created and managed in the Intelligence > Feeds page in the SecureX Threat Response portal. For more information, see Configuring Email Gateway to Consume External Threat Feeds. |