Applies To:Show Versions
BIG-IQ Centralized Management
- 8.0.0, 7.1.0
About Monitoring APM Data in BIG-IQ
About Access and SWG reports
- Reports on any combination of discovered devices, Access groups, and clusters
- Graphs for typical areas of concern and interest, such as cross-geographical comparisons or top 10 issues
- Tabular data to support the graphs
- Granular user data
- Ability in some screens to drill down from summarized data to details
- Ability to save data to CSV files
Setup requirements for Access and SWG reports
- A BIG-IQ data collection device is configured in the BIG-IQ system.
- Add the BIG-IP devices to the BIG-IQ inventory.
- Discover the BIG-IP devices with the Access service configuration.
- Run the data collection device configuration setup on the devices from the Access Reporting screen.
What data goes into Access reports for the All Devices option?
Create flexible reports using the Access summary dashboard
Managed Devicesor select one or more of these options:
Adjust the time frame to reflect the period for which you would like to view data. You can do this by either: selecting the interval from the
TIMEFRAMEdrop down menu, or by dragging the date selector from the horizontal widget below it.
You can also select a timeframe between two specific dates or before or after a selected date by selecting
Afterand then selecting a date or date range from the calendar widget.
Once you have selected the time frame or date range you are interested in, the data on this dashboard will change to reflect the new time period.
All Active Users
From this dashlet, you can view all unique users with an active session using this device or devices. You can drill down on this information and obtain more data about: top 10 client IP addresses, top 10 countries, top 10 users, top 10 Access profiles, top 10 virtual servers, top 10 client profiles, and top 10 Access policies associated with this metric.
From this widget, you can view all new sessions initiated during the timeframe currently displayed at the top of the page. Select this widget to drill down and obtain more data about: top 10 client IP addresses, top 10 countries, top 10 users, top 10 Access profiles, top 10 virtual servers, top 10 client profiles, and top 10 Access policies associated with this metric.
View the number of unique users during the timeframe specified at the top of the page. Select this widget to drill down and obtain more data about: top 10 client IP addresses, top 10 countries, top 10 users, top 10 Access profiles, top 10 virtual servers, top 10 client profiles, and top 10 Access policies associated with this metric.
From this widget, you can view the number of sessions that have been denied. Select this widget to drill down and obtain more data about: top 10 client IP addresses, top 10 countries, top 10 users, top 10 Access profiles, top 10 virtual servers, top 10 client profiles, and top 10 Access policies associated with this metric.
Active Sessions Over Time
You can track the
Average Establishednumber of sessions in an interval of time, the
Average Attemptednumber of sessions in one interval of time, the
Maximum Establishednumber of sessions in an interval of time, and the
Maximum Attemptednumber of sessions in an interval of time. You can remove any of these components from the graph to focus your report by selecting the name of the component in the ledger at the top right corner of the chart.
The time intervals with the horizontal axis will adjust depending on the length of time you select in the
Timeframewidget at the top of the page. For example, longer time frames will yield larger intervals for data collection and shorter time frames will yield shorter intervals for data collection.
Maximumrefer to the aggregated data in a single unit of time on the horizontal axis. You can check what units of time the graph is using in the top left corner of the chart.
Denied Sessions / Auth Failures Over Time
This widget allows you to track denied sessions and Authentication failures against each other. You can remove either denies sessions or Authentication failures from the data set by selecting either of these components in the legend at the top right corner of the chart.
Top 3 Devices by License Usage
You can view devices by license usage in one of three categories: Access Sessions, Connectivity Sessions, and Secure Web Gateway (SWG) Sessions. Click on any of these categories to view the license usage for each, including the threshold and usage limit of each of the top three devices. By hovering over the bar graph for a device, you can view how many users are licensed for this device (displayed as the
Limit) and how many are currently using it (displayed as
Session Count Distribution Across Countries
Use this widget to select a geographic location to view from the map to view more information about session logon locations in another dashboard. You can also view more data about sessions originating from unknown location by clicking on
Unknown Locationsat the bottom of the dashlet. To zoom in or out on the map widget, use the
Top Users by Session Count
You can view the top 10 users with the most sessions for this device or set of devices. To learn more about the activity of each user, select the name to navigate to a summary dashboard displaying usage data for this user only.
About upgrades affecting reports
Errors with session reports in Access: causes and
- A session is over, but it continues to display in the Active sessions report.
- If a session starts when logging nodes are up and working, but terminates during a period when logging modes are unavailable, the session remains in the Active sessions report for 15 minutes. After 15 minutes, the session status is updated and the session is dropped from the report.
- Active sessions are included in the Summary and Active sessions reports for a device that is no longer managed.
- Sessions were active on a device when it was removed from an Access group and became unmanaged. Sessions that were active when the device became unmanaged remain counted in All Active Sessions on the Summary screen and stay in the Active sessions report until the next session status update, which occurs every 15 minutes.
- A session is over, butSession TerminationandSession Durationare blank in a session report.
- If a session starts when logging nodes are up and working but terminates during a period when logging nodes are unavailable, the session termination is not recorded and the session duration cannot be calculated.
Setting the timeframe for your Access or SWG report
- Add the managed BIG-IP device to the BIG-IQ Centralized Management inventory
- Discover and import the managed BIG-IP device
- Have a BIG-IQ user enable Access remote logging configuration on the managed BIG-IP device
- Access Manager
- Access Deployer
- At the top of the screen, clickMonitoring.
- To set a predefined timeframe, select one of these from theTIMEFRAMElist:Last hour,Last day,Last week,Last 30 days,Last 3 months.
- To set a custom timeframe, select one of these from theTIMEFRAMElist:
- Between: Click each of the additional fields that display to select dates and times. The report displays the records between those dates and times.
- Before: Click the additional fields that display to select a date and a time. The report displays the records before that date and time.
- After: Click the additional fields that display to select a date and a time. The report displays the records after that date and time.