By default, which two pieces of information does the Cisco WSA access log contain? (Choose two.)
Click on the arrows to vote for the correct answer
A. B. C. D. E.AC.
The Cisco Web Security Appliance (WSA) is a security tool used to protect organizations from web-based threats by monitoring, filtering, and controlling web traffic. The access log feature of the Cisco WSA is used to log all HTTP transactions and requests that pass through the appliance. The access log contains valuable information that can be used for troubleshooting, analysis, and auditing purposes.
By default, the Cisco WSA access log contains the following two pieces of information:
Client IP Address: The IP address of the client machine that initiated the HTTP request. This information is important for identifying the source of web traffic and troubleshooting connectivity issues.
User Agent: The User Agent string is a piece of information included in the HTTP header that identifies the type of web browser or client software used to access the website. This information can be used to optimize web content for specific browsers or to identify potential security risks.
Therefore, the correct answers are options C (Client IP Address) and D (User Agent). The other options listed, HTTP Request Code, Content Type, and Transaction ID, may also be included in the access log, but they are not included by default. These additional pieces of information can be enabled in the access log configuration if required for specific use cases.