Deprovisioning Cisco Security Analytics and Logging (SaaS)

If you allow your Cisco Security Analytics and Logging (SaaS) paid subscription to lapse, collection of new events stops immediately. After 90 days from expiry, you can longer be able to view or query your existing event data. You have a grace period of 180 days to renew your subscription.

If you allow the 180-day grace period to lapse, the system purges all of your event data. You can no longer view security events on the Event Logging page, nor have dynamic entity modeling behavioral analytics applied to your security events and network flow data.