- Silver, 250 points or more
aaa authentication login userauthen group tacacs+
aaa authorization network NETWORK local
crypto map dynmap client authentication list userauthen
crypto map dynmap isakmp authorization list NETWORK
crypto map dynmap client configuration address respond
crypto map dynmap 1 ipsec-isakmp dynamic dynmap
with this commands my vpn client is able to login with the user created locally on the router & looks for TACACS server user account & agains prompts for user name & password, so i enter the TACACS user name & password & i could able to know which users has logged in from which public IP address, but this is getting listed only in PASSED AUTHENTICATION on my Cisco ACS Server, but i wanted them to list in in TACACS ACCOUTING & TACACS ADMINSTRATION, so that i can know which users has logged in & logged out on what time. any help?