No caller ID in ACS Passed Authentication logs

Unanswered Question
Jul 18th, 2007
User Badges:

I am running ACS 3.3(4) and a VPN Concentrator 3000. The VPN accepts IPSec or SSL vpn connections. The vpn also authenticates users via RADIUS on the ACS server.

Usually when someone authenticates on the vpn or anywhere else for that matter, the source IP address (caller-ID) is recorded in the Passed Authentications log. I have noticed that when users use the SSL VPN, that caller-ID or source IP is not recorded. Does anyone know why this is & how I can fix it? I really like having the source IP in those passed authentication logs, that way I know where they are establishing their sessions from.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
fmeetz Tue, 07/24/2007 - 14:15
User Badges:
  • Bronze, 100 points or more

If appropriate levels of AAA logging are enabled on the RAS/NAS devices and/or ACS server then the use of Downloadable IP ACL names as user names may be clearly identified. AAA log entries for the RAS/NAS device as well as "passed authentication" log entries on the ACS server would indicate that a user with a username based on a Downloadable IP ACL requested and was granted network access.

Actions

This Discussion