Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements
Webcast-Catalyst9k
New Member

RAS AS-5300 Trap Configuration

I am trying to setup enhanced monitoring of all inbound RAS access attempts to avoid intrusion from former employees. I need to capture inbound caller ID on a pri (TELCO can enable this {for a fee}). Also need time stamped user IDs attempted and passwords sent to RADIUS (NDS). Thanks in advance for any help.

1 REPLY
Bronze

Re: RAS AS-5300 Trap Configuration

CLID, userID, and password (although with CHAP that will not be recoverable) are available a few ways. The first, as you suggest, would be via AAA (RADIUS); the ACCESS ACCEPT message that the NAS sends will have this info included. The second would be calltracker (http://www/univercd/cc/td/doc/product/software/ios122/122cgcr/fdial_c/fnsprt2/dcdmodmg.htm#xtocid24). And the third would be to simply syslog debug, although this would be a last resort. AAA or calltracker are your best solutions.

124
Views
0
Helpful
1
Replies
CreatePlease to create content