Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Client VPN to PIX - How to identify attached user

Using the client VPN software to allow remote users to connect to a PIX I know I can do the sho crypto and sho isakmp and identify the IP address of who is attached - can also get that from the log BUT....how can I tell what user account they authenticated with?

5 REPLIES
Gold

Re: Client VPN to PIX - How to identify attached user

Try command

show uauth

If you have also authentication for internet and you have lot of authenticated users you can grep output with command

sh uauth | i ipsec

M.

hope that helps rate if it does

New Member

Re: Client VPN to PIX - How to identify attached user

Thank you for the response but it did not provide me the user who is authenticated. The "sho crypto isakmp sa" gives me IP addresses of MYPIX and the connected client but the uauth shows only zeros under all columns.

MYPIX-515# sh uauth

Current Most Seen

Authenticated Users 0 0

Authen In Progress 0 0

MYPIX-515#

Silver

Re: Client VPN to PIX - How to identify attached user

Try to issue the command:

show crypto iskamp sa detail

It will show you the connected IP, Encryption type etc...

Please rate if I could help,

Regards,

New Member

Re: Client VPN to PIX - How to identify attached user

Try this command

Show vpn-sessiondb remote detail

I think that will do it

HTH

Bill

Re: Client VPN to PIX - How to identify attached user

Hi .. make sure you enable logging to your buffer at least information level and try

sh logging | inc 109011

event 109011 should provide you this info ..

I hope it helps .. please rate it if it does !!!

190
Views
0
Helpful
5
Replies
CreatePlease login to create content