Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

No caller ID in ACS Passed Authentication logs

I am running ACS 3.3(4) and a VPN Concentrator 3000. The VPN accepts IPSec or SSL vpn connections. The vpn also authenticates users via RADIUS on the ACS server.

Usually when someone authenticates on the vpn or anywhere else for that matter, the source IP address (caller-ID) is recorded in the Passed Authentications log. I have noticed that when users use the SSL VPN, that caller-ID or source IP is not recorded. Does anyone know why this is & how I can fix it? I really like having the source IP in those passed authentication logs, that way I know where they are establishing their sessions from.

2 REPLIES
Bronze

Re: No caller ID in ACS Passed Authentication logs

If appropriate levels of AAA logging are enabled on the RAS/NAS devices and/or ACS server then the use of Downloadable IP ACL names as user names may be clearly identified. AAA log entries for the RAS/NAS device as well as "passed authentication" log entries on the ACS server would indicate that a user with a username based on a Downloadable IP ACL requested and was granted network access.

New Member

Re: No caller ID in ACS Passed Authentication logs

Does anyone find solution for this?

199
Views
0
Helpful
2
Replies