I am almost embarrased to ask this but a search of the device and the help files does not answer a simple question: How do you log user activity over the VPN? I can find nothing that describes how to turn this type of logging on or if it is on by default where the information would be?
Im not sure if your question entails syslog realtime activity or RA sessions but I'll try coverying both, if you are using ASDM you can see statistics on RA vpn users under monitoring.
On top menu ASDM go to Monitoring/VPN/Vpn Statistics/Sessions
show vpn-sessiondb remote <- For RA sessions
you may also issue
show vpn-sessiondb remote ? for other obtions like webvpn etc..
Above will provide you with RA current connections but not activity
The actual activity should be sees in ASDM realtime syslog messages under HOME/latest ASDM syslog messages - this is internal ASDM buffer .
Now if you want to be real pickie about loggin vpn sessions activity you can configure syslog server apply loggin filters by event class, I have not personally use but it can be done, but generally most use real time log or configure syslog server to capture all activity from ASDM realtime activity.
Thanks very much for your reply! I have found the menu selections that you referenced and agree that they will show me what is currently happening. What I would like to do is to log the date/time/user/online time etc so that I can review it at any time.
Considering all the other things that this appliance does I am surprised that I can't find how to do this one!
DocumentationCode download linksGoalRequirementLimitationsSupported ISR
and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and
UCS-E Blades:Step by Step ConfigurationConfigure one of the connectivity
options to access the Cisco IMC from the n...
Firepower Threat Defense (NGFWv) on UCS E-series - Transparent Mode in
HA DocumentationCode download linksGoalRequirementLimitationsSupported
ISR and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and
UCS-E Blades:Step by Step ConfigurationCo...
Question I am currently unable to specify "crypto keyring" command when
configuring VPN connection on my cisco 2901 router. The following
licenses have been activated on my router :