https://community.cisco.com/t5/network-security/vpn-connection-log-activity/m-p/1698746#M534747 <HTML><HEAD></HEAD><BODY><P>Hi Dipak,</P><P></P><P>Enable the following:</P><P></P><PRE>logging class vpn buffered debugging //to log to the buffer<BR /><PRE>logging class vpn trap debugging //to log to a syslog server<BR /><PRE>logging class vpnc buffered debugging //logging for vpn client activities<BR /></PRE> <BR /><BR />Hope this helps!<BR /><BR />Regards,<BR />Anu<BR /><BR />P.S. Please mark this question as resolved if it has been answered. Do rate <BR />helpful posts.<BR /></PRE> <BR /><BR /></PRE></BODY></HTML> Thu, 28 Jul 2011 16:45:34 GMT Anu M Chacko 2011-07-28T16:45:34Z https://community.cisco.com/t5/network-security/vpn-connection-log-activity/m-p/1698745#M534746 <P>Hello,</P><P></P><P></P><P>We have configured client to site vpn at one of our client site and it's running properly, but we are unable to monitor the vpn connection log. We have configured syslog server for the same. The user are authenticating from the local database of ASA. We have configured the following thing at ASA for VPN connection logging:</P><P></P><P><STRONG>ASA# </STRONG></P><P>logging enable</P><P>logging timestamp</P><P>logging standby</P><P>logging console informational</P><P>logging monitor informational</P><P>logging trap informational</P><P>logging history informational</P><P>logging asdm informational</P><P>logging facility 23</P><P></P><P>logging host INSIDE 172.21.15.10(Syslog server IP)</P><P></P><P>The asdm and syslog server are not capturing the log of VPN Connectin. The client want the following log information of VPN Connection.</P><P></P><P>1. VPN login and exit time.</P><P>2. VPN login username and password</P><P>3. If possible, what they have done after logging.</P><P></P><P>Please help me to solve this issue.</P><P></P><P>Thanks a lot for your support.</P><P></P><P>Regards</P><P>Dipak</P> Mon, 11 Mar 2019 21:05:08 GMT https://community.cisco.com/t5/network-security/vpn-connection-log-activity/m-p/1698745#M534746 dipak jaiswal 2019-03-11T21:05:08Z https://community.cisco.com/t5/network-security/vpn-connection-log-activity/m-p/1698746#M534747 <HTML><HEAD></HEAD><BODY><P>Hi Dipak,</P><P></P><P>Enable the following:</P><P></P><PRE>logging class vpn buffered debugging //to log to the buffer<BR /><PRE>logging class vpn trap debugging //to log to a syslog server<BR /><PRE>logging class vpnc buffered debugging //logging for vpn client activities<BR /></PRE> <BR /><BR />Hope this helps!<BR /><BR />Regards,<BR />Anu<BR /><BR />P.S. Please mark this question as resolved if it has been answered. Do rate <BR />helpful posts.<BR /></PRE> <BR /><BR /></PRE></BODY></HTML> Thu, 28 Jul 2011 16:45:34 GMT https://community.cisco.com/t5/network-security/vpn-connection-log-activity/m-p/1698746#M534747 Anu M Chacko 2011-07-28T16:45:34Z https://community.cisco.com/t5/network-security/vpn-connection-log-activity/m-p/1698747#M534748 <HTML><HEAD></HEAD><BODY><P>Hi,</P><P></P><P>Thanks a lot for your support. It's working now. I have some query which are mentioned below :</P><P></P><P>1. It's showing only the login time, but not the logout time.</P><P>2. If client is doing any activities, it's not showing at syslog server.</P><P>3. Suppose a client connect or logout via vpn, at the same time mail will be generated by ASA&nbsp; to the concerned mail id that from this ip with user id and time mentioned in the maid id, has logged in or logged out. Is it possibe ?</P><P></P><P>Thanks a lot in advance.</P><P></P><P>Regards</P><P>Dipak</P></BODY></HTML> Fri, 29 Jul 2011 08:28:05 GMT https://community.cisco.com/t5/network-security/vpn-connection-log-activity/m-p/1698747#M534748 dipak jaiswal 2011-07-29T08:28:05Z https://community.cisco.com/t5/network-security/vpn-connection-log-activity/m-p/1698748#M534749 <HTML><HEAD></HEAD><BODY><P> Hello,</P><P></P><P>Try if this helps.. When you enable 'logging buffered debugging'&nbsp; - you can see all the logs with message ID#. Select the messages you want to get emails for and add the logging list...</P><P></P><P>logging list ASA_CRITICAL message &lt;#&gt; : Single message id</P><P>logging list ASA_CRITICAL message &lt;# - #&gt; Range of messages</P><P>logging trap ASA_CRITICAL</P><P>logging from-address <A href="mailto:RBD-ASA@silverpointcapital.com">ASA@companyname.com</A></P><P>logging recipient-address name<A href="mailto:msheik@silverpointcapital.com">@comapnyname.com</A></P><P>smtp-server <SERVER ip=""></SERVER></P><P></P><P>With the config I use on my ASA, I receive emails for any commands run on ASA and when the user (not the VPN user, </P><P>but the ASA logged in admin) logged out etc.</P><P></P><P>hth</P><P>MS</P></BODY></HTML> Fri, 29 Jul 2011 20:31:22 GMT https://community.cisco.com/t5/network-security/vpn-connection-log-activity/m-p/1698748#M534749 mvsheik123 2011-07-29T20:31:22Z