Re: No caller ID in ACS Passed Authentication logs

jlhainy · ‎07-18-2007

I am running ACS 3.3(4) and a VPN Concentrator 3000. The VPN accepts IPSec or SSL vpn connections. The vpn also authenticates users via RADIUS on the ACS server.

Usually when someone authenticates on the vpn or anywhere else for that matter, the source IP address (caller-ID) is recorded in the Passed Authentications log. I have noticed that when users use the SSL VPN, that caller-ID or source IP is not recorded. Does anyone know why this is & how I can fix it? I really like having the source IP in those passed authentication logs, that way I know where they are establishing their sessions from.

fmeetz · ‎07-24-2007

If appropriate levels of AAA logging are enabled on the RAS/NAS devices and/or ACS server then the use of Downloadable IP ACL names as user names may be clearly identified. AAA log entries for the RAS/NAS device as well as "passed authentication" log entries on the ACS server would indicate that a user with a username based on a Downloadable IP ACL requested and was granted network access.

cosmofonit · ‎07-03-2008

Does anyone find solution for this?