cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
763
Views
0
Helpful
1
Replies

Some problem migrating from acs 4.x to acs 5.3

dimensyssrl
Level 1
Level 1

Hello all, we are migrating to acs5.3, and we have some problems yes.

- we use an asa5520 like vpn termination point, asa uses acs5.3 for authentication purpose, and all seems to work properly,

but acs5.3 doesn't purge user sessions when vpns terminate; I can see many user "logged-in" into menu

System Administration --> Users --> Purge User Sessions; this is a problem, because we have configured max session per user

how can avoid this problem? is there any new configuration to implement into asa?

- we need to configure max session per user, but there is only a global option applyed to all users

- how can we configure user accounting? we need to know how long a user is connected via vpn session

Thanks a lot.

Daniele

1 Reply 1

camejia
Level 3
Level 3

Hello,

Under the Tunnel-Group configuration have you configured "accounting-server-group "?

The above command should help you logging the RADIUS START and STOP messages for the VPN session, therefore, allowing the ACS to clear the active VPN session.

If this was helpful please rate.

Regards.

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: