08-15-2019 08:00 AM
I am using the Cisco AnyConnect client communicating to a Cisco ISR4331 device to access the back end LAN infrastructure. I have "logging trap" enabled but I'm not able to log users connecting with AnyConnect. It's not generating syslog messages for AnyConnect users for their particular login id(s). Is there something else that I have to enable to capture syslog messages for users connecting with AnyConnect?
GW
08-15-2019 08:28 AM
Hi, I am using FlexVPN Remote Access VPN on my ISR router using certificate authentication. I have the following logging commands configured:-
logging trap debugging
logging facility syslog
logging host 192.168.10.60
The following syslog message below is generated, and this is sent to the syslog server.
%CRYPTO-5-IKEV2_SESSION_STATUS: Crypto tunnel v2 is UP. Peer x.x.x.x:49663 Id: cn=username,cn=Users,dc=lab,dc=local
HTH
08-15-2019 09:28 AM
Here is what I see in the syslog when I entered "logging trap debugging" and "logging facility syslog"
I don't see the cn=username. The id is the identity remote key-id
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide