Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1025
Views
0
Helpful
3
Replies

2821 VPN

victorm
Level 1
Level 1

‎02-27-2012 04:24 PM

Does anyone know how to track user logins with this device?  I've pointed it to a SYSLOG, but it only creates Virtual Access connections, and I don't know who that connection belongs to.  Any help would be greatly appreciated.

Labels:
0 Helpful
3 Replies 3

Marcin Latosiewicz
Cisco Employee
Cisco Employee

‎02-28-2012 12:16 AM

For IPsec, under isakmp profile you can add accounting. 

#crypto isakmp profile 10
% A profile is deemed incomplete until it has match identity statements
R1(conf-isa-prof)#accounting ?
  WORD  Name of accounting list.

Similar possibility exists for webvpn.

M.

0 Helpful

victorm
Level 1
Level 1
In response to Marcin Latosiewicz

‎02-28-2012 05:20 PM

Hi Marcin, i

Did as you suggested, it worked momentarily, i saw my users logging, and thus i was able to track. but then i saved the configuration.  and now i Get

*Feb 29 01:10:59.074: ISAKMP:(1002):ISAKMP/author: No Class attributes

*Feb 29 01:10:59.110: ISAKMP AAA: Update request for Account that was not started

*Feb 29 01:10:59.110: ISAKMP AAA: Calling Start accounting

*Feb 29 01:10:59.110: ISAKMP:(0):AAA: Nas Port ID set to 128.97.214.221.

*Feb 29 01:10:59.114: ISAKMP AAA: callback, bytes_in : 0, bytes_out : 0, packets_in : 0, packets_out : 0

*Feb 29 01:10:59.114: ISAKMP AAA: Peer handle passed to aaapeer_handle = 0x80000003 aaa_uid = 0x1A

*Feb 29 01:10:59.114: ISAKMP AAA: Error setting mlist for session

*Feb 29 01:10:59.114: ISAKMP AAA: Adding AAA attributes for Client user vmendez

*Feb 29 01:10:59.114: ISAKMP AAA: Adding Client Attributes to Accounting Record

*Feb 29 01:10:59.114: ISAKMP AAA: callback, bytes_in : 0, bytes_out : 0, packets_in : 0, packets_out : 0

*Feb 29 01:10:59.114: ISAKMP AAA: Unable to Send AAA Accounting Start

*Feb 29 01:10:59.114: %CRYPTO-4-IPSEC_AAA_START_FAILURE: IPSEC Accounting was unable to send start record

*Feb 29 01:10:59.114: ISAKMP AAA: Unable to send AAA Start Accounting Request

0 Helpful

Marcin Latosiewicz
Cisco Employee
Cisco Employee
In response to victorm

‎02-29-2012 12:34 AM

Victor,

Do you mind opening a TAC case with this info?

Unfortunately I think this will need a bit more information then you can provide over forums.

This MIGHT be related to:

http://tools.cisco.com/Support/BugToolKit/search/getBugDetails.do?method=fetchBugDetails&bugId=CSCse50697

or something similar.

M.

0 Helpful
Customers Also Viewed These Support Documents