09-04-2007 01:17 PM - edited 02-21-2020 03:15 PM
Is it possible to have a log of VPN clients accessing the ASA5520?
09-10-2007 12:53 PM
The VPN Client saves the information to the Client install directory, which by default is the pathname Program Files\Cisco Systems VPN Client\VPN Client\Logs. The default file name includes the word "LOG" and is based on the date and time (in 24-hour format) that the log file was created; for example, LOG-yyyy-MM-dd-hh-mm-ss.txt. This new format complies with the ISO 8601 extended specification for representations of dates and times and avoids issues with localization. The new log file names have a chronological order that is the same as their alphanumeric order. This provides for a method of enumerating only the log files generated by the GUI.
09-11-2007 01:58 AM
YES,
u can see the log like which user has logged, what time he has logged in, from which ip address he has logged, how long he has been logged in, all it is possbile by having TACACS server.
09-11-2007 05:04 AM
Could you please give more details? I have a TACACS server running, what commands do I need to add to my config to make this possible.
Thanks much,
09-11-2007 05:18 AM
Please find configuration in the following web site.
09-11-2007 06:03 AM
Thanks. However, this link doesn't refer to VPN users. We authenticate our VPN users against our Active Directory. We use TACACS to authenticate users (engineers) to the devices.
09-13-2007 11:19 AM
You could log your VPN events to a syslog server; thats what I do. So I can go back and see what time and from what IP a user connected, what internal IP they were assigned, and when they disconnected.
09-13-2007 11:23 AM
what level of logging will allow me to gather that information? Thanks
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide