?
Solved

Configuring a Radius user accounting server on the Cisco VPN Concentrator 3060 to log when users login to the VPN

Posted on 2011-09-13
2
Medium Priority
?
471 Views
Last Modified: 2012-05-12
I have 3 Cisco VPN Concentrators that are load balanced.  I have IAS configured on two windows 2003 servers for radius authentication.  I need to start logging who and when logs into the VPN.  I know to do this I have to setup an Accounting Server on the VPN Concentrator.  The question I have is, do I choose the IAS server for the Accounting Server?  If so are their any configurations I need in IAS?  Can I log to another server besides the IAS server?  I have a guide from Cisco here in front of me, but it doesn't go to far into setting up accounting servers.  It just shows you where to go to add one, and it says to be sure that any servers you reference are properly configured.  It doesn't say what properly configured means.  Any help would be much appreciated.  Thanks.
0
Comment
Question by:denver218
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 18

Accepted Solution

by:
jmeggers earned 2000 total points
ID: 36530142
I'm not an expert on IAS but I'm sure it will do it.  I don't know exactly what, if anything, you need to do it, but a quick Google yielded the following:
http://technet.microsoft.com/en-us/library/bb742383.aspx

http://technet.microsoft.com/en-us/library/bb742384.aspx

In the 3060, see http://www.cisco.com/en/US/partner/docs/security/vpn3000/vpn3000_47/configuration/guide/servers.html#wpmkr1279893.  

There's a section on adding accounting servers.
0
 
LVL 4

Author Comment

by:denver218
ID: 36538913
I go it working.

In the concentrator I added my IAS server as an accounting server.

In IAS, I clicked on "Remote Access Logging.  In the right pane, right click on "Local File" and go to properties.  On the "Settings" tab, put a check next to what you want to log.  Now click on the "Log File" tab and choose what directory you want the log file to be in.  I clicked OK, and logging started to work.  
0

Featured Post

Fill in the form and get your FREE NFR key NOW!

Veeam® is happy to provide a FREE NFR server license to certified engineers, trainers, and bloggers.  It allows for the non‑production use of Veeam Agent for Microsoft Windows. This license is valid for five workstations and two servers.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

If you’re involved with your company’s wide area network (WAN), you’ve probably heard about SD-WANs. They’re the “boy wonder” of networking, ostensibly allowing companies to replace expensive MPLS lines with low-cost Internet access. But, are they …
A new hacking trick has emerged leveraging your own helpdesk or support ticketing tools as an easy way to distribute malware.
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…
The Email Laundry PDF encryption service allows companies to send confidential encrypted  emails to anybody. The PDF document can also contain attachments that are embedded in the encrypted PDF. The password is randomly generated by The Email Laundr…

649 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question