Solved

Configuring a Radius user accounting server on the Cisco VPN Concentrator 3060 to log when users login to the VPN

Posted on 2011-09-13
2
462 Views
Last Modified: 2012-05-12
I have 3 Cisco VPN Concentrators that are load balanced.  I have IAS configured on two windows 2003 servers for radius authentication.  I need to start logging who and when logs into the VPN.  I know to do this I have to setup an Accounting Server on the VPN Concentrator.  The question I have is, do I choose the IAS server for the Accounting Server?  If so are their any configurations I need in IAS?  Can I log to another server besides the IAS server?  I have a guide from Cisco here in front of me, but it doesn't go to far into setting up accounting servers.  It just shows you where to go to add one, and it says to be sure that any servers you reference are properly configured.  It doesn't say what properly configured means.  Any help would be much appreciated.  Thanks.
0
Comment
Question by:denver218
2 Comments
 
LVL 18

Accepted Solution

by:
jmeggers earned 500 total points
ID: 36530142
I'm not an expert on IAS but I'm sure it will do it.  I don't know exactly what, if anything, you need to do it, but a quick Google yielded the following:
http://technet.microsoft.com/en-us/library/bb742383.aspx

http://technet.microsoft.com/en-us/library/bb742384.aspx

In the 3060, see http://www.cisco.com/en/US/partner/docs/security/vpn3000/vpn3000_47/configuration/guide/servers.html#wpmkr1279893.  

There's a section on adding accounting servers.
0
 
LVL 4

Author Comment

by:denver218
ID: 36538913
I go it working.

In the concentrator I added my IAS server as an accounting server.

In IAS, I clicked on "Remote Access Logging.  In the right pane, right click on "Local File" and go to properties.  On the "Settings" tab, put a check next to what you want to log.  Now click on the "Log File" tab and choose what directory you want the log file to be in.  I clicked OK, and logging started to work.  
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

An overview of HIPAA and guidance on this topic that Experts Exchange members can offer.
These days, all we hear about hacktivists took down so and so websites and retrieved thousands of user’s data. One of the techniques to get unauthorized access to database is by performing SQL injection. This article is quite lengthy which gives bas…
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, just open a new email message. In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
A simple description of email encryption using a secure portal service. This is one of the choices offered by The Email Laundry for email encryption. The other choices are pdf encryption which creates an encrypted pdf of your email and any attachmen…

911 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

21 Experts available now in Live!

Get 1:1 Help Now