Solved

Configuring a Radius user accounting server on the Cisco VPN Concentrator 3060 to log when users login to the VPN

Posted on 2011-09-13
2
464 Views
Last Modified: 2012-05-12
I have 3 Cisco VPN Concentrators that are load balanced.  I have IAS configured on two windows 2003 servers for radius authentication.  I need to start logging who and when logs into the VPN.  I know to do this I have to setup an Accounting Server on the VPN Concentrator.  The question I have is, do I choose the IAS server for the Accounting Server?  If so are their any configurations I need in IAS?  Can I log to another server besides the IAS server?  I have a guide from Cisco here in front of me, but it doesn't go to far into setting up accounting servers.  It just shows you where to go to add one, and it says to be sure that any servers you reference are properly configured.  It doesn't say what properly configured means.  Any help would be much appreciated.  Thanks.
0
Comment
Question by:denver218
2 Comments
 
LVL 18

Accepted Solution

by:
jmeggers earned 500 total points
ID: 36530142
I'm not an expert on IAS but I'm sure it will do it.  I don't know exactly what, if anything, you need to do it, but a quick Google yielded the following:
http://technet.microsoft.com/en-us/library/bb742383.aspx

http://technet.microsoft.com/en-us/library/bb742384.aspx

In the 3060, see http://www.cisco.com/en/US/partner/docs/security/vpn3000/vpn3000_47/configuration/guide/servers.html#wpmkr1279893.  

There's a section on adding accounting servers.
0
 
LVL 4

Author Comment

by:denver218
ID: 36538913
I go it working.

In the concentrator I added my IAS server as an accounting server.

In IAS, I clicked on "Remote Access Logging.  In the right pane, right click on "Local File" and go to properties.  On the "Settings" tab, put a check next to what you want to log.  Now click on the "Log File" tab and choose what directory you want the log file to be in.  I clicked OK, and logging started to work.  
0

Featured Post

Best Practices: Disaster Recovery Testing

Besides backup, any IT division should have a disaster recovery plan. You will find a few tips below relating to the development of such a plan and to what issues one should pay special attention in the course of backup planning.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Setting up L2TP/IPsec in RRAS 5 39
How to detect attacks on AWS (ie shimming, Blue Pill, Hyper jumping, etc) 2 58
Wordpress Security 29 48
VPN connection 7 23
One of the biggest threats in the cyber realm pertains to advanced persistent threats (APTs). This paper is a compare and contrast of Russian and Chinese APT's.
It’s the first day of March, the weather is starting to warm up and the excitement of the upcoming St. Patrick’s Day holiday can be felt throughout the world.
Windows 10 is mostly good. However the one thing that annoys me is how many clicks you have to do to dial a VPN connection. You have to go to settings from the start menu, (2 clicks), Network and Internet (1 click), Click VPN (another click) then fi…
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, Just open a new email message.  In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…

837 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question