This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Register Now
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Announcements

SecurID® Discussions

Browse the SecurID discussion board to get product help and collaborate with other SecurID users.
ThomasIwang
Beginner
Beginner
‎2017-03-28 09:35 AM

generate report showing loing and logout ?

Hi

We are using authentication manager 8.2 - the clients are Cisco anyconnect ver 4.x and they are Radius authenticated against this server from a ASA VPN firewall

We try to pull reports showing user activity but there is a small problem there - we can easiely see when the user is logged in but not when the session is teard down again. Is there a limitations here?

 

The asa is using this setup:

aaa-server RSA-RADIUS protocol radius
aaa-server RSA-RADIUS (dmz) host x.x.x.x
 key *****
 authentication-port 1812
 accounting-port 1813

 

br /ti

Labels (1)
0 Likes
Reply
2 Replies
BrianTwomey
Employee
Employee
‎2017-03-28 11:32 AM

Hi Thomas,

 

That's not something that the Authentication Manager would track. Basically we say pass/fail to the authentication request in the beginning of the exchange and then we are out of the picture. We do not monitor the connection.

 

Thank You,

Brian

0 Likes
Reply
ThomasIwang
Beginner
Beginner
In response to BrianTwomey
‎2017-03-29 06:18 AM

Hi Brian

 

Are you sure? See – if we look here: https://community.rsa.com/docs/DOC-59738

 

You can use the Security Console to complete most tasks associated with managing RADIUS day-to-day operations.

Through the Security Console, you can manage the following objects:

· RADIUS servers. Server that receives users' access requests from RADIUS clients and forwards them to Authentication Manager for validation. A RADIUS server also forwards accept or reject messages from Authentication Manager to the requesting clients.

· RADIUS clients. RADIUS-enabled device at the network perimeter that enforces access control for users attempting to access network resources.

· RADIUS profiles. Named collection of checklist and return list attributes that specify session requirements for a user requesting remote network access.

· RADIUS user attributes. RADIUS attributes that you assign to a user or trusted user outside of a profile.

· RADIUS accounting. Usage statistics of the RADIUS servers and clients for billing or auditing purposes.

But I can’t fint any reports that reflects this. If I look at the dropdown below radius this might not be useable for that purpose…

 

Br /thomas iwang

 

Fra: Brian Twomey

Sendt: 28. marts 2017 17:33

Til: Iwang, Thomas

Emne: Ang.: - Re: generate report showing loing and logout ?

 

RSA Link <https://urldefense.proofpoint.com/v2/url?u=https-3A__community.rsa.com_-3Fet-3Dwatches.email.thread&d=DwMFaQ&c=kne2dvCMgnN2K-cxlZBJC3l0HNNb7WroqdHGaKuuoSA&r=ahkE4DXYqIVuTFxiqXzgYhUL64Kw6uer99k0_Ce-dfg&m=e868DrNs3_wlqptRL5TCnHfr2uuJ_woMwQyb4XXZ3JQ&s=uk1XIVUsY4YAlrL8KVFEMpJA_rrvlbCg7I0v6gm5wWg&e=>

 

 

Re: generate report showing loing and logout ?

 

svar fra Brian Twomey<https://urldefense.proofpoint.com/v2/url?u=https-3A__community.rsa.com_people_Za44oSGf4lBcqAg6GLgcZTV1Pw3tNOBAveE1IXxjtvY-3D-3Fet-3Dwatches.email.thread&d=DwMFaQ&c=kne2dvCMgnN2K-cxlZBJC3l0HNNb7WroqdHGaKuuoSA&r=ahkE4DXYqIVuTFxiqXzgYhUL64Kw6uer99k0_Ce-dfg&m=e868DrNs3_wlqptRL5TCnHfr2uuJ_woMwQyb4XXZ3JQ&s=xky7AMCeTfbypGuXXvyXiIbKd--V7B2S9fh0Bqdnm0c&e=> i RSA SecurID Suite - Se den fulde debat<https://urldefense.proofpoint.com/v2/url?u=https-3A__community.rsa.com_message_889645-3FcommentID-3D889645-26et-3Dwatches.email.thread-23comment-2D889645&d=DwMFaQ&c=kne2dvCMgnN2K-cxlZBJC3l0HNNb7WroqdHGaKuuoSA&r=ahkE4DXYqIVuTFxiqXzgYhUL64Kw6uer99k0_Ce-dfg&m=e868DrNs3_wlqptRL5TCnHfr2uuJ_woMwQyb4XXZ3JQ&s=iET6vr7kT5JIR7fU204Qqn0FU0KfFG-MgRUPgYzcx80&e=>

0 Likes
Reply
© 2023 RSA Security LLC or its affiliates. All rights reserved.