If you haven't already enabled logging: IAS' default configuration doesn't log accepted/rejected authentication attempts in EventLog. You can enable it by opening the IAS Management MMC, right-click "Internet Authentication Service (local)" and select properties. From there, you can select which options you wish to send to the EventLog (shows up as a System event).
You can also configure IAS logging to a file or SQL Server by accessing the Remote Access Logging feature of the IAS MMC. In my experience, this has been helpful for debugging, but not really for seeing who has recently authenticated.
Derek Johnson
Systems Administrator
Fort Hays State University
785.628.5688
[EMAIL PROTECTED]
| Lee Badman <[EMAIL PROTECTED]>
04/25/2006 03:18 PM
|
|
Just getting into IAS as a potential RADIUS server. I'm not yet seeing logs or reporting on failed/passed authentications, user tracking, etc. beyond anemic entries in the event log- am I just not seeing something? Also fooling with ACS, seems to be fairly decent logs, by contrast.
Regards-
Lee
Lee Badman
Network Engineer
CWNA, CWSP
Information Technology and Services
Syracuse University
(315) 443-3003
[EMAIL PROTECTED]
**********
Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/.
smime.p7s
Description: S/MIME Cryptographic Signature
