Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 5 replies
  • Subscribers 1 subscriber
  • Views 2886 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Remote Access logging REF_AaaUse1 and REF_AaaUse2

alehman
I see user names "REF_AaaUse1" and "REF_AaaUse2" occasionally in my Remote Access session logs. Does anyone know what these are? I use Active Directory backend authentication and most sessions are logged with correct user id's.


This thread was automatically locked due to age.
Parents
  • 0
    I don't see any users or other definitions with names like that. I tried resolve REF_ and these appear to be recognized as VPN peers:

    'realname' => 'SSL VPN peer REF_SslSer***'

    Where "***" is the name of one of my site-to-site peers. Not sure why it would be showing up as a remote access connection though.
Reply
  • 0
    I don't see any users or other definitions with names like that. I tried resolve REF_ and these appear to be recognized as VPN peers:

    'realname' => 'SSL VPN peer REF_SslSer***'

    Where "***" is the name of one of my site-to-site peers. Not sure why it would be showing up as a remote access connection though.
Children
No Data