Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 5 replies
  • Subscribers 1 subscriber
  • Views 2882 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Remote Access logging REF_AaaUse1 and REF_AaaUse2

alehman
I see user names "REF_AaaUse1" and "REF_AaaUse2" occasionally in my Remote Access session logs. Does anyone know what these are? I use Active Directory backend authentication and most sessions are logged with correct user id's.


This thread was automatically locked due to age.
Parents
  • 0
    Version?

    I know that there's an issue in Reporting with logging SSL VPN Remote Access sessions, but I don't think this is related.  I remember an issue from the 8.? beta where "user" info from a site-to-site connection seemed to have sneaked into logs from a Remote Access session.

    Please show the complete log line with several lines before and after to provide context.

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Reply
  • 0
    Version?

    I know that there's an issue in Reporting with logging SSL VPN Remote Access sessions, but I don't think this is related.  I remember an issue from the 8.? beta where "user" info from a site-to-site connection seemed to have sneaked into logs from a Remote Access session.

    Please show the complete log line with several lines before and after to provide context.

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Children
No Data
Share Feedback
×

Submitted a Tech Support Case lately from the Support Portal?