Security

Hi,

We want to keep track of users login times, user IDs and the device they login from (may be mac address). We are using dot1x auth on SSID. Dot1x authenticate against our nps server. 

Any ideas to achieve this? Can I get the details from controller and logs it somewhere?

You would want to turn up RADIUS accounting. You will need some type of SQL server for NPS to store the data.

On the controller side, you would simply enable a RADIUS accounting server group.

Here's a doc from Microsoft on setting it up with NPS:

http://technet.microsoft.com/en-us/library/cc754123.aspx

Thanks for your prompt response. I will try that and will get back to you.

Where i can define accounting server on controller?

Inside your AAA profile. You'll probably use the same server group as 802.1X.

Completely forgot, sorry. 

Working on it at the moment.

Thanks

Thanks for helping me with this. I have configured it. I am getting user name and time stamp but what I also need is user IP address which I am not getting. We want to log what IP user has at the time of login to track the details. Is it possible?

I only get the IP address of our controller as client.

I am sorry spoken too soon. Yes I am getting everything what I need.

Thanks a bunch