Remote Access Logging
Updated: January 21, 2005
Applies To: Windows Server 2003, Windows Server 2003 R2, Windows Server 2003 with SP1, Windows Server 2003 with SP2
Remote access logging
This section contains information about remote access logging in IAS. There are three types of logging:
Event logging for IAS
Event logging is the recording of IAS events in the system event log. It is used primarily for auditing and troubleshooting connection attempts.
Logging user authentication and accounting requests
Recording user authentication and accounting requests in log files is used primarily for connection analysis and billing purposes, and is also useful as a security investigation tool, providing you with a method of tracking down the activity of a malicious user after an attack.
SQL Server database logging
Recording user authentication and accounting requests in a SQL Server XML-compliant database enables multiple IAS servers to share one data source, and provides the advantages of using a relational database.
You can configure IAS in Windows Server 2003, Standard Edition, with a maximum of 50 RADIUS clients and a maximum of 2 remote RADIUS server groups. You can define a RADIUS client using a fully qualified domain name or an IP address, but you cannot define groups of RADIUS clients by specifying an IP address range. If the fully qualified domain name of a RADIUS client resolves to multiple IP addresses, the IAS server uses the first IP address returned in the DNS query. With IAS in Windows Server 2003, Enterprise Edition, and Windows Server 2003, Datacenter Edition, you can configure an unlimited number of RADIUS clients and remote RADIUS server groups. In addition, you can configure RADIUS clients by specifying an IP address range.