Table of Contents
Advertisement
262
C
21: AAA C
HAPTER
Displaying and
Maintaining AAA
ONFIGURATION
you choose to manually configure the attribute, be sure to configure an
appropriate valid IP address. If this attribute is not configured, the switch will
automatically choose the IP address of a VLAN interface as the NAS-IP-address.
Table 201 Enable the user re-authentication at restart function
Operation
Enter system view
Enter RADIUS scheme view
Enable the user
re-authentication at restart
function
After the above configurations, you can execute the display commands in any
view to view the configuration result and operation status of AAA, RADIUS and
HWTACACS and verify your configuration.
You can use the reset command in user view to clear the corresponding statistics.
Table 202 Display AAA information
Operation
Display configuration
information about one
specific or all ISP domains
Display information about
user connections
Display information about
local users
Command
system-view
radius scheme
radius-scheme-name
accounting-on enable [
send times | interval interval
]
Command
display domain [ isp-name ]
display connection [
access-type { dot1x |
mac-authentication } |
domain isp-name | interface
interface-type
interface-number | ip
ip-address | mac mac-address
| radius-scheme
radius-scheme-name | vlan
vlan-id | ucibindex ucib-index
| user-name user-name ]
display local-user [ domain
isp-name | idle-cut { disable |
enable } | vlan vlan-id |
service-type { ftp |
lan-access | ssh | telnet |
terminal } | state { active |
block } | user-name
user-name ]
Remarks
-
-
By default, this function is
disabled.
If you use this command
without any parameter, the
system will try at most 15
times to send an
Accounting-On message at
the interval of three seconds.
Remarks
You can execute the display
command in any view.
Hide quick links:
Advertisement
Table of Contents
Troubleshooting
