No relevant resource is found in the selected language.

This site uses cookies. By continuing to browse the site you are agreeing to our use of cookies. Read our privacy policy>Search


To have a better experience, please upgrade your IE browser.


S12700 V200R011C10 Configuration Guide - User Access and Authentication

This document describes the working mechanisms, configuration procedures, and configuration examples of User Access and Authentication features, such as AAA, DAA, NAC, PPPoE, Policy Association, and IP session.
Rate and give feedback:
Huawei uses machine translation combined with human proofreading to translate this document to different languages in order to help you better understand the content of this document. Note: Even the most advanced machine translation cannot match the quality of professional translators. Huawei shall not bear any responsibility for translation accuracy and it is recommended that you refer to the English document (a link for which has been provided).
Verifying the Local Authentication and Authorization Configuration

Verifying the Local Authentication and Authorization Configuration


  • Run the display aaa configuration command to check the AAA summary.
  • Run the display authentication-scheme [ authentication-scheme-name ] command to verify the authentication scheme configuration.
  • Run the display authorization-scheme [ authorization-scheme-name ] command to verify the authorization scheme configuration.
  • To verify information about access users, run the following commands:

    • display access-user [ domain domain-name | interface interface-type interface-number [ vlan vlan-id [ qinq qinq-vlan-id ] ] | ip-address ip-address [ vpn-instance vpn-instance-name ] | ipv6-address ipv6-address | access-slot slot-id ] [ detail ]
    • display access-user username user-name [ detail ]
    • display access-user ssid ssid-name
    • display access-user [ mac-address mac-address | service-scheme service-scheme-name | user-id user-id | statistics ]
    • display access-user access-type { admin [ ftp | ssh | telnet | terminal | web ] | ppp } [ username user-name ]
    • display access-user work-group { work-group-id | default }

  • Run the display authentication ipv6-statistics status command to check whether IPv6 statistics collection takes effect.
  • Run the display domain [ name domain-name ] command to verify the domain configuration.
  • Run the display local-user [ domain domain-name | state { active | block } | username username ] * command to check the brief information about local users.
  • Run the display local-aaa-user password policy { access-user | administrator } command to display the password policy for local users.
  • Run the display local-user expire-time command to verify the time when the local account expires.
  • Run the display aaa statistics access-type-authenreq command to verify the number of authentication requests.
Updated: 2019-10-21

Document ID: EDOC1000178117

Views: 120078

Downloads: 55

Average rating:
This Document Applies to these Products
Related Version
Related Documents
Previous Next