No relevant resource is found in the selected language.

This site uses cookies. By continuing to browse the site you are agreeing to our use of cookies. Read our privacy policy>Search

Reminder

To have a better experience, please upgrade your IE browser.

upgrade

FITAP V200R010C00 Command Reference

Rate and give feedback :
Huawei uses machine translation combined with human proofreading to translate this document to different languages in order to help you better understand the content of this document. Note: Even the most advanced machine translation cannot match the quality of professional translators. Huawei shall not bear any responsibility for translation accuracy and it is recommended that you refer to the English document (a link for which has been provided).
display aaa configuration

display aaa configuration

Function

The display aaa configuration command displays the AAA configurations, for example, the domain, authentication scheme, authorization scheme, and accounting scheme.

NOTE:

Only branch APs support this command.

Format

display aaa configuration

Parameters

None

Views

All views

Default Level

1: Monitoring level

Usage Guidelines

AAA configurations are limited by system specifications. Before performing AAA configurations, run the display aaa configuration command to check whether there are sufficient resources.

Example

# Display the AAA summary.

<Huawei> display aaa configuration

  Domain Name Delimiter            : @
  Domainname parse direction       : Left to right
  Domainname location              : After-delimiter
  Administrator user default domain: d
  Normal user default domain       : d
  Domain                           : total: 64      used: 11
  Authentication-scheme            : total: 64      used: 5
  Accounting-scheme                : total: 64      used: 4
  Authorization-scheme             : total: 64      used: 3
  Service-scheme                   : total: 64      used: 3
  Recording-scheme                 : total: 64      used: 0
  Local-user                       : total: 1000    used: 7
  Local-user block retry-interval  : 30 Min(s)
  Local-user block retry-time      : 5
  Local-user block time            : 30 Min(s)
  Remote-user block retry-interval : 5 Min(s)
  Remote-user block retry-time     : 3
  Remote-user block time           : 5 Min(s) 
  Session timeout invalid enable   : Yes
Table 13-2  Description of the display aaa configuration command output

Item

Description

Domain Name Delimiter

Domain name delimiter, which can be any of the following characters: \ / : < > | @ ' %. The default domain name delimiter is @.

Domain

Number of domains.
  • total: indicates the total number of domains that can be created.
  • used: indicates the number of domains that have been created.

Domainname parse direction

Parsing direction of the user name and domain name.

  • Left to right
  • Right to left

Domainname location

Domain name location.

  • After-delimiter: The domain name is placed behind the domain name delimiter.
  • Before-delimiter: The domain name is placed before the domain name delimiter.

Administrator user default domain

Domain name of administrator users.

Normal user default domain

Domain name of normal users.

Authentication-scheme

Number of authentication schemes.
  • total: indicates the total number of authentication schemes that can be created.
  • used: indicates the number of authentication schemes that have been created.

Accounting-scheme

Number of accounting schemes.
  • total: indicates the total number of accounting schemes that can be created.
  • used: indicates the number of accounting schemes that have been created.

Authorization-scheme

Number of authorization schemes.
  • total: indicates the total number of authorization schemes that can be created.
  • used: indicates the number of authorization schemes that have been created.

Service-scheme

Number of service schemes.
  • total: indicates the total number of service schemes that can be created.
  • used: indicates the number of service schemes that have been created.

Recording-scheme

Number of recording schemes.
  • total: indicates the total number of recording schemes that can be created.
  • used: indicates the number of recording schemes that have been created.

Local-user

Number of local users.
  • total: indicates the total number of local users that can be created.
  • used: indicates the number of local users that have been created.

Local-user block retry-interval

Authentication retry interval of a local account.

Local-user block retry-time

Maximum number of consecutive authentication failures.

Local-user block time

Locking time of a local account.

Remote-user block retry-interval

Authentication retry interval of a remote AAA authentication user.

Remote-user block retry-time

Maximum number of consecutive authentication failures.

Remote-user block time

Locking time of a remote AAA authentication user.

Session timeout invalid enable
  • Yes: The device will not disconnect or reauthenticate users when the RADIUS server delivers session-timeout with value 0.
  • No: The device will disconnect or reauthenticate users when the RADIUS server delivers session-timeout with value 0.
Related Topics
Translation
Download
Updated: 2019-05-14

Document ID: EDOC1100064353

Views: 88125

Downloads: 61

Average rating:
This Document Applies to these Products
Related Documents
Related Version
Share
Previous Next