C613-50631-01 Rev A Command Reference for IE340 Series 228
AlliedWare Plus™ Operating System - Version 5.5.3-0.x
USER ACCESS COMMANDS
SHOW
AAA LOCAL USER LOCKED
show aaa local user locked
Overview This command displays the failed attempts against each user account attempting
to login into the device, along with the failure times and locations.
Use this command’s output to see if a user is currently locked out or not. You can
check:
• the number of login attempts that have a ‘V’ in the ‘Valid’ column, and
• if the last attempt happened within the lockout time. If the number of ‘V’
attempts exceeds the maximum allowed number of attempts, and the last
attempt is within the lockout time, then the user is locked out.
The maximum number of attempts is 5 by default. You can change it using the
command aaa local authentication attempts max-fail. The lockout time is 5
minutes by default. You can change it using the command aaa local
authentication attempts lockout-time.
Once a user’s lockout status is cleared, this command will no longer display any
failed attempts for that user. The status gets cleared by:
• being manually cleared by another privileged user, using the clear aaa local
user lockout command, or
• the locked out user successfully logs into the system after waiting for the
lockout time to pass.
In the Valid column:
• ‘V’ means this login attempt counts towards the maximum allowed number
of attempts
• ‘I’ means this login attempt does not count towards the maximum allowed
number of attempts, because it was more than 15 minutes ago.
Syntax
show aaa local user locked
Mode User Exec and Privileged Exec
Example To display the current failed attempts for local users, use the command:
awplus# show aaa local user locked
To Next Page
Loading...
Need help?
General
