EasyManua.ls Logo

Cisco ASA 5555-X

Cisco ASA 5555-X
2164 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Loading...
1-23
Cisco ASA Series CLI Configuration Guide
Chapter 1 Configuring the Identity Firewall
Monitoring the Identity Firewall
received packets are queried and stored. See Configuring Identity Options, page 1-13 for a description
of these options.
Monitoring Users for the Identity Firewall
You can display information about all users contained in the IP-user mapping database used by the
Identity Firewall.
Use the following options of the show user-identity command to obtain troubleshooting information for
the AD Agent:
show user-identity user all list
show user-identity user active user domain\user-name list detail
These commands display the following information for users:
The default domain name can be the real domain name, a special reserved word, or LOCAL. The Identity
Firewall uses the LOCAL domain name for all locally defined user groups or locally defined users (users
who log in and authenticate by using a VPN or web portal). When default domain is not specified, the
default domain is LOCAL.
The idle time is stored on a per user basis instead of per the IP address of a user.
Note The first three tabs in the
If the commands user-identity action domain-controller-down domain_name
disable-user-identity-rule is configured and the specified domain is down, or if user-identity action
ad-agent-down disable-user-identity-rule is configured and AD Agent is down, all the logged on users
have the status disabled.
domain\user_name Status (active or inactive) Connections Minutes Idle
domain\user_name Active Connections Minutes Idle

Table of Contents

Other manuals for Cisco ASA 5555-X

Related product manuals