Configuration Guide AAA Configuration
Monitoring AAA user
To view the information of the current login users, run the following commands in the privileged
user mode:
show aaa user { id | all }
View the information of the current AAA user.
Configuring Failed Authentication Lockout of Login User
To prevent login user from decoding password, use command to limit the attempt times. If you
has attempted more than the limited times, you will not login during the lockout.
In the global configuration mode, use the following command to configure login parameters:
Enter the global configuration mode.
aaa local authentication attempts
<1-2147483647>
Configure attempt times of login user.
aaa local authentication
lockout-time<1-2147483647>
Configure lockout-time(hour) when the user has
attempted more than the limited times.
show aaa user lockout {all |
user-name <word>}
Display current lockout user list.
clear aaa local user lockout {all |
user-name <word>}
By default, login attempt times is 3 and the lockout time is restricted to be 15
hours.
Configuring Domain-name-based AAA Service
The domain-name-based AAA service configurations include:
Overview
Domain-name-based AAA service configuration tasks
Domain-name-based AAA service configuration note
To Next Page
Loading...
