[x]

HWTACACS configuration commands > display hwtacacs

 

 Next

display hwtacacs

Syntax

display hwtacacs [ hwtacacs-scheme-name [ statistics ] ] [ slot slot-number ] [ | { begin | exclude | include } regular-expression ]

View

Any view

Default level

2: System level

Parameters

hwtacacs-scheme-name: HWTACACS scheme name.

statistics: Displays the statistics for the HWTACACS servers specified in the HWTACACS scheme. Without this keyword, the command displays the configuration of the HWTACACS scheme.

slot slot-number: Specifies the configuration or statistics for an IRF member device. The slot-number argument represents the ID of the IRF member device. The value range for the argument depends on the number of member devices and their member IDs in the IRF fabric.

|: Filters command output by specifying a regular expression. For more information about regular expressions, see Fundamentals Configuration Guide.

begin: Displays the first line that matches the specified regular expression and all lines that follow.

exclude: Displays all lines that do not match the specified regular expression.

include: Displays all lines that match the specified regular expression.

regular-expression: Specifies a regular expression, a case-sensitive string of 1 to 256 characters.

Description

Use display hwtacacs to display the configuration of HWTACACS schemes or the statistics for the HWTACACS servers specified in HWTACACS schemes.

If no HWTACACS scheme is specified, the command displays the configuration of all HWTACACS schemes.

Related commands: hwtacacs scheme.

Examples

# Display the configuration of HWTACACS scheme gy.

<Sysname> display hwtacacs gy
HWTACACS scheme name : jj
  Primary Authen Server:
    IP: 3.3.3.3                                  Port: 49     State: Active
    Encryption Key : ******
  Primary Author Server:
    IP: 3.3.3.3                                  Port: 49     State: Active
    Encryption Key : ******
  Primary Account Server:
    IP: 3.3.3.3                                  Port: 49     State: Active
    Encryption Key : ******
  NAS IP address                                 : Not configured
  Authentication key                             : Not configured
  Authorization key                              : Not configured
  Accounting key                                 : Not configured
  Quiet interval(min)                            : 5
  Realtime accounting interval(min)              : 12
  Response timeout interval(sec)                 : 5
  Retransmission times of stop-accounting packet : 100
  Username format                                : with-domain
  Data flow unit                                 : Byte
  Packet unit                                    : one

Table 8: Command output

Field

Description

HWTACACS scheme name

Name of the HWTACACS scheme.

Primary Authen Server

Primary HWTACACS authentication server.

Primary Author Server

Primary HWTACACS authorization server.

Primary Acct Server

Primary HWTACACS accounting server.

Secondary Auth Server

Secondary HWTACACS authentication server.

Secondary Author Server

Secondary HWTACACS authorization server.

Secondary Acct Server

Secondary HWTACACS accounting server.

IP

IP address of the HWTACACS server. If no server is configured.

Port

Service port of the HWTACACS server. If no port configuration is performed, this field displays the default port number.

State

Status of the HWTACACS server: active or blocked.

Encryption Key

Shared key for secure HWTACACS authentication, authorization, or accounting communication, displayed as a series of asterisks (******). If no shared key is configured, this field displays Not configured.

This shared key is used only when no specific shared key is specified for the RADIUS server.

NAS IP Address

Source IP address for outgoing HWTACACS packets.

Authentication key

Shared key for secure HWTACACS authentication, communication, displayed as a series of asterisks (******). If no shared key is configured, this field displays Not configured.

Authorization key

Shared key for secure HWTACACS authorization communication, displayed as a series of asterisks (******). If no shared key is configured, this field displays Not configured.

Accounting key

Shared key for secure HWTACACS accounting communication, displayed as a series of asterisks (******). If no shared key is configured, this field displays Not configured.

Quiet interval(min)

Quiet period for the primary servers, in minutes.

Realtime accounting interval(min)

Real-time accounting interval, in minutes.

Response timeout interval(sec)

HWTACACS server response timeout period, in seconds.

Retransmission times of stop-accounting packet

Number of stop-accounting packet transmission attempts.

Username format

Format for the usernames sent to the HWTACACS server:

  • with-domain—Includes the domain name.

  • without-domain—Excludes the domain name.

  • keep-original—Forwards the username as the username is entered.

Data flow unit

Measurement unit for data flows.

Packet unit

Measurement unit for packets.

# Display the statistics for the servers specified in HWTACACS scheme gy.

<Sysname> display hwtacacs gy statistics
Slot: 1
---[HWTACACS template gy primary authentication]---
HWTACACS server open number: 10
HWTACACS server close number: 10
HWTACACS authen client access request packet number: 10
HWTACACS authen client access response packet number: 6
HWTACACS authen client unknown type number: 0
HWTACACS authen client timeout number: 4
HWTACACS authen client packet dropped number: 4
HWTACACS authen client access request change password number: 0
HWTACACS authen client access request login number: 5
HWTACACS authen client access request send authentication number: 0
HWTACACS authen client access request send password number: 0
HWTACACS authen client access connect abort number: 0
HWTACACS authen client access connect packet number: 5
HWTACACS authen client access response error number: 0
HWTACACS authen client access response failure number: 0
HWTACACS authen client access response follow number: 0
HWTACACS authen client access response getdata number: 0
HWTACACS authen client access response getpassword number: 5
HWTACACS authen client access response getuser number: 0
HWTACACS authen client access response pass number: 1
HWTACACS authen client access response restart number: 0
HWTACACS authen client malformed access response number: 0
HWTACACS authen client round trip time(s): 5
---[HWTACACS template gy primary authorization]---
HWTACACS server open number: 1
HWTACACS server close number: 1
HWTACACS author client request packet number: 1
HWTACACS author client response packet number: 1
HWTACACS author client timeout number: 0
HWTACACS author client packet dropped number: 0
HWTACACS author client unknown type number: 0
HWTACACS author client request EXEC number: 1
HWTACACS author client response error number: 0
HWTACACS author client response EXEC number: 1
HWTACACS author client round trip time(s): 3
---[HWTACACS template gy primary accounting]---
HWTACACS server open number: 0
HWTACACS server close number: 0
HWTACACS account client request packet number: 0
HWTACACS account client response packet number: 0
HWTACACS account client unknown type number: 0
HWTACACS account client timeout number: 0
HWTACACS account client packet dropped number: 0
HWTACACS account client request command level number: 0
HWTACACS account client request connection number: 0
HWTACACS account client request EXEC number: 0
HWTACACS account client request network number: 0
HWTACACS account client request system event number: 0
HWTACACS account client request update number: 0
HWTACACS account client response error number: 0
HWTACACS account client round trip time(s): 0

prev

 

up

 next

data-flow-format (HWTACACS scheme view) 

home

 display stop-accounting-buffer (for HWTACACS)

© Copyright 2016 Hewlett Packard Enterprise Development LP