Manualshelf

R3166-R3206-HP High-End Firewalls Access Control Command Reference-6PW101

ManualsBrandsHP ManualsComputer AccessoriesHP 7100/7200 IPsec dl Module
71727374757677787980
72
mac mac-address: Specifies the user connections of a MAC address, with mac-address in the format
H-H-H.
ucibindex ucib-index: Specifies the user connection that uses the connection index. The value range from
0 to 4294967295.
user-name user-name: Specifies the user connections that use the username. The user-name argument is
a case-sensitive string of 1 to 80 characters. For a username entered without a domain name, the system
assumes that the user is in the default domain name or the mandatory authentication domain.
vlan vlan-id: Specifies the user connections of a VLAN, with vlan-id ranging from 1 to 4094.
Description
Use the display connection command to display information about AAA user connections.
This command does not display information about FTP user connections.
With no parameter specified, this command displays brief information about all AAA user connections.
If you specify the ucibindex ucib-index combination, this command displays detailed information;
otherwise, this command displays brief information.
If an interface is configured with a mandatory authentication domain (for example, an 802.1X
mandatory authentication domain), the device uses the mandatory authentication domain to perform
authentication, authorization, and accounting for users who access the interface through the specified
access type. To display connections of such users, use the display connection domain isp-name
command and specify the mandatory authentication domain.
How the device displays the username of a user on an interface configured with a mandatory
authentication domain depends on the format of the username entered by the user at login:
If the username does not contain the character @, the device displays the username in the format
username @mandatory authentication domain name.
If the username contains the character @, the device displays the entered username. For example,
if a user entered the username aaa@123 at login and the name of the mandatory authentication
domain is dom, the device displays the username aaa@123, rather than aaa@123@dom.
Related commands: cut connection.
Examples
# Display information about all AAA user connections.
<Sysname> display connection
Index=1 ,Username=telnet@system
IP=10.0.0.1
Total 1 connection(s) matched.
# Display information about AAA user connections using the index of 0.
<Sysname> display connection ucibindex 0
Index=0 , Username=telnet@system
IP=10.0.0.1
Access=Admin ,AuthMethod=PAP
Port Type=Virtual ,Port Name=N/A
Initial VLAN=999, Authorized VLAN=20
ACL Group=Disable
User Profile=N/A
CAR=Disable