HP Intelligent Management Center v5.1 TACACS+ Authentication Manager Administrator Guide
100
9 Managing online users
An online user is a device user that has passed the TAM authentication and logged in to the device.
Operators can view, trace, and maintain online users in the online user list.
Viewing the online user list
To view the online user list:
1. Click the User tab.
2. Select Device User View > All Online Users from the navigation tree.
The Online User List displays all online users. If you hover your mouse over All Online Users, the
Online User List window appears, which displays level 1 device user groups. To view the
sub-group of a device user group, click the Expand button to the left of the user group. Click the
name link of a user group to view its details.
Online user list contents
Account Name—Name of the account. Click the name to view its details. For more information
about device users, see "Viewing device user details."
Login Name—Username sent by the device to TAM. It is not the username that a device user
entered when logging in to the device. Redundant information exists in the login name. TA M
excludes the redundant information according to predefined rules, and then matches the
simplified login name against the account name and authenticates the device user. Assume the
username a device user entered at login is HP\Jack001. The user is required to use domain opt
for authentication and the TACACS+ scheme in domain opt authentication requires that the
username carry domain, so the username that the device sends to TAM is HP\Jack001@opt.
TAM changes the login name to Jack001 according to predefined rules and matches Jack001
against the account name in TAM. The rules for excluding redundant information in a login
name are configured in system parameter configuration. For more information, see
"Configuring system parameters."
Device User Group—Device user group to which an online user belongs.
Authorization Policy—Authorization policy being used by an online user. Click the name to
view its details. For more information about authorization policies, see "Viewing authorization
policy details."
Login Time—Time when an online user logs in to the device, in the format of YYYY-MM-DD
hh:mm:ss.
Online Duration (sec.)—Online duration of an online user. If the device to which the user logs
in sends a Watchdog packet to TAM, TAM updates the online duration of the user accordingly.
If the device does not support sending Watchdog packets to TAM or sending Watchdog
packets is disabled, the online duration of the user is always 0.
Device IP—IP address of the device to which an online user logs in. Click the name link to view
its details. For more information, see "Viewing device details."
Operation—Click the Operation link to open the Operation menu. For an online user not
added to the blacklist, the actions Add to Blacklist and Details are available in the menu. For
a blacklisted user, the actions Remove from Blacklist and Details are available in the menu.
Blacklisting an online user does not affect other logged-in users. However, the blacklisted