HP Intelligent Management Center v5.1 TACACS+ Authentication Manager Administrator Guide
108
authenticated for increasing user privilege level. None indicates any other authentication
service. TAM only supports Login and Enable.
If a field is empty, this field does not serve as a query criterion.
6. Click Query.
The Authentication Log List displays all authentication logs matching the query criteria. To clear the
query criteria, click Reset. The Authentication Log List displays all authentication logs.
Viewing authentication log details
To view detailed information about an authentication log:
1. Click the User tab.
2. Select Device User View > Log Management > AuthN Logs from the navigation tree.
The Authentication Log List displays all authentication logs.
3. Click the Details icon for the authentication log whose detailed information you want to view.
Authentication log details contents
Login Name—Username sent by the device to TAM, which is not the username that a device
user entered when logging in to the device. Login name of a device user contains redundant
information, and needs to be extracted. TAM matches the extracted login name against the
account name and authenticates the user. The rules for extracting the login name are
configured in system parameter configuration. For more information about configuring system
parameters, see "Configuring system parameters."
Account Name—Account name of the device user. Accounts with the name followed by
#delete0# are cancelled accounts
Device User Group—Device user group to which the device user belongs.
Result—Authentication result, Succeeded or Failed.
Failure Reason—Reason for the authentication failure. If the device user passed the
authentication, this field is empty.
Device IP—IP address of the device to which the device user logs in.
User IP—If the service type is Login, this field displays the IP address of the device user. If the
service type is Enable, this field displays 0.0.0.0.
Terminal—If the Service Type is Login, this field displays the terminal that a device user uses to
log in to the device. For example, when a user Telnets to the device, this field displays VTY 0,
VTY 2, and so on. When a user logs in to the device through the console port, this field displays
AUX 0, AUX 1, and so on. If the Service Type is Enable, this field is empty.
Authentication Time—Date and time when the device user was authenticated, in the format of
YYYY-MM-DD hh:mm:ss.
Action—Action corresponding to the authentication. TAM only supports Login Authentication,
so this field always displays Login Authentication.
Privilege Level—Privilege level the device user applied for. If a device user requesting for
authentication applied for privilege level 3, TAM records the authentication logs of the user as
level 3 authentication logs.
Authentication Type—Type of authentication performed for the device user, ASCII, PAP, or
CHAP. This parameter is configured on the device. Most devices only support ASCII.
Service Type—Type of service provided in the authentication. Options include None, Login,
and Enable. Login indicates the user is authenticated for device login. Enable indicates the user