You are here: Home > CLI Commands > Just_CLI_Topics > aaa_auth_survivability

aaa auth-survivability

aaa auth-survivability

cache-lifetime

enable

server-cert

Description

This command configures Authentication Survivability on a  managed device.

Syntax

Parameter

Description

Default

cache-lifetime <hrs>

This parameter specifies the lifetime in hours for the cached access credential in the local Survival Server. When the specified cache-lifetime expires, the cached access credential is deleted from the managed device.

The valid range is from 1 to 72 hours.

24 hours

enable

This parameter controls whether to use the Survival Server when no other servers in the server group are in-service.

This parameter also controls whether to store the user access credential in the Survival Server when it is authenticated by an external RADIUSRemote Authentication Dial-In User Service. An Industry-standard network access protocol for remote authentication. It allows authentication, authorization, and accounting of remote users who want to access network resources.  or LDAPLightweight Directory Access Protocol. LDAP is a communication protocol that provides the ability to access and maintain distributed directory information services over a network. server in the server group. Authentication Survivability is enabled or disabled on each managed device.

NOTE: Authentication survivability will not activate if the Authentication Server Dead Time is configured as 0

Disabled

server-cert

This parameter allows you to view the name of the server certificate used by the local Survival Server. The local Survival Server is provided with a default server certificate from AOS. The customer server certificate must be imported into the managed device first, and then you can assign the server certificate to the local Survival Server.

NOTE: In the deployment environment, it is recommended that you switch to a customer server certificate.

Usage Guidelines

Use this command to configure authentication survivability on Mobility Master mode in the managed device node.

Command History

Release

Modification

ArubaOS 8.0.0.0

Command introduced.

Command Information

Platforms

License

Command Mode

All platforms

Base operating system.

Config mode on Mobility Master.

/*]]>*/