You are here: Home > CLI Commands > Just_CLI_Topics > show aaa authentication-server internal

show aaa authentication-server internal

show aaa authentication-server internal [statistics]

Description

View authentication server settings for the internal controller database.

Examples

The output of the command below shows that the internal authentication server has been disabled

 

(host) #show aaa authentication-server internal

 

Internal Server

---------------

Host IP addr Retries Timeout Status

---- ------- ------- ------- ------

Internal 10.168.254.221 3 5 Disabled

The following data columns appear in the output of this command:

Parameter

Description

Host

Name of the internal authentication server.

IP addr

Address of the internal server, in dotted-decimal format.

Retries

Number of retries allowed before the server stops attempting to authenticate a request.

Timeout

Timeout period, in seconds.

Status

Shows if the server is enabled of disabled

Include the statistics parameter to display additional details for the internal server.

 

(host) #show aaa authentication-server internal statistics

 

Internal Database Server Statistics

-----------------------------------

PAP Requests 8

PAP Accepts 8

PAP Rejects 0

MSCHAPv2 Requests 0

MSCHAPv2 Accepts 0

MSCHAPv2 Rejects 0

Mismatch Response 0

Users Expired 1

Unknown Response 0

Timeouts 1

AvgRespTime (ms) 0

Uptime (d:h:m) 4:3:32

SEQ first/last/free 1,255,255

The following data columns appear in the output of this command:

Parameter

Description

PAPPassword Authentication Protocol. PAP validates users by password. PAP does not encrypt passwords for transmission and is thus considered insecure. Requests

Number of PAPPassword Authentication Protocol. PAP validates users by password. PAP does not encrypt passwords for transmission and is thus considered insecure. requests received by the internal server.

PAPPassword Authentication Protocol. PAP validates users by password. PAP does not encrypt passwords for transmission and is thus considered insecure. Accepts

Number of PAPPassword Authentication Protocol. PAP validates users by password. PAP does not encrypt passwords for transmission and is thus considered insecure. requests accepted by the internal server.

PAPPassword Authentication Protocol. PAP validates users by password. PAP does not encrypt passwords for transmission and is thus considered insecure. Rejects

Number of PAPPassword Authentication Protocol. PAP validates users by password. PAP does not encrypt passwords for transmission and is thus considered insecure. requests rejected by the internal server.

MSCHAPv2 Requests

Number of MSCHAPv2 requests received by the internal server.

MSCHAPv2 Accepts

Number of MSCHAPv2 requests accepted by the internal server.

MSCHAPv2 Rejects

Number of MSCHAPv2 requests rejected by the internal server.

Mismatch Response

Number of times the server received an authentication response to a request after another request had been sent.

Users Expired

Number of users that were deauthenticated because they stopped responding.

Unknown Response

Number of times the server did not recognize the response, possibly due to internal errors.

Timeouts

Number of times that the controller timed out an authentication request.

AvgRespTime (ms)

Time it takes the server to respond to an authentication request, in seconds.

Uptime (d:h:m)

Time elapsed since the last server reboot.

SEQ first/last/free

This internal buffer counter keeps track of the requests to the authentication server.

Related Commands

Command

Description

aaa authentication-server internal

This command specifies that the internal database on a managed device be used for authenticating clients.

Command History

Version

Modification

ArubaOS 8.0.0.0

Command introduced.

Command Information

Platforms

Licensing

Command Mode

All platforms

Base operating system.

Enable and Config mode on Mobility Master.

/*]]>*/