Implementing Management User Audits
When a user successfully logs in, the managed device must notify the administrator of the time, date, and the location of the user. Currently the information provided is not consistent, to overcome this issue the following user related information can be tracked in ArubaOS 8.4.0.0:
- Location of the last successful login indicates the SSH Secure Shell. SSH is a network protocol that provides secure access to a remote device. /WebUI IP address or console port.
- Date and time stamp of the last successful login.
- Number of unsuccessful attempts since the last successful login.
- Number of successful attempts over a period of time, which can be configured.
When the user logs in, the following pop-up is displayed in the
page:- <username> (<role>)
- Last login: Mon Jul 16 15:21:50 2018 from 10.216.162.200
- There have been 3 failed login attempts since your last successful login
- 6 previous logins in the last 2 days
The following CLI Command-Line Interface. A console interface with a command line shell that allows users to execute text input as commands and convert these commands to appropriate functions. command configures an audit period:
(host) [mynode] (config) #mgmt-user audit-period <audit-period>
The following CLI Command-Line Interface. A console interface with a command line shell that allows users to execute text input as commands and convert these commands to appropriate functions. command shows the time, date, and location specific to a management user:
(host) [mynode] #show mgmt-user audit-info <username>