Supported Platforms
show services unified-access-control authentication-table
Syntax
Release Information
Command introduced in Junos OS Release 9.4. Options updated in Junos OS Release 12.1.
Description
Display a summary of the authentication table entries configured from the IC Series UAC Appliance. Authentication tables store mappings between traffic sessions and Unified Access Control (UAC) roles. The IC Series appliance uses the roles specified in the mappings to help determine which UAC policies to apply to a session.
Use this command when you have configured the SRX Series device to act as a Junos OS Enforcer in a UAC deployment. When deployed as a Junos OS Enforcer, the SRX Series device enforces the policies that are defined on the UAC’s IC Series appliance.
You can also use this command to display the content of the authentication table in a user role firewall implementation. The table, pushed from a supporting UAC device, provides the user roles associated with incoming traffic.
Options
- detail—Display a detailed view of all authentication table entries.
- extended—Display a view of all authentication table entries with the user roles listed.
- identifier id—Display all authentication table entries with the specified identifier number.
- ip source-ip-address—Display any authentication table entry for the specified IP address.
- role role-name—Display all authentication table entries for the specified role name.
- user username—Display all authentication table entries for the specified user.
Required Privilege Level
view
List of Sample Output
show services unified-access-control authentication-tableshow services unified-access-control authentication-table detail
show services unified-access-control authentication-table extended
show services unified-access-control authentication-table identifier id
show services unified-access-control authentication-table ip
show services unified-access-control authentication-table role
show services unified-access-control authentication-table user username
Sample Output
show services unified-access-control authentication-table
user@host>show services unified-access-control
authentication-table Id Source IP Username Age Role identifier 1 172.24.72.79 atsang 0 0000000001.000005.0 Total: 1
show services unified-access-control authentication-table detail
user@host>show services unified-access-control
authentication-table detailIdentifier: 1
Source IP: 172.24.72.79
Username: atsang
Age: 0
Role identifier Role name
0000000001.000005.0 Users
1113249951.100616.0 PersonalFirewall
1183670148.427197.0 UAC
Total: 1
show services unified-access-control authentication-table extended
user@host>show services unified-access-control
authentication-table extendedId Source IP Username Age Role name 3 10.214.161.195 prasanta 60 Users, PersonalFirewall 6 10.214.161.183 june 60 role-1 Total: 2
show services unified-access-control authentication-table identifier id
user@host>show services unified-access-control
authentication-table identifier 1Identifier: 1
Source IP: 172.24.72.79
Username: atsang
Age: 0
Role identifier Role name
0000000001.000005.0 Users
1113249951.100616.0 PersonalFirewall
1183670148.427197.0 UAC
Total: 1
show services unified-access-control authentication-table ip
user@host>show services unified-access-control
authentication-table ip 10.214.161.183 Id Source IP Username Age Role identifier 8 10.214.161.183 june 0 1420298444.225667.0 Total: 1
show services unified-access-control authentication-table role
user@host>show services unified-access-control
authentication-table role role-1Id Source IP Username Age Role identifier 6 10.214.161.183 june 60 1420298444.225667.0 Total: 1
show services unified-access-control authentication-table user username
user@host>show services unified-access-control
authentication-table user prasanta Id Source IP Username Age Role identifier 7 10.214.161.195 prasanta 0 0000000001.000005.0 Total: 1
