show service user-identification identity-management
Syntax
show service user-identification identity-management (counter | status)
Description
Display statistical data about the advanced user query function batch queries and IP queries, or show status on the Juniper Identity Management Service servers.
Options
The following information is displayed for the primary server and the secondary server separately.
| counter | Display counters for batch and IP queries send to the Juniper Identity Management Service device and responses received from the Juniper Identity Management Service server. This is displayed separately for the primary server and the secondary server, if more than one is configured. |
| status | Verify that the Juniper Identity Management Service server is online and which server is responding to queries from the SRX Series Firewall. |
Required Privilege Level
view
Output Fields
| Address | IP address of the Juniper Identity Management Service server. |
| Port | Listening port of the Juniper Identity Management Service server. |
| Source | Source address used by SRX Series Firewall when connecting to Juniper Identity Management Service server. |
| Interface | Outgoing interface used by SRX Series Firewall when connecting to Juniper Identity Management Service server. |
Routing-instance |
Routing-instance used by SRX Series Firewall when connecting to Juniper Identity Management Service server. |
Connection method |
HTTP or HTTPS connection method when connecting to Juniper Identity Management Service server. |
Connection status |
Network reachability status from SRX Series Firewall when connecting to Juniper Identity Management Service server. |
Last received status message |
Status of the last HTTP transaction of SRX Series Firewall when connecting to Juniper Identity Management Service server. |
Access token |
When SRX Series Firewall gets authenticated with Juniper Identity Management Service server, an access-token is received with specified validity. SRX Series Firewall uses this token for subsequent transactions with the Juniper Identity Management Service server. |
Batch queries sent |
A number indicating how many batch queries the SRX Series Firewall sent to the Juniper Identity Management Service server. |
Batch queries returned |
A number indicating how many responses the SRX Series Firewall received from the Juniper Identity Management Service server in response to its batch queries. |
Batch query errors received |
A number indicating how many errors the SRX Series Firewall received from the Juniper Identity Management Service server in response to its batch queries. |
Primary server address |
For the status option, the IP address of the primary server. |
Secondary server address |
For the status option, the IP address of the secondary server. |
Sample Output
- show service user-identification identity-management counter
- show service user-identification identity-management status
show service user-identification identity-management counter
user@host> show service user-identification identity-management counter
Primary server :
Address : 12.0.0.15
Batch queries sent : 14
Batch queries returned : 14
Batch query error received : 1
109028
Auth entry lookup queries sent : 0
Auth entry lookup queries returned : 0
Auth entry lookup query errors encountered : 0
Auth entry lookup time, average(ms) : 0
Auth entry lookup time, max(ms) : 0
Certificate revocation requests sent : 0
Certificate revocation responses received : 0
Certificates revoked : 0
Secondary server :
Address : 12.0.0.2
Batch queries sent : 10899
Batch queries returned : 10899
Batch query error received : 1
Auth entry lookup queries sent : 0
Auth entry lookup queries returned : 0
Auth entry lookup query errors encountered : 0
Auth entry lookup time, average(ms) : 0
Auth entry lookup time, max(ms) : 0
Certificate revocation requests sent : 0
Certificate revocation responses received : 0
Certificates revoked : 0
10
Secondary server :
Address : Not configured show service user-identification identity-management status
user@host> show service user-identification identity-management status
Primary server :
Address : 12.0.0.15 172.16.1.1
Address : 172.16.2.1
Address : 172.16.3.1*
Address : 172.16.4.1
Port : 443
Source : Automatic
Interface : Automatic
Routing-instance : Automatic
Connection method : HTTPS
Connection status : Online
Last received status message : OK (200)
Access token : fjAYg0nZ8PfDR2IAodygb6b8G0eFFBa3DRzTJ1u
Token expire time : 2023-10-02 08:06:15
Secondary server :
Address : 12.0.0.2*
Port 172.16.10.1
Address : 443
Source 172.16.20.1*
Address : Automatic
Interface 172.16.30.1
Address : Automatic
Routing-instance : Automatic
Connection method : HTTPS
Connection status : Online
Last received status message : OK (200)
Access token : aabe843b-f3f0-40b9-bcfd-734933e8b0d6
Token expire time : 2023-10-02 08:06:15 172.16.40.1
*Asterisk defines active IP.
Release Information
Command introduced in Junos OS Release 15.1X49-D100.