show services unified-access-control authentication-table
Syntax
show services unified-access-control authentication-table
Description
Display a summary of the authentication table entries configured from the IC Series UAC Appliance. Authentication tables store mappings between traffic sessions and Unified Access Control (UAC) roles. The IC Series appliance uses the roles specified in the mappings to help determine which UAC policies to apply to a session.
Use this command when you have configured the SRX Series Firewall to act as a Junos OS Enforcer in a UAC deployment. When deployed as a Junos OS Enforcer, the SRX Series Firewall enforces the policies that are defined on the UAC’s IC Series appliance.
You can also use this command to display the content of the authentication table in a user role firewall implementation. The table, pushed from a supporting UAC device, provides the user roles associated with incoming traffic.
Options
detail—Display a detailed view of all authentication table entries.extended—Display a view of all authentication table entries with the user roles listed.identifier id—Display all authentication table entries with the specified identifier number.ip source-ip-address—Display any authentication table entry for the specified IP address.role role-name—Display all authentication table entries for the specified role name.user username—Display all authentication table entries for the specified user.
Required Privilege Level
view
Sample Output
- show services unified-access-control authentication-table
- show services unified-access-control authentication-table detail
- show services unified-access-control authentication-table extended
- show services unified-access-control authentication-table identifier id
- show services unified-access-control authentication-table ip
- show services unified-access-control authentication-table role
- show services unified-access-control authentication-table user username
show services unified-access-control authentication-table
user@host>show services unified-access-control authentication-table Id Source IP Username Age Role identifier 1 198.51.100.22 user1 0 0000000001.000005.0 Total: 1
show services unified-access-control authentication-table detail
user@host>show services unified-access-control authentication-table detail
Identifier: 1
Source IP: 198.51.100.22
Username: john
Age: 0
Role identifier Role name
0000000001.000005.0 Users
1113249951.100616.0 PersonalFirewall
1183670148.427197.0 UAC
Total: 1
show services unified-access-control authentication-table extended
user@host>show services unified-access-control authentication-table extended Id Source IP Username Age Role name 3 10.214.161.195 johna 60 Users, PersonalFirewall 6 10.214.161.183 mayb 60 role-1 Total: 2
show services unified-access-control authentication-table identifier id
user@host>show services unified-access-control authentication-table identifier 1
Identifier: 1
Source IP: 10.214.161.195
Username: johna
Age: 0
Role identifier Role name
0000000001.000005.0 Users
1113249951.100616.0 PersonalFirewall
1183670148.427197.0 UAC
Total: 1
show services unified-access-control authentication-table ip
user@host>show services unified-access-control authentication-table ip 10.214.161.183 Id Source IP Username Age Role identifier 8 10.214.161.183 mayb 0 1420298444.225667.0 Total: 1
show services unified-access-control authentication-table role
user@host>show services unified-access-control authentication-table role role-1 Id Source IP Username Age Role identifier 6 10.214.161.183 maybe 60 1420298444.225667.0 Total: 1
show services unified-access-control authentication-table user username
user@host>show services unified-access-control authentication-table user prasanta Id Source IP Username Age Role identifier 7 10.214.161.195 paul1 0 0000000001.000005.0 Total: 1
Release Information
Command introduced in Junos OS Release 9.4. Options updated in Junos OS Release 12.1.