show services unified-access-control policies
Syntax
Release Information
Command introduced in Junos OS Release 9.4.
Command introduced in Junos OS Release 12.2 for EX Series switches.
Description
Display a summary of resource access policies configured from the Junos Pulse Access Control Service MAG Series or IC Series Appliance.
Use this command when you have configured the SRX Series device or EX Series switch to act as a Junos OS Enforcer in an Access Control Service deployment. When deployed as a Junos OS Enforcer, the SRX Series device or EX Series switch enforces the policies that are defined on the Access Control Service appliance.
Options
none | — | Display a view of all resource access policies. |
detail | — | (Optional) Display a detailed view of all resource access policies. |
identifier id | — | (Optional) Display all resource access policies with the specified identifier number. |
Required Privilege Level
view
List of Sample Output
show services unified-access-control policies (SRX Series device)show services unified-access-control policies (EX Series switch)
show services unified-access-control policies detail (SRX Series device)
show services unified-access-control policies detail (EX Series switch)
show services unified-access-control policies identifier 1 (SRX Series device)
show services unified-access-control policies identifier 1 (EX Series switch)
Output Fields
Table 1 lists the output fields for the show services unified-access-control policies command. Output fields are listed in the approximate order in which they appear.
Table 1: show services unified-access-control policies Output Fields
Field Name | Field Description | Level of Output | |
|---|---|---|---|
Identifier | The identification number of this authentication table. | All | |
Resource |
| All | |
Resource | The MAC address of the resource. | detail | |
Action |
| All | |
Apply |
| All | |
Role identifier | A value generated and used by the Access Control Service to uniquely identify a given role. | All | |
Total | Total number of resource access policies. | All | |
Sample Output
show services unified-access-control policies (SRX Series device)
user@host> services unified-access-control policies
Id Resource Action Apply Role identifier 1 10.100.15.0/24:* allow selected 1113249951.100616.0 2 10.100.17.0/24:* deny all
show services unified-access-control policies (EX Series switch)
user@switch> services unified-access-control
policies
Id Resource Action Apply Role identifier 1 10.204.88.192:* deny all 2 *:* allow all Total: 2
show services unified-access-control policies detail (SRX Series device)
user@host> services unified-access-control policies
detailIdentifier: 1
Resource: 10.100.15.0/24:*
Resource: 10.100.16.23-10.100.16.60:*
Action: allow
Apply: selected
Role identifier Role name
1113249951.100616.0 Personal Firewall
1112927873.881659.0 Antivirus
1183670148.427197.0 UAC
Identifier: 2
Resource: 10.100.17.0/24:*
Resource: 10.100.16.23-10.100.16.60:*
Resource: 10.100.18.0/24:*
Action: deny
Apply: all
show services unified-access-control policies detail (EX Series switch)
user@switch> services unified-access-control
policies detail
Identifier: 1 Resource: 10.204.88.192:* Resource: 00:1b:c0:58:9b:00 Action: deny Apply: all Identifier: 2 Resource: *:* Action: allow Apply: all Total: 2
show services unified-access-control policies identifier 1 (SRX Series device)
user@host> show services unified-access-control
policies identifier 1Identifier: 1
Resource: 10.100.15.0/24:*
Resource: 10.100.16.23-10.100.16.60:*
Action: allow
Apply: selected
Role identifier Role name
1113249951.100616.0 Personal Firewall
1112927873.881659.0 Antivirus
1183670148.427197.0 UAC
show services unified-access-control policies identifier 1 (EX Series switch)
user@switch> show services unified-access-control
policies identifier 1
Identifier: 1 Resource: 10.204.88.192:* Action: deny Apply: all
