show security firewall-authentication users
Syntax
show security firewall-authentication users <address (ip-address )> <auth-type (pass-through | user-firewall | web-authentication)> <from-zone (from-zone)> <identifier (identifier )> <logical-system (logical-system-name | all)> <node (node-id | all | local | primary)> <root-logical-system (address | auth-type | from-zone | identifier | tenant | to-zone> <tenant (tenant-name |all)> <to-zone (to-zone )>
Description
Display firewall authentication details about all users and verify the number of firewall users who successfully authenticated and firewall users who failed to log in.
Options
none—Display details about all firewall authentication users.
address—Display authentication entries based on ip address.
auth-type—Display authentication entries matching the given auth-type.
from-zone—Display authentication entries matching the given source zone, null for web-auth and userfw-auth.
identifier—Display authentication entries by id.
logical-system—Display firewall authentication tables based on logical system name.
node—(Optional) For chassis cluster configurations, display firewall authentication details for all users on a specific node.node-id—Identification number of the node. It can be 0 or 1.
all—Display information about all nodes.local—Display information about the local node.primary—Display information about the primary node.
root-logical-system—Display firewall authentication tables for root logical system.
tenant—Display firewall authentication tables based on tenant name.
to-zone—Display authentication entry matching the given destination zone, null for web-auth and userfw-auth.
Required Privilege Level
view
Output Fields
Table 1 lists the output
fields for the show security firewall-authentication users command. Output fields are listed in the approximate order in which
they appear.
Field Name |
Field Description |
|---|---|
|
Gives count of how many entries/users the command will display. |
|
Identification number. |
|
IP address of the authentication source. |
|
User traffic received from the zone. |
|
User traffic destined to the zone. |
|
Name of profile used for authentication. |
|
Idle timeout for the user. |
|
Authentication status success or failure. |
|
Name of the user. |
Sample Output
show security firewall-authentication users
user@host> show security firewall-authentication users
Firewall authentication data:
Total users in table: 1
Id Source Ip Src zone Dst zone Profile Age Status User
1 192.0.2.5/24 z1 z2 p1 0 Success local1
Sample Output
show security firewall-authentication users node 0
user@host> show security firewall-authentication users node 0
node0:
--------------------------------------------------------------------------
Firewall authentication data:
Total users in table: 1
Id Source Ip Src zone Dst zone Profile Age Status User
3 192.0.2.5/24 z1 z2 p1 1 Success local1
Sample Output
show security firewall-authentication users node all
user@host> show security firewall-authentication users node all
node0:
--------------------------------------------------------------------------
Firewall authentication data:
Total users in table: 1
Id Source Ip Src zone Dst zone Profile Age Status User
3 192.0.2.5 z1 z2 p1 1 Success local1
node1:
--------------------------------------------------------------------------
Firewall authentication data:
Total users in table: 1
Id Source Ip Src zone Dst zone Profile Age Status User
2 192.0.2.5 z1 z2 p1 1 Success local1
show security firewall-authentication users tenant all
command-name
user@host> show security firewall-authentication users tenant all
Firewall authentication data:
Total users in table: 1
Id Source Ip Src zone Dst zone Profile Age Status User
2 192.0.2.10 N/A N/A test-rad 1 Success b1
Release Information
Command introduced in Junos OS Release
8.5. The node options added in Junos OS Release 9.0. The tenant option is introduced in Junos OS Release 18.3R1.