aaa-said check-rule online-fail-reason exclude

Function

The aaa-said check-rule online-fail-reason exclude command excludes login failures with a specified cause code from being detected or diagnosed by SAID AAA nodes.

The undo aaa-said check-rule online-fail-reason exclude command restores the default configuration.

By default, a login failure is not excluded from the detection or diagnosis of SAID AAA nodes.

This command is supported only on the NetEngine 8000 F1A.

Format

aaa-said check-rule online-fail-reason exclude fail-code fail-code

undo aaa-said check-rule online-fail-reason exclude fail-code fail-code

Parameters

Parameter Description Value
fail-code fail-code

Specifies a cause code of login failures.

Two types of login failure cause codes are available:

  • For login failure cause codes that can be viewed using the display aaa online-fail-record command.
  • For internal login failure cause codes invisible to users.
  • For login failure cause codes visible to users, the value is an integer ranging from 1 to 861.
  • For internal login failure cause codes invisible to users, the value ranges from #0 to #62.

Views

AAA view

Default Level

3: Management level

Task Name and Operations

Task Name Operations
aaa write

Usage Guidelines

Usage Scenario

In user access scenarios, SAID nodes can detect and diagnose user login failures.

However, if you do not want SAID nodes to consider login failures with a specified cause code as faults, run the aaa-said check-rule online-fail-reason exclude command to exclude the login failures with the specified cause code, so that SAID nodes do not detect or diagnose the login failures with the specified cause code. If the aaa-said check-rule online-fail-reason exclude command is run more than once, the later configurations will not override the previous ones and all configurations take effect.

Precautions

In VS mode, this command is supported only by the admin VS.

Example

# Exclude login failures with a cause code of 10 from being detected or diagnosed by SAID AAA nodes.
<HUAWEI> system-view
[~HUAWEI] aaa
[~HUAWEI-aaa] aaa-said check-rule online-fail-reason exclude fail-code 10
Parent Topic: AAA and User Management Configuration (Access User)
Copyright © Huawei Technologies Co., Ltd.
Copyright © Huawei Technologies Co., Ltd.
< Previous topic Next topic >