display aaa top
Function
The display aaa top command ranks MAC addresses or interfaces (interface IDs+VLAN IDs) by the number of all existing login failure/logout records or those generated within a specified period of time and displays the specified number of entries in descending order. If entries of user login failure/logout records fall below the number specified by the top-number parameter, all available entries are displayed.
This command is supported only on the NetEngine 8000 F1A.
Parameters
| Parameter | Description | Value |
|---|---|---|
| online-fail-record |
Displays user login failure records. |
- |
| offline-record |
Displays user logout records. |
- |
| mac-address |
Displays user login failure/logout records based on MAC addresses. |
- |
| link-info |
Displays user login failure/logout records based on interface IDs+VLAN IDs. |
- |
| top top-number |
Specifies the maximum number of entries to be displayed. |
The value is an integer ranging from 1 to 50. |
| time |
Displays user login failure/logout records generated within a specified period of time. |
- |
| hour |
Indicates hours. |
The value is an integer ranging from 0 to 23, in hours. |
| minute |
Indicates minutes. |
The value is an integer ranging from 0 to 59, in minutes. |
| second |
Indicates seconds. |
The value is an integer ranging from 0 to 59, in seconds. |
Usage Guidelines
Usage Scenario
To rank MAC addresses or interfaces (interface IDs+VLAN IDs) by the number of login failure/logout records and display the specified number of entries in descending order, run the display aaa top command.
If time is not specified, login failure/logout records of all users are displayed. if time is specified, login failure/logout records of users generated within a specified period of time are displayed. If user login failure/logout records exist, the records will be displayed when you run the display aaa top command, irrespective of whether the undo aaa offline-record command has been run or not.Precautions
In VS mode, this command is supported only by the admin VS.
Example
The actual command output varies according to the device. The command output here is only an example.
<HUAWEI> display aaa offline-record mac-address top 5 time 0 15 0
-------------------------------------------------------------------
Mac Times
-------------------------------------------------------------------
00e0-fc12-3451 1
00e0-fc12-3455 1
00e0-fc12-3452 1
00e0-fc12-3453 1
00e0-fc12-3454 1
-------------------------------------------------------------------
<HUAWEI> display aaa online-fail-record link-info top 3 time 0 5 0 ------------------------------------------------------------------- Interface PeVlan/CeVlan Times ------------------------------------------------------------------- GigabitEthernet0/1/10 0/0 8 GigabitEthernet0/1/10.48 48/0 1 GigabitEthernet0/1/10.47 47/0 1 -------------------------------------------------------------------
| Item | Description |
|---|---|
| Mac | MAC address. |
| Times | Number of login failure/logout records. |
| Interface | Interface through which users fail to go online or go offline. |
| PeVlan/CeVlan | Outer/inner VLAN ID. |