Cisco Cisco Web Security Appliance S670 User Guide

500

I R O N P O R T A S Y N C O S 6 . 3 F O R W E B U S E R G U I D E

• The

who

command lists users, the time of login, idle time, and the remote host from which

the user is logged in:

• The

whoami

command displays the user name and group information:

• The

last

command displays information about users who have recently logged into the

appliance.

Using External Authentication

If you store user information in a RADIUS directory on your network, you can configure the
Web Security appliance to use the RADIUS directory to authenticate users logging in to the
appliance. You can use external authentication when logging into the appliance using HTTP,
HTTPS, SSH, and FTP. To set up the appliance to use an external directory for authentication,
use the System Administration > Users page in the web interface or the

userconfig >

external

CLI command.

Figure 22-9 shows where you enable external authentication on the System Administration >
Users page.

Figure 22-9 Enabling External Authentication

example.com> who

Username

Idle Time

Remote Host

What

========

==========

=========

===========

====

admin

03:27PM

10.xx.xx.xx cli

example.com> whoami

Username: admin
Full Name: Administrator
Groups: admin, operators, config, log, guest

example.com> last

Username

Remote Host

Logout Time

Total Time

========

===========

================

==========

admin

10.xx.xx.xx

Sat May 15 23:42

still logged in

15m

admin

10.xx.xx.xx

Sat May 15 22:52

Sat May 15 23:42

50m

admin

10.xx.xx.xx

Sat May 15 11:02

Sat May 15 14:14

3h 12m

admin

10.xx.xx.xx

Fri May 14 16:29

Fri May 14 17:43

1h 13m

shutdown

Fri May 14 16:22