Cisco Cisco ASA 5510 Adaptive Security Appliance Leaflet

Cisco ASA Series 명령 참조, S 명령      

14장      show uauth through show xlate 명령

예

다음 예에서는 ID 방화벽에 대한 지정된 도메인 별칭의 일부인 사용자 그룹을 표시하는 방법을 보
여 줍니다. 

ciscoasa# show user-identity ad-groups CSCO filter sampleuser1

Domain: CSCO        AAA Server Group:       CISCO_AD_SERVER

Group list retrieved successfully

Number of Active Directory Groups       6

dn: CN=group.reg.sampleuser1,OU=Organizational,OU=Cisco Groups,DC=cisco,DC=com

sAMAccountName: group.reg.sampleuser1

dn: CN=group.temp.sampleuser1,OU=Organizational,OU=Cisco Groups,DC=cisco,DC=com

sAMAccountName: group.temp.sampleuser1

...

ciscoasa# show user-identity ad-groups CSCO import-user-group count

Total AD groups in domain CSCO stored in local: 2

ciscoasa# show user-identity ad-groups CSCO import-user-group 

Domain: CSCO

Groups:

        group.SampleGroup1

        group.SampleGroup2

...

다음 예에서는 명령을 실행하여 access-list 및 object-group 명령의 결과에 필터 문자열을 적용하는 
방법을 보여 줍니다. show user-identity ad-users CSCO filter SampleGroup1 명령을 실행하면 지
정된 문자열의 sAMAccountName이 표시됩니다.

ciscoasa# show user-identity ad-users CSCO filter SampleGroup1 

Domain:CSCO    AAA Server Group:  CISCO_AD_SERVER

User list retrieved successfully

Number of Active Directory Users: 2

dn: CN=SampleUser1,OU=Employees,OU=Cisco Users,DC=cisco,DC=com

sAMAccountName: SampleUser2

dn: CN=SAMPLEUSER2-WXP05,OU=Workstations,OU=Cisco Computers,DC=cisco,DC=com

sAMAccountName: SAMPLEUSER2-WXP05$

관련 명령

명령

설명

Cisco ID 방화벽 인스턴스를 생성합니다.