Manualsbrain.com
  1. Manuals
  2. Brands
  3. Cisco
  4. Cisco ASA 5510 Adaptive Security Appliance
  5. Leaflet

Cisco Cisco ASA 5510 Adaptive Security Appliance Leaflet

Download
Page of 1264
 
14-29
Cisco ASA Series 명령 참조, S 명령      
 
14      show uauth through show xlate 명령
  show user-identity user active     
기본 도메인 이름은 실제 도메인 이름, 특정 예약어 또는 LOCAL일 수 있습니다. ID 방화벽은 로컬
로 정의된 모든 사용자 그룹 또는 로컬로 정의된 모든 사용자(VPN 또는 웹 포털을 사용하여 로그
인 및 인증하는 사용자)에 LOCAL 도메인 이름을 사용합니다. 기본 도메인을 지정하지 않은 경우 
LOCAL이 기본 도메인이 됩니다. 
사용자의 이름에는 유휴 시간(분)이 추가됩니다. 로그인 시간 및 유휴 시간은 사용자의 IP 주소 대
신 사용자별로 저장됩니다. 
user-group
 키워드를 지정하면 활성화된 사용자 그룹만 표시됩니다. 그룹은 access-group, 
import-user-group 또는 service-policy 컨피그레이션의 일부인 경우 활성화됩니다. 
user-group
 키워드와 함께 domain_nickname을 지정하지 않으면 ASA에서 기본 도메인에 있는 
user_group_name
을 가진 그룹에 대한 정보를 표시합니다. 
참고
user-identity action domain-controller-down
 명령이 disable-user-identity-rule 키워드와 함께 구성
된 경우 지정된 도메인이 중단되거나, user-identity action ad-agent-down 명령이 
disable-user-identity-rule 
키워드와 함께 구성된 경우 AD 에이전트가 중단되면 로그온된 모든 사
용자가 사용자 통계에 비활성화된 것으로 표시됩니다.
참고
ASA는 ID 방화벽에 대해 사용자 통계 스캔 또는 계정 관리를 활성화한 경우에만 받은 패킷, 보낸 
패킷, 지정된 기간 동안 삭제된 패킷 등의 자세한 사용자 통계를 표시합니다. ID 방화벽 컨피그레
이션에 대한 자세한 내용은 CLI 컨피그레이션 가이드를 참고하십시오.
다음 예에서는 ID 방화벽의 활성 사용자에 대한 정보를 표시하는 방법을 보여 줍니다. 
ciscoasa# show user-identity user active 
Total active users: 30  Total IP addresses: 35
  LOCAL: 0 users, 0 IP addresses
  cisco.com: 0 users, 0 IP addresses
  d1: 0 users, 0 IP addresses
  IDFW: 0 users, 0 IP addresses
  idfw.com: 0 users, 0 IP addresses
  IDFWTEST: 30 users, 35 IP addresses
ciscoasa# show user-identity user active domain CSCO 
Total active users: 48020 Total IP addresses:10000
  CSCO: 48020 users, 10000 IP addresses
ciscoasa# show user-identity user active domain CSCO list 
Total active users: 48020 Total IP addresses: 10000
  CSCO: 48020 users, 10000 IP addresses
   CSCO\sampleuser1: 20 active conns; idle 0 mins
   CSCO\member-1: 20 active conns; idle 5 mins
   CSCO\member-2: 20 active conns; idle 20 mins
   CSCO\member-3: 3 active conns; idle 101 mins
   …
ciscoasa# show user-identity user active list 
Total active users: 48032  Total IP addresses: 10000
   CSCO\sampleuser1: 20 active conns; idle 0 mins
   CSCO\member-1: 20 active conns; idle 6 mins
   APAC\sampleuser2: 20 active conns; idle 0 mins
   CSCO\member-2: 20 active conns; idle 1 mins