access-user syslog-restrain enable

When a user fails in authentication or goes offline, the device records a system log. The system log contains the MAC addresses of access device and access user and the authentication time.

If a user repeatedly attempts to go online after authentication failures or frequently goes online and offline in a short period, a lot of system logs are generated, which waste system resources and degrade system performance. System log suppression can address this problem. After the device generates a system log, it will not generate the same log within the suppression period (set by access-user syslog-restrain period).

In normal cases, the device implements system log suppression based on user MAC addresses. For example, after the device generates a system log after an authentication failure and finds that the user with the same MAC address failed the user authentication again during the suppression period, the device will not generate any system log. The condition is the same if the user is offline. If the device fails to obtain the MAC address of an online user, the user name and access type will be used for system log suppression.