display aaa configuration

Function

The display aaa configuration command displays the AAA configurations, for example, the domain, authentication scheme, authorization scheme, and accounting scheme.

Format

display aaa configuration

Parameters

None

Views

All views

Default Level

1: Monitoring level

Usage Guidelines

AAA configurations are limited by system specifications. Before performing AAA configurations, run the display aaa configuration command to check whether there are sufficient resources.

Example

# Display the AAA summary.

<sysname> display aaa configuration
  Normal user default domain       : default                                    
  Domain                           : total: 700     used: 44                    
  Authentication-scheme            : total: 700     used: 33                    
  Accounting-scheme                : total: 328     used: 5                     
  Authorization-scheme             : total: 700     used: 13                    
  Service-scheme                   : total: 700     used: 5                     
  Recording-scheme                 : total: 328     used: 4                     
  Command-recording-scheme         : scheme1                                     
  Outbound-recording-scheme        : scheme2                                     
  System-recording-scheme          : scheme3                                    
  Authen-bypass-time               : 2 Min(s)                                   
  Author-bypass-time               : 2 Min(s)                                   
  Command-author-bypass-time       : 2 Min(s)                                   
  Session timeout invalid enable   : Yes

**Table 1** Description of the **display aaa configuration** command output
Item	Description
Normal user default domain	Domain name of normal users.
Domain	Number of domains. total: indicates the total number of domains that can be created. used: indicates the number of domains that have been created.
Authentication-scheme	Number of authentication schemes. total: indicates the total number of authentication schemes that can be created. used: indicates the number of authentication schemes that have been created.
Accounting-scheme	Number of accounting schemes. total: indicates the total number of accounting schemes that can be created. used: indicates the number of accounting schemes that have been created.
Authorization-scheme	Number of authorization schemes. total: indicates the total number of authorization schemes that can be created. used: indicates the number of authorization schemes that have been created.
Service-scheme	Number of service schemes. total: indicates the total number of service schemes that can be created. used: indicates the number of service schemes that have been created.
Recording-scheme	Number of recording schemes. total: indicates the total number of recording schemes that can be created. used: indicates the number of recording schemes that have been created.
Command-recording-scheme	Commands recording schemes.
Outbound-recording-scheme	Connection information recording schemes.
System-recording-scheme	System events recording schemes.
Authen-bypass-time	Bypass authentication timeout interval.
Author-bypass-time	Bypass authorization timeout interval.
Command-author-bypass-time	Commands bypass authorization timeout interval.
Session timeout invalid enable	Yes: The device will not disconnect or reauthenticate users when the RADIUS server delivers session-timeout with value 0. No: The device will disconnect or reauthenticate users when the RADIUS server delivers session-timeout with value 0.