Displaying TACACS/TACACS+ statistics and configuration information

The show aaa command displays information about all TACACS+ and RADIUS servers identified on the device. 

device#show running-config aaa
Tacacs+ key: foundry
Tacacs+ retries: 1
Tacacs+ timeout: 15 seconds
Tacacs+ dead-time: 3 minutes
Tacacs+ Server: 10.95.6.90 Port:49:
                opens=6 closes=3 timeouts=3 errors=0
                packets in=4 packets out=4
no connection
Radius key: networks
Radius retries: 3
Radius timeout: 3 seconds
Radius dead-time: 3 minutes
Radius Server: 10.95.6.90 Auth Port=1812 Acct Port=1813:
                opens=2 closes=1 timeouts=1 errors=0
                packets in=1 packets out=4
no connection

The following table describes the TACACS/TACACS+ information displayed by the show aaa command.

Table 5 Output of the show aaa command for TACACS/TACACS+

Field

Description

Tacacs+ key

The setting configured with the tacacs-server key command. At the Super User privilege level, the actual text of the key is displayed. At the other privilege levels, a string of periods (....) is displayed instead of the text.

Tacacs+ retries

The setting configured with the tacacs-server retransmit command.

Tacacs+ timeout

The setting configured with the tacacs-server timeout command.

Tacacs+ dead-time

The setting configured with the tacacs-server dead-time command.

Tacacs+ Server

For each TACACS/TACACS+ server, the IP address, port, and the following statistics are displayed:

  • opens - Number of times the port was opened for communication with the server
  • closes - Number of times the port was closed normally
  • timeouts - Number of times port was closed due to a timeout
  • errors - Number of times an error occurred while opening the port
  • packets in - Number of packets received from the server
  • packets out - Number of packets sent to the server

connection

The current connection status. This can be "no connection" or "connection active".

The show web connection command displays the privilege level of Web Management Interface users.

Example

Brocade#show web-connection
We management Sessions:
User Privilege IP address MAC address Timeout(secs) Connection
roy READ-WRITE 10.1.1.3 0030.488.b84d9 279 HTTPS

Use the following command to clear web connections: 

Brocade#clear web-connection

After issuing the clear web connection command, the show web connection command displays the following output: 

Brocade#show web-connection
No WEB-MANAGEMENT sessions are currently established!
Parent topic: TACACS and TACACS+ security