|
|
Shows information about SecurID servers.
show securid {secrets | statistics}
secrets | This command shows all the ACE/Servers with which a VPN 5000 concentrator has exchanged secrets. The first time a concentrator contacts an ACE/Server, they exchange a secret based in part on the concentrator's IP address. |
statistics | The show securid statistics command displays basic statistics for messages received by a VPN 5000 concentrator which were sent by an ACE/Server. More detailed usage statistics are available through the ACE/Server. |
The following sections describe the display contents for each command.
The show securid secrets display includes the following information:
Server Address | This shows the server address for all the servers that the VPN 5000 concentrator has exchanged secrets with and has stored in memory. |
Source Address | This is the IP address of the interface on the VPN 5000 concentrator that the packets destined for the ACE/Server are going out. |
The show securid statistics display includes the following information:
Total Packets In | This is the total number of packets from the ACE/Server which were received by the VPN 5000 concentrator. |
Bad Packets In | This is the number of error packets received from the ACE/Server by the VPN 5000 concentrator. If this is a large number, then it may indicate a security problem on the network (e.g., packet "spoofing"). |
Packets Out | This is the total number of packets sent from a VPN 5000 concentrator to the ACE/Server. |
Access Granted | This is the number of user logins which were successfully completed. |
Access Denied | This is the number of user logins which were denied. |
Next Code Required | This is the number of times the ACE/Server asked a user for the next token code number. |
New PIN Required | This is the number of times the ACE/Server asked a user for a new PIN. |
Server Timeouts | This is the number of packets that did not get a response from the ACE/Server. |
The following sections show an example for each command.
The following example displays are for the show securid secrets command:
SecurID node secrets are stored for the following: Server Address Source Address 192.168.10.102 192.168.10.65
The following example displays are for the show securid statistics command:
SecurID Statistics Total Packets In 0 Bad Packets In 0 Packets Out 0 Access Granted 0 Access Denied 0 Next Code Required 0 New PIN Required 0 Server Timeouts 0
| Command | Description |
|---|---|
configure SecurID | Configures the concentrator for communication with a SecurID server for user authentication |
reset securid secret | Resets SecurID secret |
Posted: Wed Sep 27 11:36:24 PDT 2000
Copyright 1989-2000©Cisco Systems Inc.