Command Line Reference
User Access And Authentication
Local User Configuration
13 min
local user configuration local user configuration show local user brief show local user brief \[command] show local user brief \[purpose] display local user information \[view] system view \[use cases] sonic# show local user brief user online blocked login ip login time admin yes no nov 3 17 24 admin yes no 150 1 0 1 nov 4 23 20 test no yes show local user brief this command display description table fields description online whether the current user is online or not yes user online no user is not online blocked whether the current user is locked out or not yes locked no unlocked login ip the ip address used by the current user to log in to the device, if the user is online and the login ip is empty, it means that the user is logging in through the serial port login time current user login time to the device show local user block conf show local user block conf \[command] show local user block conf \[purpose] displays the device's configured method for processing successive incorrect password entries by the user \[view] system view \[use cases] sonic# show local user brief user online blocked login ip login time admin yes no 2025 05 10 14 2 admin yes no 192 168 200 24 2025 05 10 16 05 show local user blocked show local user blocked \[command] show local user blocked \[purpose] show locked users \[view] system view \[use cases] sonic(config)# do show local user blocked login failures latest failure from happy 2 05/10/25 16 24 33 192 168 200 240 local user name local user name \[command] local user name name passwd password no local user name \[purpose] create local user \[parameter] parameter description name username password password \[view] system configuration view \[use cases] sonic(config)# local user name test passwd testuser local user block time local user block time \[command] local user block time time \[purpose] configure local users to continuously enter incorrect password account lockout time \[parameter] parameter description time value range 1 65535, unit min \[view] system configuration view \[notes] locked for 5 minutes by default \[use cases] sonic(config)# local user block time 5 local user retry count local user retry count \[command] local user retry count count no local user retry count \[purpose] configure a limit on the number of consecutive incorrect password entries for local users \[parameter] parameter description count value range 2 65535 \[view] system configuration view \[notes] by default, 5 attempts are allowed \[use cases] sonic(config)# local user retry count 5 local user password control local user password control \[command] local user password control enable|min len|min lowercase|min uppercase|min digits|min special chars|expiration time|expiration warning no local user password control enable|min len|min lowercase|min uppercase|min digits|min special chars|expiration time|expiration warning \[purpose] configure security rules such as local user password strength settings and expiration dates \[parameter] parameter description enable enable password control, default 'disable' min len minimum password length, default 8 min lowercase minimum lowercase letters, default 0 min uppercase minimum uppercase letters, default 0 min digits minimum digits, default 0 min special chars minimum special characters, default 0 expiration time the password expiration time (days unit), default 180 expiration warning the password expiration warning time (days unit), default 15 \[view] system configuration view \[notes] to ensure sufficient password strength for local users, the strength of password configuration can be set by increasing the complexity of passwords and regularly changing them, it can effectively resist brute force cracking and other forms of password guessing attacks \[use cases] sonic(config)# local user password control enable sonic(config)# local user password control min len 10 telnet max session telnet max session count \[command] telnet max session count no telnet max session count \[purpose] set the maximum number of telnet user sessions \[parameter] parameter description count the range of value is 1 100, default value is 10 \[view] system configuration view \[use cases] sonic(config)# telnet max session 5 ssh max session ssh max session count \[command] ssh max session count no ssh max session count \[purpose] set the maximum number of ssh user sessions \[parameter] parameter description count the range of value is 1 100, default value is 10 \[view] system configuration view \[use cases] sonic(config)# ssh max session 5
