Free Preparation Discussions
MENU
Huawei H12-811_V2.0 Exam - Topic 1 Question 9 Discussion
Topic #: 1
The following command output is displayed on R1:
[R1] display aaa configuration
Domain Name Delimiter : @
Domainname parse direction : Left to right
Domainname location : After-delimiter
Administrator user default domain : default_admin
Normal user default domain : default
Domain : total: 256 used: 3
Authentication-scheme : total: 32 used: 2
Accounting-scheme : total: 32 used: 1
Authorization-scheme : total: 32 used: 2
Service-scheme : total: 256 used: 0
Recording-scheme : total: 32 used: 0
Local-user : total: 512 used: 2
Remote-admin-user block retry-interval : 5 Min(s)
Remote-admin-user block retry-time : 3
Remote-admin-user block time : 5 Min(s)
Session timeout invalid enable : No
Which of the following statements is false?
Comprehensive and Detailed 150 to 200 words of Explanation From Datacom knowledge:
The false statement is B. From the AAA configuration output, the value of Remote-admin-user block time is clearly shown as 5 Min(s), which means the account lockout duration is 5 minutes, not 30 minutes.
Option A is true because Remote-admin-user block retry-time : 3 indicates that after 3 consecutive authentication failures, the account will be blocked. Option C is also true because the displayed Domain Name Delimiter is @, which is the separator used in usernames such as user@huawei.com. Option D is true as well because the output shows Local-user : total: 512 used: 2, meaning that the device supports a maximum of 512 local users, and currently 2 local users have been created.
This question checks the ability to correctly read AAA configuration output on Huawei devices. In HCIA-Datacom knowledge, it is important to distinguish between retry interval, retry count, and block time, because these values represent different security control parameters and are often confused during troubleshooting or configuration review.
Currently there are no comments in this discussion, be the first to comment!