Policy - Cisco Nexus 7000 Series Command Reference Manual
Hide thumbs
Also See for Nexus 7000 Series:
- Reference manual (746 pages) ,
- Configuration manual (536 pages) ,
- Hardware installation and reference manual (508 pages)
Table of Contents
Advertisement
policy
policy
To manually configure a Cisco TrustSec authentication policy on an interface with either a Cisco TrustSec
device identifier or security group tag (SGT), use the policy command. To revert to the default, use the no
form of this command.
policy {dynamic identity device-id| static sgt sgt-value [trusted]}
no policy {dynamic| static}
Syntax Description
dynamic identity
device-id
static sgt
sgt-value
trusted
Command Default
None
Command Modes
Cisco TrustSec manual configuration
Command History
Release
6.2(2)
4.0(3)
4.0(1)
Usage Guidelines
To use this command, you must enable the Cisco TrustSec feature using the feature cts command.
Cisco Nexus 7000 Series Security Command Reference
590
Specifies a dynamic policy using a Cisco TrustSec
device identifier.
Cisco TrustSec device identifier. The device identifier
is case sensitive.
Specifies a static policy using an SGT.
Cisco TrustSec SGT. The sgt-value is either a decimal
value or a hexadecimal value in the format 0xhhhh.
The decimal range is from 2 to 65519, and the
hexadecimal range is from 0x2 to 0xffef.
(Optional) Specifies that the traffic coming on the
interface with the SGT should not have its tag
overridden.
Modification
Modified the sgt-value argument to accept decimal values.
Removed the keywords and options following dynamic and static in the no
form of this command.
This command was introduced.
P Commands
Advertisement
Table of Contents
