Cisco TrustSec Switch Configuration Guide - Index [Cisco Catalyst 6500 Series Switches]

Table Of Contents

Numerics - C - D - E - F - G - I - L - M - N - P - S - T - V - W -

Index

Numerics

802.1AE

See Cisco TrustSec, IEEE 802.1AE support

802.1X 6-2

802.1X Host Modes 6-5

C

Cisco TrustSec

architecture 1-1

authorization 1-10

configuring 4-10

configuring NDAC 1-3

connection caching 4-9

default values 2-3

enabling 3-2, 3-3

environment data download 1-11

guidelines and limitations 2-3

IEEE 802.1AE support 1-12

link security 1-12

manual mode 3-6

permissions matrix 1-7

policy acquisition 1-10

RADIUS relay 1-12

SAP negotiation 1-12

seed device 1-1, 1-11, 3-2

SGACLs 1-10

SGTs1-7to 1-10, 3-11

SXP 4-1

Cisco TrustSec. See CTS

Cisco TrustSec authentication

description 1-6

Cisco TrustSec caching

clearing 4-10

enabling 4-9

Cisco TrustSec device credentials

description 1-6

Cisco TrustSec device identities

description 1-6

Cisco TrustSec environment data

download 1-11

Cisco TrustSec manual mode

configuring 3-6

Cisco TrustSec Solution

configuring 2-1

Cisco TrustSec user credentials

description 1-6

conditional debugging 7-56

CTS

configuring 4-10

description 1-1

CTS authentication

description 1-3

cts role-based policy trace 7-25

D

debug condition cts 7-56

DGT

See SGT, destination

DHCP Snooping 6-6

Diagnostic trace 7-25

E

EAP-FAST

in Cisco TrustSec authentication 1-3

Error Messages C-4

F

FAS 6-5

Fibre Channel interfaces

default settings 3-12, 3-17

FIPS

Catalyst 6500 Series support C-4

Flexible NetFlow C-1

G

Galois/Counter Mode. See GCM

GCM

Cisco TrustSec SAP encryption 1-12

GCM authentication. See GMAC

GMAC

Cisco TrustSec SAP authentication 1-12

I

Identity Port Mapping

See IPM

interfaces

default settings 3-12, 3-17

IPM

configuring 3-7

description 1-9

L

L2 VRF assignment 7-32

L3IF-SGT mapping 3-20

M

MAB 6-3

MACSec

See Cisco TrustSec, link security

management interfaces

default settings 3-12, 3-17

Media Access Control Security

See Cisco TrustSec, link security

mgmt0 interfaces

default settings 3-12, 3-17

N

NDAC

for Cisco TrustSec 1-3

NetFlow C-1

Network Device Admission Control

See NDAC

P

PAC

in Cisco TrustSec authentication 1-3

Pre-Authentication Open Access 6-5

protected access credential

See PAC

S

Security Association Protocol. See SAP

security group access list

See SGACL

security group tag

See SGT

seed device

in a Cisco TrustSec network 1-1, 1-11, 3-2

SGACL policies

configuration process 5-2

displaying 5-6

displaying downloads 5-7

enabling enforcement for VLANs 5-3

enabling enforcement globally 5-2, 5-3

enabling enforcement per interface 5-3

manually configuring 5-4

SGACLs

description 1-7, 1-10

SGACLs policies

acquisition 1-10

SGT

destination 1-7

source 1-7

SGT Exchange Protocol

See SXP

SGTs

description1-7to 1-10

manually configuring 3-11

manually mapping IP addresses 3-12

Subnet to SGT mapping 3-12

SXP

configuration process 4-2

configuring 4-1

configuring peer connections 4-2

default passwords 4-4

description 1-13

enabling 4-2

reconcile period 4-5

retry period 4-5

source IP address 4-4

Syslog Messages C-4

System Error Messages C-4

T

Troubleshooting

SGACL and SGT behavior 7-25

TrustSec

SGACLs 1-7

TrustSec. See CTS

V

VLANs

enabling SGACL policy enforcement 5-3

VLAN to SGT mapping 3-19

VRF

cts role-based command 7-93

cts sxp command 7-39

overview 1-17

Specifying for an SXP connection 4-3

W

WebAuth 6-4

web-based authentication 6-4

	Cisco TrustSec Switch Configuration Guide
	Index
Cisco TrustSec Switch Configuration Guide preface.fm Understanding Cisco TrustSec Configuring the Cisco TrustSec Solution Configuring Identities and Connections Configuring SGACL Policies SGT Exchange Protocol over TCP (SXP) Configuring Endpoint Admission Control Cisco TrustSec Command Summary Considerations for Catalyst 3000 and 2000 Series Switches and WLC 5700 Series Wireless LAN Controllers Considerations for Catalyst 4500 Series Switches Considerations for Catalyst 6500 Series Switches Glossary Index	Download this chapter Index Download the complete book Cisco TrustSec Configuration Guide (PDF - 2 MB) Feedback Table Of Contents Numerics - C - D - E - F - G - I - L - M - N - P - S - T - V - W - Index Numerics 802.1AE See Cisco TrustSec, IEEE 802.1AE support 802.1X 6-2 802.1X Host Modes 6-5 C Cisco TrustSec architecture 1-1 authorization 1-10 configuring 4-10 configuring NDAC 1-3 connection caching 4-9 default values 2-3 enabling 3-2, 3-3 environment data download 1-11 guidelines and limitations 2-3 IEEE 802.1AE support 1-12 link security 1-12 manual mode 3-6 permissions matrix 1-7 policy acquisition 1-10 RADIUS relay 1-12 SAP negotiation 1-12 seed device 1-1, 1-11, 3-2 SGACLs 1-10 SGTs1-7to 1-10, 3-11 SXP 4-1 Cisco TrustSec. See CTS Cisco TrustSec authentication description 1-6 Cisco TrustSec caching clearing 4-10 enabling 4-9 Cisco TrustSec device credentials description 1-6 Cisco TrustSec device identities description 1-6 Cisco TrustSec environment data download 1-11 Cisco TrustSec manual mode configuring 3-6 Cisco TrustSec Solution configuring 2-1 Cisco TrustSec user credentials description 1-6 conditional debugging 7-56 CTS configuring 4-10 description 1-1 CTS authentication description 1-3 cts role-based policy trace 7-25 D debug condition cts 7-56 DGT See SGT, destination DHCP Snooping 6-6 Diagnostic trace 7-25 E EAP-FAST in Cisco TrustSec authentication 1-3 Error Messages C-4 F FAS 6-5 Fibre Channel interfaces default settings 3-12, 3-17 FIPS Catalyst 6500 Series support C-4 Flexible NetFlow C-1 G Galois/Counter Mode. See GCM GCM Cisco TrustSec SAP encryption 1-12 GCM authentication. See GMAC GMAC Cisco TrustSec SAP authentication 1-12 I Identity Port Mapping See IPM interfaces default settings 3-12, 3-17 IPM configuring 3-7 description 1-9 L L2 VRF assignment 7-32 L3IF-SGT mapping 3-20 M MAB 6-3 MACSec See Cisco TrustSec, link security management interfaces default settings 3-12, 3-17 Media Access Control Security See Cisco TrustSec, link security mgmt0 interfaces default settings 3-12, 3-17 N NDAC for Cisco TrustSec 1-3 NetFlow C-1 Network Device Admission Control See NDAC P PAC in Cisco TrustSec authentication 1-3 Pre-Authentication Open Access 6-5 protected access credential See PAC S Security Association Protocol. See SAP security group access list See SGACL security group tag See SGT seed device in a Cisco TrustSec network 1-1, 1-11, 3-2 SGACL policies configuration process 5-2 displaying 5-6 displaying downloads 5-7 enabling enforcement for VLANs 5-3 enabling enforcement globally 5-2, 5-3 enabling enforcement per interface 5-3 manually configuring 5-4 SGACLs description 1-7, 1-10 SGACLs policies acquisition 1-10 SGT destination 1-7 source 1-7 SGT Exchange Protocol See SXP SGTs description1-7to 1-10 manually configuring 3-11 manually mapping IP addresses 3-12 Subnet to SGT mapping 3-12 SXP configuration process 4-2 configuring 4-1 configuring peer connections 4-2 default passwords 4-4 description 1-13 enabling 4-2 reconcile period 4-5 retry period 4-5 source IP address 4-4 Syslog Messages C-4 System Error Messages C-4 T Troubleshooting SGACL and SGT behavior 7-25 TrustSec SGACLs 1-7 TrustSec. See CTS V VLANs enabling SGACL policy enforcement 5-3 VLAN to SGT mapping 3-19 VRF cts role-based command 7-93 cts sxp command 7-39 overview 1-17 Specifying for an SXP connection 4-3 W WebAuth 6-4 web-based authentication 6-4
	Terms & Conditions \| Privacy Statement \| Cookie Policy \| Trademarks