Security Configuration Guide, Cisco DCNM for LAN, Release 6.x
New and Changed Information
Downloads: This chapterpdf (PDF - 339.0KB) The complete bookPDF (PDF - 4.66MB) | The complete bookePub (ePub - 1.6MB) | Feedback

New and Changed Information

New and Changed Information

As of Cisco DCNM Release 5.2, Cisco Fabric Manager and Cisco Data Center Network Manager are merged into one unified product called Cisco Data Center Network Manager (DCNM) that can manage both LAN and SAN environments. As a part of this product merger, the name Cisco DCNM for SAN replaces the name Cisco Fabric Manager.

The following documentation changes support the merged Cisco DCNM product:

  • Cisco DCNM product documentation for Cisco DCNM Release 5.2 is retitled with the name Cisco DCNM for LAN.
  • Cisco Fabric Manager product documentation for Cisco DCNM Release 5.2 is retitled with the name Cisco DCNM for SAN.
  • Cisco DCNM for SAN product documentation is now published to the Data Center Network Manager listing page on Cisco.com: http://www.cisco.com/en/US/products/ps9369/tsd_products_support_configure.html This URL is also the listing page for Cisco DCNM for LAN product documentation.
  • Cisco Fabric Manager documentation for software releases earlier than Cisco DCNM Release 5.2, retains the name Cisco Fabric Manager and remains available at its current Cisco.com listing page: http://www.cisco.com/en/US/products/ps10495/tsd_products_support_configure.html You should continue to use the Cisco Fabric Manager documentation if you are using a release of Cisco Fabric Manager software that is earlier than Cisco DCNM Release 5.2.
  • The name DCNM-SAN is used in place of Cisco DCNM for SAN in the user interface of Cisco Data Center Network Manager; likewise, the name DCNM-LAN is used in place of Cisco DCNM for LAN in the user interface. To match the user interface, the product documentation also uses the names DCNM-SAN and DCNM-LAN.
  • The following new publications support both Cisco DCNM for LAN and DCNM for SAN, and address the new licensing model, the new installation process, and the new look and feel of Cisco DCNM:
    • Cisco DCNM Installation and Licensing Guide
    • Cisco DCNM Release Notes
  • For a complete list of Cisco DCNM documentation, see the "Related Documentation" section in the Preface.

This section provides release-specific information for each new and changed security feature in the Cisco Data Center Network Manager (DCNM).

New and Changed Information

To check for additional information about Cisco DCNM releases, see the Cisco DCNM Release Notes.

This table summarizes the new and changed features for the Security Configuration Guide, Cisco DCNM for LAN, Release 5.xCisco DCNM Security Configuration Guide, Release 5.x, and tells you where they are documented.

Table 1 New and Changed Security Features for Cisco DCNM Release 4.25.x 6.x

Feature

Description

Changed in Release

Where Documented

There are no changes since 5.2(1)

AAA

Added support for the Cisco Nexus 3000 Series Switches.

5.2(1)

Configuring AAA

DHCP snooping

Added support for the Cisco Nexus 1000V Series Switches, Cisco Nexus 3000 Series Switches, and Cisco Nexus 5000 Series Switches.

5.2(1)

Configuring DHCP

IP Source Guard

Added support for the Cisco Nexus 3000 Series Switches.

5.2(1)

Configuring IP Source Guard

IPv4 ACLs

Added support for the Cisco Nexus 3000 Series Switches.

5.2(1)

Configuring IP ACLs

RADIUS

Added support for the Cisco Nexus 3000 Series Switches.

5.2(1)

Configuring RADIUS

TACACS+

Added support for the Cisco Nexus 3000 Series Switches.

5.2(1)

Configuring TACACS+

Traffic storm control

Added support for the Cisco Nexus 3000 Series Switches.

5.2(1)

Configuring Traffic Storm Control

User accounts and RBAC

Added support for the Cisco Nexus 3000 Series Switches.

5.2(1)

Configuring User Accounts and RBAC

VLAN ACLs

Added support for the Cisco Nexus 3000 Series Switches.

5.2(1)

Configuring VLAN ACLs

AAA authentication

Added the ability to enable or disable AAA authentication for user logins.

5.0(2)

Configuring AAA

AAA authentication

Added support for remote users to log in to a Cisco NX-OS device through a RADIUS or TACACS+ remote authentication server using a default user role.

5.0(2)

Configuring AAA

IP ACLs

Added support for object groups.

5.0(2)

Configuring IP ACLs

Login authentication

Added the ability to enable or disable login authentication failure messages.

5.0(2)

Configuring AAA

RADIUS server groups

Added support for configuring the global source interface for all RADIUS server groups.

5.0(2)

Configuring RADIUS

RADIUS server groups

Added support for configuring a source interface for a specific RADIUS server group.

5.0(2)

Configuring RADIUS

TACACS+ server groups

Added support for configuring the global source interface for all TACACS+ server groups.

5.0(2)

Configuring TACACS+

TACACS+ server groups

Added support for configuring a source interface for a specific TACACS+ server group.

5.0(2)

Configuring TACACS+

Port security

Added support for Layer 2 port-channel interfaces.

4.2(1)

Configuring Port Security