Catalyst 6500 Series Command Reference, 6.3 and 6.4
restore counters to set crypto key rsa

Table Of Contents

restore counters

rollback

session

set

set accounting commands

set accounting connect

set accounting exec

set accounting suppress

set accounting system

set accounting update

set alias

set arp

set authentication enable

set authentication login

set authorization commands

set authorization enable

set authorization exec

set banner lcd

set banner motd

set boot auto-config

set boot config-register

set boot config-register auto-config

set boot device

set boot sync now

set boot system flash

set cam

set cdp

set channel cost

set channel vlancost

set config acl nvram

set config mode

set cops

set crypto key rsa


2F2

restore counters

Use the restore counters command to restore MAC and port counters.

restore counters [all | mod/ports]

Syntax Description

all

(Optional) Keyword to specify all ports.

mod/ports

(Optional) Number of the module and the ports on the module.


Defaults

This command has no default settings.

Command Types

Switch command.

Command Modes

Privileged.

Usage Guidelines

If you do not specify a range of ports to be restored, then all ports on the switch are restored.

Examples

This example shows how to restore MAC and port counters:

Console> (enable) restore counters all
This command will restore all counter values reported by the CLI to the hardware counter 
values.
Do you want to continue (y/n) [n]? y
MAC and Port counters restored.
Console> (enable)

Related Commands

clear counters
show port counters

rollback

Use the rollback command set to clear changes made to the ACL edit buffer since its last save. The ACL is rolled back to its state at the last commit command.

rollback qos acl {acl_name | all}

rollback security acl {acl_name | all | adjacency}

Syntax Description

qos acl

Keyword to specify QoS ACEs.

acl_name

Name that identifies the VACL whose ACEs are to be affected.

all

Keyword to rollback all ACLs.

security acl

Keywords to specify security ACEs.

adjacency

Keyword to rollback all adjacency tables.


Defaults

This command has no default settings.

Command Types

Switch command.

Command Modes

Privileged.

Examples

This example shows how to clear the edit buffer of a specific QoS ACL:

Console> (enable) rollback qos acl ip-8-1
Rollback for QoS ACL ip-8-1 is successful.
Console> (enable) 

This example shows how to clear the edit buffer of a specific security ACL:

Console> (enable) rollback security acl IPACL1
IPACL1 editbuffer modifications cleared.
Console> (enable) 

Related Commands

show qos acl info
commit

session

Use the session command to open a session with a module (for example, the MSM, NAM, or ATM). This command allows you to use the module-specific CLI.

session mod

Syntax Description

mod

Number of the module.


Defaults

This command has no default settings.

Command Types

Switch command.

Command Modes

Privileged.

Usage Guidelines

After you enter this command, the system responds with the Enter Password: prompt, if one is configured on the module.

To end the session, enter the quit command.

Use the session command to toggle between router and switch sessions.

For information on ATM commands, refer to the ATM Software Configuration Guide and Command Reference for the Catalyst 5000 Family and 6000 Family Switches.

For information on NAM commands, refer to the Catalyst 6000 Network Analysis Module Installation and Configuration Note.

Examples

This example shows how to open a session with an MSM (module 4):

Console> session 4
Trying Router-4...
Connected to Router-4.
Escape character is `^]'.
 
Router>

Related Commands

switch console
quit

set

Use the set command to display all of the ROM monitor variable names with their values.

set

Syntax Description

This command has no arguments or keywords.

Defaults

This command has no default settings.

Command Types

ROM monitor command.

Command Modes

Normal.

Examples

This example shows how to display all of the ROM monitor variable names with their values:

rommon 2 > set 
PS1=rommon ! > 
BOOT=
?=0

Related Commands

varname=

set accounting commands

Use the set accounting commands command set to enable command event accounting on the switch.

set accounting commands enable {config | enable | all} [stop-only] {tacacs+}

set accounting commands disable

Syntax Description

enable

Keyword to enable the specified accounting method for commands.

config

Keyword to permit accounting for configuration commands only.

enable

Keyword to permit accounting for enable mode commands only.

all

Keyword to permit accounting for all commands.

stop-only

(Optional) Keyword to apply the accounting method at the command end.

tacacs+

Keyword to specify TACACS+ accounting for commands.

disable

Keyword to disable accounting for commands.


Defaults

The default is accounting is disabled.

Command Types

Switch command.

Command Modes

Privileged.

Usage Guidelines

You must configure the TACACS+ servers before you enable accounting.

Examples

This example shows how to send records at the end of the event only using a TACACS+ server:

Console> (enable) set accounting commands enable config stop-only tacacs+
Accounting set to enable for commands-config events in stop-only mode.
Console> (enable) 

Related Commands

set accounting connect
set accounting exec
set accounting suppress
set accounting system
set accounting update
set tacacs server
show accounting

set accounting connect

Use the set accounting connect command set to enable accounting of outbound connection events on the switch.

set accounting connect enable {start-stop | stop-only} {tacacs+ | radius}

set accounting connect disable

Syntax Description

enable

Keyword to enable the specified accounting method for connection events.

start-stop

Keyword to apply the accounting method at the start and stop of the connection event.

stop-only

Keyword to apply the accounting method at the end of the connection event.

tacacs+

Keyword to specify TACACS+ accounting for connection events.

radius

Keyword to specify RADIUS accounting for connection events.

disable

Keyword to disable accounting of connection events.


Defaults

The default is accounting is disabled.

Command Types

Switch command.

Command Modes

Privileged.

Usage Guidelines

You must configure the RADIUS or TACACS+ servers and shared secret keys before you enable accounting.

Examples

This example shows how to enable accounting on Telnet and remote login sessions, generating records at stop only using a TACACS+ server:

Console> (enable) set accounting connect enable stop-only tacacs+
Accounting set to enable for connect events in stop-only mode..
Console> (enable)

Related Commands

set accounting commands
set accounting exec
set accounting suppress
set accounting system
set accounting update
set radius key
set radius server
set tacacs key
set tacacs server
show accounting

set accounting exec

Use the set accounting exec command set to enable accounting of normal login sessions on the switch.

set accounting exec enable {start-stop | stop-only} {tacacs+ | radius}

set accounting exec disable

Syntax Description

enable

Keyword to enable the specified accounting method for normal login sessions.

start-stop

Keyword to specify the accounting method applies at the start and stop of the normal login sessions.

stop-only

Keyword to specify the accounting method applies at the end of the normal login sessions.

tacacs+

Keyword to specify TACACS+ accounting for normal login sessions.

radius

Keyword to specify RADIUS accounting for normal login sessions.

disable

Keyword to disable accounting for normal login sessions.


Defaults

The default is accounting is disabled.

Command Types

Switch command.

Command Modes

Privileged.

Usage Guidelines

You must configure the RADIUS or TACACS+ servers and shared secret keys before you enable accounting.

Examples

This example shows how to enable accounting of normal login sessions, generating records at start and stop using a RADIUS server:

Console> (enable) set accounting exec enable start-stop radius
Accounting set to enable for exec events in start-stop mode.
Console> (enable)

This example shows how to enable accounting of normal login sessions, generating records at stop using a TACACS+ server:

Console> (enable) set accounting exec enable stop-only tacacs+
Accounting set to enable for exec events in stop-only mode.
Console> (enable)

Related Commands

set accounting commands
set accounting connect
set accounting suppress
set accounting system
set accounting update
set radius key
set radius server
set tacacs key
set tacacs server
show accounting

set accounting suppress

Use the set accounting suppress command to enable or disable suppression of accounting information for a user who has logged in without a username.

set accounting suppress null-username {enable | disable}

Syntax Description

null-username

Keyword to specify users must have a user ID.

enable

Keyword to enable suppression for a specified user.

disable

Keyword to disable suppression for a specified user.


Defaults

The default is accounting is disabled.

Command Types

Switch command.

Command Modes

Privileged.

Usage Guidelines

You must configure the TACACS+ servers before you enable accounting.

Examples

This example shows how to suppress accounting information for users without a username:

Console> (enable) set accounting suppress null-username enable
Accounting will be suppressed for user with no username.
Console> (enable) 

This example shows how to include users without the usernames' accounting event information:

Console> (enable) set accounting suppress null-username disable
Accounting will be not be suppressed for user with no username.
Console> (enable) 

Related Commands

set accounting commands
set accounting connect
set accounting exec
set accounting system
set accounting update
set tacacs server
show accounting

set accounting system

Use the set accounting system command set to enable accounting of system events on the switch.

set accounting system enable {start-stop | stop-only} {tacacs+ | radius}

set accounting system disable

Syntax Description

enable

Keyword to enable the specified accounting method for system events.

start-stop

Keyword to specify the accounting method applies at the start and stop of the system event.

stop-only

Keyword to specify the accounting method applies at the end of the system event.

tacacs+

Keyword to specify TACACS+ accounting for system events.

radius

Keyword to specify RADIUS accounting for system events.

disable

Keyword to disable accounting for system events.


Defaults

The default is accounting is disabled.

Command Types

Switch command.

Command Modes

Privileged.

Usage Guidelines

You must configure the RADIUS or TACACS+ servers and shared secret keys before you enable accounting.

Examples

This example shows how to enable accounting for system events, sending records only at the end of the event using a RADIUS server:

Console> (enable) set accounting system enable stop-only radius
Accounting set to enable for system events in start-stop mode..
Console> (enable)

This example shows how to enable accounting for system events, sending records only at the end of the event using a TACACS+ server:

Console> (enable) set accounting system enable stop-only tacacs+
Accounting set to enable for system events in start-stop mode..
Console> (enable)

Related Commands

set accounting commands
set accounting connect
set accounting exec
set accounting suppress
set accounting update
set radius key
set radius server
set tacacs key
set tacacs server
show accounting

set accounting update

Use the set accounting update command to configure the frequency of accounting updates.

set accounting update {new-info | {periodic [interval]}}

Syntax Description

new-info

Keyword to specify an update when new information is available.

periodic

Keyword to specify an update on a periodic basis.

interval

(Optional) Periodic update interval time; valid values are from 1 to 71582 minutes.


Defaults

The default is accounting is disabled.

Command Types

Switch command.

Command Modes

Privileged.

Usage Guidelines

You must configure the TACACS+ servers before you enable accounting.

Examples

This example shows how to send accounting updates every 200 minutes:

Console> (enable) set accounting update periodic 200
Accounting updates will be periodic at 200 minute intervals.
Console> (enable) 

This example shows how to send accounting updates only when there is new information:

Console> (enable) set accounting update new-info
Accounting updates will be sent on new information only.
Console> (enable)

Related Commands

set accounting commands
set accounting connect
set accounting exec
set accounting suppress
set accounting system
set tacacs server
show accounting

set alias

Use the set alias command to define aliases (shorthand versions) of commands.

set alias name command [parameter] [parameter]

Syntax Description

name

Alias being created.

command

Command for which the alias is being created.

parameter

(Optional) Parameters that apply to the command for which an alias is being created.


Defaults

The default is no aliases are configured.

Command Types

Switch command.

Command Modes

Privileged.

Usage Guidelines

The name all cannot be defined as an alias. Reserved words cannot be defined as aliases.

For additional information about parameter, see the specific command for information about applicable parameters.

Examples

This example shows how to set the alias for the clear arp command as arpdel:

Console> (enable) set alias arpdel clear arp
Command alias added.
Console> (enable) 

Related Commands

clear alias
show alias

set arp

Use the set arp command set to add IP address-to-MAC address mapping entries to the ARP table and to set the ARP aging time for the table.

set arp [dynamic | permanent | static] {ip_addr hw_addr}

set arp agingtime agingtime

Syntax Description

dynamic

(Optional) Keyword to specify that entries are subject to ARP aging updates.

permanent

(Optional) Keyword to specify that permanent entries are stored in NVRAM until they are removed by the clear arp or clear config command.

static

(Optional) Keyword to specify that entries are not subject to ARP aging updates.

ip_addr

IP address or IP alias to map to the specified MAC address.

hw_addr

MAC address to map to the specified IP address or IP alias.

agingtime

Keyword to set the period of time after which an ARP entry is removed from the ARP table.

agingtime

Number of seconds that entries will remain in the ARP table before being deleted; valid values are from 0 to 1,000,000 seconds. Setting this value to 0 disables aging.


Defaults

The default is no ARP table entries exist; ARP aging is set to 1200 seconds.

Command Types

Switch command.

Command Modes

Privileged.

Usage Guidelines

When entering the hw_addr, use a 6-hexadecimal byte MAC address in canonical (00-11-22-33-44-55) or noncanonical (00:11:22:33:44:55) format.

Static (nonpermanent) entries remain in the ARP table until you reset the active supervisor engine.

Examples

This example shows how to configure a dynamic ARP entry mapping that will age out after the configured ARP aging time:

Console> (enable) set arp dynamic 198.133.219.232 00-00-0c-40-0f-bc
ARP entry added.
Console> (enable)

This example shows how to set the aging time for the ARP table to 1800 seconds:

Console> (enable) set arp agingtime 1800
ARP aging time set to 1800 seconds.
Console> (enable)

This example shows how to configure a permanent ARP entry, which will remain in the ARP cache after a system reset:

Console> (enable) set arp permanent 198.146.232.23 00-00-0c-30-0f-bc
Permanent ARP entry added as
198.146.232.23 at 00-00-0c-30-0f-bc on vlan 5
Console> (enable) 

This example shows how to configure a static ARP entry, which will be removed from the ARP cache after a system reset:

Console> (enable) set arp static 198.144.239.22 00-00-0c-50-0f-bc
Static ARP entry added as
198.144.239.22 at 00-00-0c-50-0f-bc on vlan 5
Console> (enable)

Related Commands

clear arp
show arp

set authentication enable

Use the set authentication enable command set to enable authentication using the TACACS+, RADIUS, or Kerberos server to determine if you have privileged access permission.

set authentication enable {radius | tacacs | kerberos} enable [console | telnet | http | all] [primary]

set authentication enable {enable | disable} [console | telnet | http | all] [primary]

set authentication enable local {enable | disable} [console | telnet | http | all] [primary]

set authentication enable attempt count [console | telnet]

set authentication enable lockout time [console | telnet]

Syntax Description

radius

Keyword to specify RADIUS authentication for login.

tacacs

Keyword to specify TACACS+ authentication for login.

kerberos

Keyword to specify Kerberos authentication for login.

enable

Keyword to enable the specified authentication method for login.

console

(Optional) Keyword to specify the authentication method for console sessions.

telnet

(Optional) Keyword to specify the authentication method for Telnet sessions.

http

(Optional) Keyword to specify the specified authentication method for HTTP sessions.

all

(Optional) Keyword to apply the authentication method to all session types.

primary

(Optional) Keyword to specify the specified authentication method be tried first.

disable

Keyword to disable the specified authentication method for login.

local

Keyword to specify local authentication for login.

attempt count

Keyword and variable to specify the number of connection attempts before initiating an error; valid values are 0, from 3 to 10, and 0 to disable.

lockout time

Keyword and variable to specify the lockout timeout; valid values are from 30 to 600 seconds, and 0 to disable.


Defaults

The default is local authentication is enabled for console and Telnet sessions. RADIUS, TACACS+, and Kerberos are disabled for all session types. If authentication is enabled, the default attempt count is 3.

Command Types

Switch command.

Command Modes

Privileged.

Usage Guidelines

Use authentication configuration for both console and Telnet connection attempts unless you use the console or telnet keywords to specify the authentication methods for each connection type individually.

Examples

This example shows how to use the TACACS+ server to determine if a user has privileged access permission:

Console> (enable) set authentication enable tacacs enable
tacacs enable authentication set to enable for console, telnet and http session.
Console> (enable)

This example shows how to use the local password to determine if the user has privileged access permission:

Console> (enable) set authentication enable local enable
local enable authentication set to enable for console, telnet and http session.
Console> (enable)

This example shows how to use the RADIUS server to determine if a user has privileged access permission for all session types:

Console> (enable) set authentication enable radius enable 
radius enable authentication set to enable for console, telnet and http session.
Console> (enable) 

This example shows how to use the TACACS+ server to determine if a user has privileged access permission for all session types:

Console> (enable) set authentication enable tacacs enable console
tacacs enable authentication set to enable for console session.
Console> (enable)  

This example shows how to set the Kerberos server to be used first:

Console> (enable) set authentication enable kerberos enable primary
kerberos enable authentication set to enable for console, telnet and http session as 
primary authentication method.
Console> (enable)

This example shows how to limit enable mode login attempts:

Console> (enable) set authentication enable attempt 5
Enable mode authentication attempts for console and telnet logins set to 5.
Console> (enable) 

This example shows how to set the enable mode lockout time for both console and Telnet connections:

Console> (enable) set authentication enable lockout 50
Enable mode lockout time for console and telnet logins set to 50.
Console> (enable) 

Related Commands

set authentication login
show authentication

set authentication login

Use the set authentication login command set to enable TACACS+, RADIUS, or Kerberos as the authentication method for login.

set authentication login {radius | tacacs | kerberos} enable [console | telnet | http | all] [primary]

set authentication login {radius | tacacs | kerberos} disable [console | telnet | http | all]

set authentication login {enable | disable} [console | telnet | http | all]

set authentication login local {enable | disable} [console | telnet | http | all]

set authentication login attempt count [console | telnet]

set authentication login lockout time [console | telnet]

Syntax Description

radius

Keyword to specify the use of the RADIUS server password to determine if you have access permission to the switch.

tacacs

Keyword to specify the use of the TACACS+ server password to determine if you have access permission to the switch.

kerberos

Keyword to specify the Kerberos server password to determine if you have access permission to the switch.

enable

Keyword to enable the specified authentication method for login.

console

(Optional) Keyword to specify the authentication method for console sessions.

telnet

(Optional) Keyword to specify the authentication method for Telnet sessions.

http

(Optional) Keyword to specify the authentication method for HTTP sessions.

all

(Optional) Keyword to specify the authentication method for all session types.

primary

(Optional) Keyword to specify that the method specified is the primary authentication method for login.

disable

Keyword to disable the specified authentication method for login.

local

Keyword to specify a local password to determine if you have access permission to the switch.

attempt count

Keyword and variable to specify the number of login attempts before initiating an error; valid values are 0, from 3 to 10, and 0 to disable.

lockout time

Keyword and variable to specify the lockout timeout; valid values are from 30 to 600 seconds, and 0 to disable.


Defaults

The default is local authentication is the primary authentication method for login.

Command Types

Switch command.

Command Modes

Privileged.

Usage Guidelines

This command allows you to choose the authentification method for the web interface. If you configure the authentification method for the HTTP session as RADIUS, then the username or password is validated using the RADIUS protocol, and TACACS+ and Kerberos authentication is set to disable for the HTTP sessions. By default, the HTTP login is validated using the local login password.

You can specify the authentication method for console, telnet, http, or all by entering the console, telnet, http, or all keywords. If you do not specify console, telnet, http, or all, the authentication method default is for all sessions.

Examples

This example shows how to disable TACACS+ authentication access for Telnet sessions:

Console> (enable) set authentication login tacacs disable telnet
tacacs login authentication set to disable for the telnet sessions.
Console> (enable) 

This example shows how to disable RADIUS authentication access for console sessions:

Console> (enable) set authentication login radius disable console
radius login authentication set to disable for the console sessions.
Console> (enable)

This example shows how to disable Kerberos authentication access for Telnet sessions:

Console> (enable) set authentication login kerberos disable telnet
kerberos login authentication set to disable for the telnet sessions.
Console> (enable)

This example shows how to set TACACS+ authentication access as the primary method for HTTP sessions:

Console> (enable) set authentication login tacacs enable http primary
tacacs login authentication set to enable for HTTP sessions as primary authentification 
method.
Console> (enable)

This example shows how to limit login attempts:

Console> (enable) set authentication login attempt 5
Login authentication attempts for console and telnet logins set to 5.
Console> (enable) 

This example shows how to set the lockout time for both console and Telnet connections:

Console> (enable) set authentication login lockout 50
Login lockout time for console and telnet logins set to 50.
Console> (enable) 

Related Commands

set authentication enable
show authentication

set authorization commands

Use the set authorizaton commands command set to enable authorization of command events on the switch.

set authorization commands enable {config | enable | all} {option} {fallbackoption}
[
console | telnet | both]

set authorization commands disable [console | telnet | both]

Syntax Description

enable

Keyword to enable the specified authorization method for commands.

config

Keyword to permit authorization for configuration commands only.

enable

Keyword to permit authorization for enable mode commands only.

all

Keyword to permit authorization for all commands.

option

Switch response to an authorization request; valid values are tacacs+, if-authenticated, and none. See the "Usage Guidelines" section for valid value definitions.

fallbackoption

Switch fallback response to an authorization request if the TACACS+ server is down or not responding; valid values are tacacs+, deny, if-authenticated, and none. See the "Usage Guidelines" section for valid value definitions.

disable

Keyword to disable authorization of command events.

console

(Optional) Keyword to specify the authorization method for console sessions.

telnet

(Optional) Keyword to specify the authorization method for Telnet sessions.

both

(Optional) Keyword to specify the authorization method for both console and Telnet sessions.


Defaults

The default is authorization is disabled.

Command Types

Switch command.

Command Modes

Privileged.

Usage Guidelines

When you define the option and fallbackoption values, the following occurs:

tacacs+ specifies the TACACS+ authorization method.

deny does not let you proceed.

if-authenticated allows you to proceed with your action if you have been authenticated.

none allows you to proceed without further authorization in case the TACACS+ server does not respond.

Examples

This example shows how to enable authorization for all commands with the if-authenticated option and none fallbackoption:

Console> (enable) set authorization commands enable all if-authenticated none
Successfully enabled commands authorization.
Console> (enable) 

This example shows how to disable command authorization:

Console> (enable) set authorization commands disable
Successfully disabled commands authorization.
Console> (enable) 

Related Commands

set authorization enable
set authorization exec
show authorization

set authorization enable

Use the set authorization enable command set to enable authorization of privileged mode sessions on the switch.

set authorization enable enable {option} {fallbackoption} [console | telnet | both]

set authorization enable disable [console | telnet | both]

Syntax Description

enable

Keyword to enable the specified authorization method.

option

Switch response to an authorization request; valid values are tacacs+, if-authenticated, and none. See the "Usage Guidelines" section for valid value definitions.

fallbackoption

Switch fallback response to an authorization request if the TACACS+ server is down or not responding; valid values are tacacs+, deny, if-authenticated, and none. See the "Usage Guidelines" section for valid value definitions.

disable

Keyword to disable the authorization method.

console

(Optional) Keyword to specify the authorization method for console sessions.

telnet

(Optional) Keyword to specify the authorization method for Telnet sessions.

both

(Optional) Keyword to specify the authorization method for both console and Telnet sessions.


Defaults

The default is authorization is disabled.

Command Types

Switch command.

Command Modes

Privileged.

Usage Guidelines

When you define the option and fallbackoption values, the following occurs:

tacacs+ specifies the TACACS+ authorization method.

deny does not let you proceed.

if-authenticated allows you to proceed with your action if you have authentication.

none allows you to proceed without further authorization in case the TACACS+ server does not respond.

Examples

This example shows how to enable authorization of configuration commands in enable, privileged login mode, sessions:

Console> (enable) set authorization enable enable if-authenticated none 
Successfully enabled enable authorization.
Console> (enable) 

This example shows how to disable enable mode authorization:

Console> (enable) set authorization enable disable
Successfully disabled enable authorization.
Console> (enable) 

Related Commands

set authorization commands
set authorization exec
show authorization

set authorization exec

Use the set authorization exec command set to enable authorization of exec, normal login mode, session events on the switch.

set authorization exec enable {option} {fallbackoption} [console | telnet | both]

set authorization exec disable [console | telnet | both]

Syntax Description

enable

Keyword to enable the specified authorization method.

option

Switch response to an authorization request; valid values are tacacs+, if-authenticated, and none. See the "Usage Guidelines" section for valid value definitions.

fallbackoption

Switch fallback response to an authorization request if the TACACS+ server is down or not responding; valid values are tacacs+, deny, if-authenticated, and none. See the "Usage Guidelines" section for valid value definitions.

disable

Keyword to disable authorization method.

console

(Optional) Keyword to specify the authorization method for console sessions.

telnet

(Optional) Keyword to specify the authorization method for Telnet sessions.

both

(Optional) Keyword to specify the authorization method for both console and Telnet sessions.


Defaults

The default is authorization is denied.

Command Types

Switch command.

Command Modes

Privileged.

Usage Guidelines

When you define the option and fallbackoption values, the following occurs:

tacacs+ specifies the TACACS+ authorization method.

deny fails authorization if the TACACS+ server does not respond.

if-authenticated allows you to proceed with your action if the TACACS+ server does not respond and you have authentication.

none allows you to proceed without further authorization if the TACACS+ server does not respond.

Examples

This example shows how to enable authorization of configuration commands in exec, normal login mode, sessions:

Console> (enable) set authorization exec enable if-authenticated none 
Successfully enabled exec authorization.
Console> (enable) 

This example shows how to disable exec mode authorization:

Console> (enable) set authorization exec disable
Successfully disabled exec authorization.
Console> (enable) 

Related Commands

set authorization commands
set authorization enable
show authorization

set banner lcd

Use the set banner lcd command to configure the Catalyst 6500 series Switch Fabric Module LCD user banner.

set banner lcd c [text] c

Syntax Description

c

Delimiting character used to begin and end the message.

text

(Optional) Message of the day.


Defaults

This command has no default settings.

Command Types

Switch command.

Command Modes

Privileged.

Usage Guidelines

The banner may contain no more than 800 characters, including tabs. Tabs display as eight characters but take only one character of memory.

Once you configure the user banner, it is sent down to all Catalyst 6500 series Switch Fabric Modules in the switch and displayed in the LCD.

Examples

This example shows how to set the Catalyst 6500 series Switch Fabric Module LCD user banner:

Console> (enable) set banner lcd &hello
there&
LCD banner set
Console> (enable)

Related Commands

show banner

set banner motd

Use the set banner motd command to program an MOTD banner to appear before session login.

set banner motd c [text] c

Syntax Description

c

Delimiting character used to begin and end the message.

text

(Optional) Message of the day.


Defaults

This command has no default settings.

Command Types

Switch command.

Command Modes

Privileged.

Usage Guidelines

The banner may contain no more than 3,070 characters, including tabs. Tabs display as eight characters but take only one character of memory.

You can use either the clear banner motd command or the set banner motd cc command to clear the message-of-the-day banner.

Examples

This example shows how to set the message of the day using the pound sign (#) as the delimiting character:

Console> (enable) set banner motd #
** System upgrade at 6:00am Tuesday.
** Please log out before leaving on Monday. #
MOTD banner set.
Console> (enable)

This example shows how to clear the message of the day:

Console> (enable) set banner motd ##
MOTD banner cleared.
Console> (enable)

Related Commands

clear banner motd
show banner

set boot auto-config

Use the set boot auto-config command to specify one or more configuration files to use to configure the switch at bootup. The list of configuration files is stored in the CONFIG_FILE environment variable.

set boot auto-config device:filename [;device:filename...] [mod]

Syntax Description

device:

Device where the startup configuration file resides.

filename

Name of the startup configuration file.