Preface

Revised: February 10, 2012, OL-22192-02

Organization

This guide includes the following chapters and appendixes:

Chapter or Appendix Title
Description

Chapter 1 "Cisco TrustSec Overview"

Describes the elements and processes that create the Cisco TrustSec network.

Chapter 2 "Configuring the Cisco TrustSec Solution"

Provides an overview of configuration tasks required to implement a Cisco TrustSec Network.

Chapter 3 "Configuring Identities, Connections, and SGTs"

Provides NDAC and TrustSec seed device configuration procedures.

Chapter 4 "Configuring SGT Exchange Protocol over TCP (SXP) and Layer 3 Transport"

Provides SGT over TCP Protocol (SXP) configuration procedures.

Chapter 5 "Configuring SGACL Policies"

Provides Security Group ACL configuration procedures from the switch CLI.

Chapter 6 "Configuring Endpoint Admission Control"

Provides 802.1X, MAB, and WebAuth configuration procedures for a TrustSec context.

Chapter 7 "Cisco TrustSec Command Summary"

Provides a list of Cisco TrustSec CLI commands with brief descriptions.

"Notes for Catalyst 3750, 3560, and 2960 Series Switches"

Describes constraints, limitations, or considerations pertaining to TrustSec implementation of Catalyst 3750 and 3560 Series Switches.

"Notes for Catalyst 4500 Series Switches"

Describes constraints, limitations, or considerations pertaining to TrustSec implementation of Catalyst 4500 Series Switches.

"Notes for Catalyst 6500 Series Switches"

Describes constraints, limitations, or considerations pertaining to TrustSec implementation of Catalyst 6500 Series Switches.


Conventions

This document uses the following conventions:

Convention
Indication

bold font

Commands and keywords and user-entered text appear in bold font.

italic font

Document titles, new or emphasized terms, and arguments for which you supply values are in italic font.

[ ]

Elements in square brackets are optional.

{x | y | z }

Required alternative keywords are grouped in braces and separated by vertical bars.

[ x | y | z ]

Optional alternative keywords are grouped in brackets and separated by vertical bars.

string

A nonquoted set of characters. Do not use quotation marks around the string or the string will include the quotation marks.

courier font

Terminal sessions and information the system displays appear in courier font.

< >

Nonprinting characters such as passwords are in angle brackets.

[ ]

Default responses to system prompts are in square brackets.

!, #

An exclamation point (!) or a pound sign (#) at the beginning of a line of code indicates a comment line.


Note Means reader take note.

Tip Means the following information will help you solve a problem.

Caution Means reader be careful. In this situation, you might perform an action that could result in equipment damage or loss of data.

Timesaver Means the described action saves time. You can save time by performing the action described in the paragraph.

Warning Means reader be warned. In this situation, you might perform an action that could result in bodily injury.

Obtaining Documentation and Submitting a Service Request

For information on obtaining documentation, submitting a service request, and gathering additional information, see the monthly What's New in Cisco Product Documentation, which also lists all new and revised Cisco technical documentation, at:

http://www.cisco.com/en/US/docs/general/whatsnew/whatsnew.html

Subscribe to the What's New in Cisco Product Documentation as a Really Simple Syndication (RSS) feed and set content to be delivered directly to your desktop using a reader application. The RSS feeds are a free service and Cisco currently supports RSS Version 2.0.