The documentation set for this product strives to use bias-free language. For the purposes of this documentation set, bias-free is defined as language that does not imply discrimination based on age, disability, gender, racial identity, ethnic identity, sexual orientation, socioeconomic status, and intersectionality. Exceptions may be present in the documentation due to language that is hardcoded in the user interfaces of the product software, language used based on RFP documentation, or language that is used by a referenced third-party product. Learn more about how Cisco is using Inclusive Language.
Description: Set OSPF Interface Policy Controls
Command Mode: template ospf interface-policy : Configure OSPF Interface Policy Templates
Command Path:
# configure [['terminal', 't']] (config)# leaf <101-4000> (config-leaf)# template ospf interface-policy <WORD> tenant <WORD> (config-interface-policy)# passive-interface
Description: Configure passphrase for AES encryption
Syntax:
WORD |
Passphrase for AES encryption (Range of chars: 16-32) in quotes (Max Size 32) |
Command Mode: crypto aes : AES encryption configuration
Command Path:
# configure [['terminal', 't']] (config)# crypto aes (config-aes)# passphrase <WORD>
Description: Set The system user password.
Syntax:
WORD |
Change user password (Max Size 256) - Only for admin use |
Command Mode: username : Create a locally-authenticated user account
Command Path:
# configure [['terminal', 't']] (config)# username <WORD> (config-username)# password <WORD>
Description: Set The new password.
Syntax:
<WORD> |
new password |
Command Mode: csr : A csr mode to create and hold an SSL certificate
Command Path:
# configure [['terminal', 't']] (config)# crypto keyring <WORD> (config-keyring)# csr (config-csr)# password <WORD>
Description: Configure a password for neighbor
Syntax:
WORD |
Enter Clear-text password |
Command Mode: neighbor : Configure a BGP neighbor
Command Path:
# configure [['terminal', 't']] (config)# leaf <101-4000> (config-leaf)# router bgp <fabric-ASN> (config-bgp)# vrf member tenant <WORD> vrf <WORD> (config-leaf-bgp-vrf)# neighbor A.B.C.D|A.B.C.D/LEN|A:B::C:D|A:B::C:D/LEN [l3out <WORD>] (config-leaf-bgp-vrf-neighbor)# password WORD
Description: Set the number of password changes allowed within change interval
Syntax:
<0-10> |
Set the number of password changes allowed within change interval. Number range from=0 to=10 |
Command Mode: configure : Configuration Mode
Command Path:
# configure [['terminal', 't']] (config)# password change-count <NUMBER>
Description: Set change count/interval policy selector for enforcing password change.
Syntax:
<change-during-interval> |
<change-during-interval> |
Command Mode: configure : Configuration Mode
Command Path:
# configure [['terminal', 't']] (config)# password change-during-interval <change-during-interval>
Description: Set time interval for limiting the number of password changes (unit: Hours)
Syntax:
<1-745> |
Set A time interval for limiting the number of password changes (unit: Hours). Number range from=1 to=745 |
Command Mode: configure : Configuration Mode
Command Path:
# configure [['terminal', 't']] (config)# password change-interval <NUMBER>
Description: Set number of retired passwords to store in user's history.
Syntax:
<0-15> |
Set number of retired passwords to store in user history.. Number range from=0 to=15 |
Command Mode: configure : Configuration Mode
Command Path:
# configure [['terminal', 't']] (config)# password history-count <NUMBER>
Description: Set minimum period before which user cannot change password again (unit: hours)
Syntax:
<1-745> |
Set minimum period before which user cannot change password again (unit: hours). Number range from=1 to=745 |
Command Mode: configure : Configuration Mode
Command Path:
# configure [['terminal', 't']] (config)# password no-change-interval <NUMBER>
Description: Enforces the strength of password for all users
Command Mode: configure : Configuration Mode
Command Path:
# configure [['terminal', 't']] (config)# password pwd-strength-check
Description: Configure remote path properties
Syntax:
ftp |
FTP |
sftp |
Secure FTP |
scp |
Secure copy |
HOST |
Remote host name or IP address |
<0-65535> |
(Optional) Remote port. Number range from=0 to=65535 |
PATH |
(Optional) Remote directory: path/to/some/dir |
Command Mode: remote : Remote path configuration mode
Command Path:
# configure [['terminal', 't']] (config)# remote path <WORD> (config-remote)# path ftp|sftp|scp <HOST> [port <NUMBER>] [remote-directory <PATH>]
Description: Configure Peer dead Interval
Syntax:
<5-600> |
Peer dead Interval value. Number range from=5 to=600 |
Command Mode: vpc domain explicit : Pair two leaf nodes explicitly
Command Path:
# configure [['terminal', 't']] (config)# vpc domain explicit <NUMBER> leaf <101-4000> <101-4000> (config-vpc)# peer-dead-interval <NUMBER>
Description: Configure periodic notifications Parameters
Syntax:
schedule |
Configure periodic notification scheduler |
<schedName> |
scheduler name |
Command Mode: callhome : Callhome common policy configuration mode
Command Path:
# configure [['terminal', 't']] (config)# callhome common (config-callhome)# periodic-inventory notification schedule <schedName>
Description: The contact phone number
Syntax:
WORD |
Phone number in international format(such as +1-800-123-4567) (Max Size 512) |
Command Mode: destination-profile : Configure destination profile Parameters
Command Path:
# configure [['terminal', 't']] (config)# callhome common (config-callhome)# destination-profile (config-callhome-destnprof)# phone-contact <WORD>
Description: Set The phone number of the locally-authenticated user.
Syntax:
WORD |
phone number (Max Size 512) |
Command Mode: username : Create a locally-authenticated user account
Command Path:
# configure [['terminal', 't']] (config)# username <WORD> (config-username)# phone <WORD>
Description: Pod configuration mode
Syntax:
1 |
Enter Pod ID |
Command Mode: configure : Configuration Mode
Command Path:
# configure [['terminal', 't']] (config)# pod 1
Description: Associate an Interface Policy Group to this Interface Group
Syntax:
WORD |
Interface Policy Group Name (Max Size 64) |
Command Mode: leaf-interface-group : Configure Leaf Interface Group
Command Path:
# configure [['terminal', 't']] (config)# leaf-interface-profile <WORD> (config-leaf-if-profile)# leaf-interface-group <WORD> (config-leaf-if-group)# policy-group <WORD>
Description: Configure Policy Group on the Fex
Syntax:
WORD |
Interface Policy Group Name (Max Size 64) |
Command Mode: fex-interface-group : Configure Fex Interface Group
Command Path:
# configure [['terminal', 't']] (config)# fex-profile <WORD> (config-fex-profile)# fex-interface-group <WORD> (config-fex-if-group)# policy-group <WORD>
Description: Configure Policy Group
Syntax:
WORD |
Interface Policy Group Name (Max Size 64) |
force |
(Optional) Delete Per Port Configuration and apply the existing policy-group config |
Command Mode: interface ethernet : Ethernet IEEE 802.3z
Command Path:
# configure [['terminal', 't']] (config)# leaf <101-4000> (config-leaf)# interface ethernet <ifRange> (config-leaf-if)# policy-group <WORD> [force]
Description: Create a policymap of DataPlane type to police/reclassify the traffic
Syntax:
type |
Type of the Qos Policy |
data-plane |
QOS policy for Data Plane Policing |
WORD |
Name of the policy-map to add (Max Size 64) |
Command Mode: configure : Configuration Mode
Command Path:
# configure [['terminal', 't']] (config)# policy-map type data-plane <WORD>
Description: data-plane policy type
Syntax:
type |
Policy Type |
WORD |
Name of the policy-map to add (Max Size 64) |
Command Mode: tenant : tenant configuration mode
Command Path:
# configure [['terminal', 't']] (config)# tenant <WORD> (config-tenant)# policy-map type data-plane <WORD>
Description: QOS policy type
Syntax:
type |
Policy Type |
WORD |
Name of the policy-map to add (Max Size 64) |
Command Mode: tenant : tenant configuration mode
Command Path:
# configure [['terminal', 't']] (config)# tenant <WORD> (config-tenant)# policy-map type qos <WORD>
Description: LDAP server port for authentication
Syntax:
<1-65535> |
Port number. Number range from=1 to=65535 |
Command Mode: ldap-server host : LDAP server DNS name or IP address
Command Path:
# configure [['terminal', 't']] (config)# ldap-server host <A.B.C.D|A:B::C:D|WORD> (config-host)# port <NUMBER>
Description: RADIUS server port for authentication
Syntax:
<1-65535> |
RADIUS server port for authentication. Number range from=1 to=65535 |
Command Mode: radius-server host : RADIUS server's DNS name or its IP address
Command Path:
# configure [['terminal', 't']] (config)# radius-server host <A.B.C.D|A:B::C:D|WORD> (config-host)# port <NUMBER>
Description: TACACS server port for authentication
Syntax:
<1-65535> |
RADIUS server port for authentication. Number range from=1 to=65535 |
Command Mode: tacacs-server host : TACACS+ server's DNS name or its IP address
Command Path:
# configure [['terminal', 't']] (config)# tacacs-server host <A.B.C.D|A:B::C:D|WORD> (config-host)# port <NUMBER>
Description: Set the port used for SSH communication service.
Syntax:
<0-65535> |
Set the port used for SSH communication service.. Number range from=0 to=65535 |
Command Mode: ssh-service : SSH communication policy group
Command Path:
# configure [['terminal', 't']] (config)# comm-policy <WORD> (config-comm-policy)# ssh-service (config-ssh-service)# port <NUMBER>
Description: Set the port used for TELNET communication service.
Syntax:
<0-65535> |
Set the port used for TELNET communication service.. Number range from=0 to=65535 |
Command Mode: telnet : TELNET communication policy group
Command Path:
# configure [['terminal', 't']] (config)# comm-policy <WORD> (config-comm-policy)# telnet (config-telnet)# port <NUMBER>
Description: Set the port used for HTTP communication service.
Syntax:
<1-65535> |
Set the port used for HTTP communication service.. Number range from=1 to=65535 |
Command Mode: http : HTTP communication policy group
Command Path:
# configure [['terminal', 't']] (config)# comm-policy <WORD> (config-comm-policy)# http (config-http)# port <NUMBER>
Description: Set the port used for HTTPS communication service
Syntax:
<1-65535> |
Set the port used for HTTPS communication service. Number range from=1 to=65535 |
Command Mode: https : HTTPS communication policy group
Command Path:
# configure [['terminal', 't']] (config)# comm-policy <WORD> (config-comm-policy)# https (config-https)# port <NUMBER>
Description: Set Port Tracking Delay
Syntax:
<1-300> |
Delay value |
Command Mode: configure : Configuration Mode
Command Path:
# configure [['terminal', 't']] (config)# porttrack delay <1-300>
Description: Set Port Tracking minimum links left up before trigger
Syntax:
<0-12> |
Minlinks Value |
Command Mode: configure : Configuration Mode
Command Path:
# configure [['terminal', 't']] (config)# porttrack minlinks <0-12>
Description: Set Port Tracking State
Syntax:
on |
To enable port tracking state |
Command Mode: configure : Configuration Mode
Command Path:
# configure [['terminal', 't']] (config)# porttrack state on
Description: Create a power supply redundancy policy
Syntax:
redundancy-policy |
Create a power supply redundancy policy |
WORD |
Power supply redundancy policy name (Max Size 64) |
Command Mode: configure : Configuration Mode
Command Path:
# configure [['terminal', 't']] (config)# power redundancy-policy <WORD>
Description: Suppress prefixes
Command Mode: template ospf vrf-policy : Configure Router OSPF Timer Policy Templates
Command Path:
# configure [['terminal', 't']] (config)# leaf <101-4000> (config-leaf)# template ospf vrf-policy <WORD> tenant <WORD> (config-vrf-policy)# prefix-suppression
Description: Rollback preview mode
Command Mode: snapshot rollback : Configuration rollback setup mode
Command Path:
# configure [['terminal', 't']] (config)# snapshot rollback <WORD> (config-rollback)# preview
Description: Set OSPF interface priority used to determine the designated router (DR) on a specific network
Syntax:
<0-255> |
OSPF priority. Number range from=0 to=255 |
Command Mode: template ospf interface-policy : Configure OSPF Interface Policy Templates
Command Path:
# configure [['terminal', 't']] (config)# leaf <101-4000> (config-leaf)# template ospf interface-policy <WORD> tenant <WORD> (config-interface-policy)# priority <NUMBER>
Description: Set the AAA domain role to set privilege bitmask of a user domain
Syntax:
<privType> |
<privType> |
Command Mode: role : Create the AAA domain role to set privilege bitmask of a user domain
Command Path:
# configure [['terminal', 't']] (config)# username <WORD> (config-username)# domain <WORD> (config-domain)# role <WORD> (config-role)# priv-type <privType>
Description: Set privileges (comma separated values)
Syntax:
<privileges> |
Privileges as comma separated values like val1,val2,..valN |
Command Mode: rbac role : Create AAA role, attributes and privileges for user authorization
Command Path:
# configure [['terminal', 't']] (config)# rbac role <WORD> (config-role)# priv <privileges>
Description: Private AS Control
Syntax:
remove-exclusive |
Remove private AS |
remove-exclusive-all |
Remove all private AS |
remove-exclusive-all-replace-as |
Replace private AS with local AS |
Command Mode: neighbor : Configure a BGP neighbor
Command Path:
# configure [['terminal', 't']] (config)# leaf <101-4000> (config-leaf)# router bgp <fabric-ASN> (config-bgp)# vrf member tenant <WORD> vrf <WORD> (config-leaf-bgp-vrf)# neighbor A.B.C.D|A.B.C.D/LEN|A:B::C:D|A:B::C:D/LEN [l3out <WORD>] (config-leaf-bgp-vrf-neighbor)# private-as-control remove-exclusive|remove-exclusive-all|remove-exclusive-all-replace-as
Description: RADIUS server protocol for authentication
Syntax:
<protocol> |
<protocol> |
Command Mode: radius-server host : RADIUS server's DNS name or its IP address
Command Path:
# configure [['terminal', 't']] (config)# radius-server host <A.B.C.D|A:B::C:D|WORD> (config-host)# protocol <protocol>
Description: Set the TACACS+ authentication protocol
Syntax:
WORD |
TACACS+ authentication protocol |
Command Mode: tacacs-server host : TACACS+ server's DNS name or its IP address
Command Path:
# configure [['terminal', 't']] (config)# tacacs-server host <A.B.C.D|A:B::C:D|WORD> (config-host)# protocol <WORD>
Description: Set The lifetime of the user password (0 = No password expiration)
Syntax:
<0-3650> |
lifetime of locally-authenticated user password. Number range from=0 to=3650 |
Command Mode: username : Create a locally-authenticated user account
Command Path:
# configure [['terminal', 't']] (config)# username <WORD> (config-username)# pwd-lifetime <NUMBER>