Enabling SGACL Policy Enforcement
To enable SGACL policy enforcement, perform this task:
Procedure
Command or Action | Purpose | |
---|---|---|
Step 1 |
enable Example:
|
Enables privileged EXEC mode. Enter your password, if prompted. |
Step 2 |
configure terminal Example:
|
Enters global configuration mode. |
Step 3 |
cts authorization list server-list Example:
|
Configures a AAA server to be used by the seed device. |
Step 4 |
cts role-based sgt-map vlan-list vlan-id sgt sgt-number Example:
|
Binds an SGT with a specified VLAN or a set of VLANs. |
Step 5 |
cts role-based enforcement Example:
|
Enables security group access control list (SGACL) policy enforcement on routed interfaces. |
Step 6 |
cts role-based enforcement vlan-list vlan-list Example:
|
Enables SGACL policy enforcement on the VLAN or VLAN list. |
Step 7 |
end Example:
|
Returns to privileged EXEC mode. |