Database Activation Rejection; Forcing Port Security Activation - Cisco Nexus 5000 Series Configuration Manual

Port Security Activation
DETAILED STEPS
Command or Action
Step 1
configure terminal
Example:
switch# configure terminal
switch(config)#
Step 2 port-security activate vsan vsan-id
Example:
switch(config)# port-security activate vsan 20
Step 3 port-security activate vsan vsan-id no-auto-learn
Example:
switch(config)# port-security activate vsan 20
no-auto-learn
Step 4 no port-security activate vsan vsan-id
Example:
switch(config)# no port-security activate vsan 20

Database Activation Rejection

Database activation is rejected in the following cases:
• Missing or conflicting entries exist in the configuration database but not in the active database.
• The auto-learning feature was enabled before the activation. To reactivate a database in this state, disable
• The exact security is not configured for each port channel member.
• The configured database is empty but the active database is not.
If the database activation is rejected due to one or more conflicts listed in the previous section, you may decide
to proceed by forcing the port security activation.

Forcing Port Security Activation

You can forcefully activate the port security database.
SUMMARY STEPS
1. configure terminal
2. port-security activate vsan vsan-id force
Cisco Nexus 5000 Series NX-OS SAN Switching Configuration Guide, Release 5.2(1)N1(1)
258
auto-learning.
Purpose
Enters global configuration mode.
Activates the port security database for the specified
VSAN, and automatically enables auto-learning.
Activates the port security database for the specified
VSAN, and disables auto-learning.
Deactivates the port security database for the specified
VSAN, and automatically disables auto-learning.
Configuring Port Security
OL-27583-01