Table of Contents
Advertisement
Figure 10.
Figure 10 shows how the Cisco ISE can communicate with the access layer switch to apply SGTs based on user
and device type. After the SGTs are assigned by the access layer switch, the Cisco Catalyst 6500-E with
Supervisor Engine 2T can enforce the access policies that the network administrator configures in the Cisco ISE.
If the access layer switch is unable to apply the SGTs, then the Cisco Catalyst 6500-E with Supervisor Engine 2T
has the ability to apply SGTs in the backbone based on the IP subnet, the VLAN, or the Layer 3 port in which the
user is located. Figure 11 shows examples of both the SGT imposition and SGACL enforcement capabilities.
Figure 11.
© 2013 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public Information.
SGTs at the Access Layer
SGTs in the Unified Access Campus Backbone
Page 12 of 28
Advertisement
Table of Contents
Related Manuals for Cisco Catalyst 6500-E Series
Related Products for Cisco Catalyst 6500-E Series
- Cisco 6503 - Catalyst Firewall Security Sys
- Cisco 6500 - Catalyst Series 10 Gigabit EN Interface Module Expansion
- Cisco 6503-E - Catalyst Chassis With Supervisor Engine 32 Switch
- Cisco 6504-E - Catalyst Chassis With Supervisor Engine 32 Switch
- Cisco 6506 - Catalyst Chassis Switch
- Cisco 6513 - Catalyst Switch
- Cisco Catalyst 6509
- Cisco Catalyst 6513-E