Cisco Nexus 7000 Series Command Reference Manual page 602
Hide thumbs
Also See for Nexus 7000 Series:
- Reference manual (746 pages) ,
- Configuration manual (536 pages) ,
- Hardware installation and reference manual (508 pages)
Table of Contents
Advertisement
permit (role-based access control list)
Command Default
None
Command Modes
role-based access control list
Command History
Release
5.0(2)
4.0(1)
Usage Guidelines
To use this command, you must enable the Cisco TrustSec feature using the feature cts command.
To enable RBACL logging, you must enable RBACL policy enforcement on the VLAN and VRF.
To enable RBACL logging, you must set the logging level of ACLLOG syslogs to 6 and the logging level of
CTS manager syslogs to 5.
This command requires the Advanced Services license.
Examples
This example shows how to add a permit action to an SGACL and enable RBACL logging:
switch# configure terminal
switch(config)# cts role-based access-list MySGACL
switch(config-rbacl)# permit icmp log
This example shows how to remove a permit action from an SGACL:
switch# configure terminal
switch(config)# cts role-based access-list MySGACL
switch(config-rbacl)# no permit icmp log
Related Commands
Command
cts role-based access-list
deny (role-based access control list)
feature cts
show cts role-based access-list
Cisco Nexus 7000 Series Security Command Reference
576
Modification
The log keyword was added to support the enabling of role-based access
control list (RBACL) logging.
This command was introduced.
Description
Configures Cisco TrustSec SGACLs.
Configures deny actions in an SGACL.
Enables the Cisco TrustSec feature.
Displays the Cisco TrustSec SGACL configuration.
P Commands
Advertisement
Table of Contents
