Configuring Port Security
Auto-Learning
About Enabling Auto-Learning
The state of the auto-learning configuration depends on the state of the port security feature:
• If the port security feature is not activated, auto-learning is disabled by default.
• If the port security feature is activated, auto-learning is enabled by default (unless you explicitly disabled
If auto-learning is enabled on a VSAN, you can only activate the database for that VSAN by using the
Tip
force option.
Enabling Auto-Learning
To enable auto-learning, perform this task:
Procedure
Step 1
Step 2
Disabling Auto-Learning
To disable auto-learning, perform this task:
Procedure
Step 1
Step 2
Auto-Learning Device Authorization
The following table summarizes the authorized connection conditions for device requests.
OL-16597-01
this option).
Command or Action
switch# configuration terminal
switch(config)# port-security
auto-learn vsan vsan-id
Command or Action
switch# configuration terminal
switch(config)# no port-security
auto-learn vsan vsan-id
Purpose
Enters configuration mode.
Enables auto-learning so the switch can learn about
any device that is allowed to access VSAN 1. These
devices are logged in the port security active database.
Purpose
Enters configuration mode.
Disables auto-learning and stops the switch from
learning about new devices accessing the switch.
Enforces the database contents based on the devices
learned up to this point.
Cisco Nexus 5000 Series Switch CLI Software Configuration Guide
Auto-Learning
641