1. Manuals
  2. Brands
  3. Cisco Manuals
  4. Switch
  5. TrustSec
  6. Configuration manual

Cisco TrustSec Configuration Manual page 107

Hide thumbs
Table of Contents

Advertisement

Chapter 7
Cisco TrustSec Command Summary
cts refresh
To refresh the TrustSec peer authorization policy and of all or specific CTS peers, or to refresh the
SGACL policies downloaded to the switch by the authentication server, use the cts refresh command in
privileged EXEC mode.
Syntax Description
environment-data
peer Peer-ID
sgt sgt_number
default
unknown
Defaults
None
Command Modes
Privileged EXEC (#)
Supported User Roles
Administrator
Command History
Release
12.2(33) SXI
12.2(50) SY
Usage Guidelines
To refresh the Peer Authorization Policy on all TrustSec peers, enter cts policy refresh without
specifying a peer ID.
The peer authorization policy is initially downloaded from the Cisco ACS at the end of the EAP-FAST
NDAC authentication success. The Cisco ACS is configured to refresh the peer authorization policy, but
the cts policy refresh command can force immediate refresh of the policy before the Cisco ACS timer
expires. This command is relevant only to TrustSec devices that can impose Security Group Tags (SGTs)
and enforce Security Group Access Control Lists (SGACLs).
OL-22192-01
cts refresh environment-data
cts refresh policy {peer [peer_id] | sgt [sgt_number | default | unknown] }
Refreshes environment data.
(Optional). If a peer-id is specified, only the policies related to the specified
peer connection are refreshed. To refresh all peer policies, press Enter
without specifying an ID.
Performs an immediate refresh of the SGACL policies from the
authentication server.
If an SGT number is specified, only the policies related to that SGT are
refreshed. To refresh all security group tag policies, press Enter without
specifying an SGT number.
Refreshes the default SGACL policy.
Refreshes unknown SGACL policy.
Modification
This command was introduced as cts policy refresh on the Catalyst 6500
series switches.
This command was changed to cts refresh policy on the Catalyst 6500 series
switches. The sgt, default, and unknown keywords were added.
Cisco TrustSec Configuration Guide
cts refresh
7-21
Show Quick Links

Hide quick links:

Advertisement

Table of Contents
loading

Related Manuals for Cisco TrustSec

Related Products for Cisco TrustSec

Table of Contents