Table of Contents
Advertisement
Revised: May 28, 2010, OL-22192-01
Numeric
IEEE 802.1AE defines a Layer 2 hop-by-hop encryption process used between Cisco TrustSec
802.1AE
hardware-capable devices. TrustSec uses SAP for the key management and cipher negotiation
mechanism.
A
A network device that is a member of a TrustSec network can authenticate a network device attempting
Authenticator
to join the TrustSec network, in the role of authenticator to supplicant device. NDAC is the process by
which the supplicant device is admitted into the TrustSec Network.
C
Cisco Trusted Security, or Cisco TrustSec, or TrustSec.
CTS
E
Endpoint Admission Control. A process of assigning SGT values to a specific IP address of the
EAC
endpoint. Depending on hardware and software support, an SGT can be assigned to a source IP address
with 802.1X authentication, MAC Authentication Bypass, Web Authentication Bypass, manual
assignment, or IPM.
Extensible Authentication Protocol. EAP-FAST is the EAP variant used in TrustSec networks for
EAP
NDAC authentication.
I
Identity-to-port mapping. A method for a switch to define the identity on a port to which an endpoint
IPM
is connected, and to use this identity to look up a particular SGT value in the Cisco Secure ACS server.
OL-22192-01
G L O S S A R Y
Cisco TrustSec Configuration Guide
GL-1
Hide quick links:
Advertisement
Table of Contents
