1. Manuals
  2. Brands
  3. Cisco Manuals
  4. Switch
  5. TrustSec
  6. Configuration manual

Cisco TrustSec Configuration Manual page 96

Hide thumbs
Table of Contents

Advertisement

cts credentials
cts credentials
Use the cts credentials command in privileged EXEC mode to specify the TrustSec ID and password of
the network device. Use the clear cts credentials command to delete the credentials.
Syntax Description
credentials id cts_id
password cts_pwd
Defaults
None
Command Modes
Privileged EXEC (#)
Supported User Roles
Administrator
Command History
Release
12.2(33) SXI
Usage Guidelines
For use in TrustSec Network Device Admission Control (NDAC) authentication, the cts credentials
command specifies the Cisco TrustSec device ID and password for this switch to use when
authenticating with other Cisco TrustSec devices with EAP-FAST. The CTS credentials state retrieval is
not performed by the nonvolatile generation process (NVGEN) because the CTS credential information
is saved in the keystore, not in the startup-config. The device can be assigned a CTS identity by the Cisco
Secure Access Control Server (ACS), or auto-generate a new password when prompted to do so by the
ACS. Those credentials are stored in the keystore, eliminating the need to save the running-config. To
display the CTS device ID, use the show cts credentials command. The stored password is never
displayed.
To change the device ID or the password, reenter the command. To clear the keystore, use the clear cts
credentials command.
When the CTS device ID is changed, all Protected Access Credentials (PACs) are flushed from the
Note
keystore because the PACs are associated with the old device ID and are not valid for a new identity.
Cisco TrustSec Configuration Guide
7-10
cts credentials id cts_id password cts_pwd
Specifies the Cisco TrustSec device ID for this device to use when
authenticating with other Cisco TrustSec devices with EAP-FAST. The cts-id
variable has a maximum length of 32 characters and is case sensitive.
Specifies the password for this device to use when authenticating with other
Cisco TrustSec devices with EAP-FAST.
Modification
This command was introduced on the Catalyst 6500 series switches.
Chapter 7
Cisco TrustSec Command Summary
OL-22192-01
Show Quick Links

Hide quick links:

Advertisement

Table of Contents
loading

Related Manuals for Cisco TrustSec

Related Products for Cisco TrustSec

Table of Contents