2-390
Catalyst 3750-X and 3560-X Switch Command Reference
OL-29704-01
Chapter 2 Catalyst 3750-X and 3560-X Switch Cisco IOS Commands
mka policy (global configuration)
mka policy (global configuration)
To create or configure a MACsec Key Agreement (MKA) Protocol policy and to enter MKA policy
configuration mode, use the mka policy global configuration command, To delete the policy, use the no
form of this command.
mka policy policy name
no mka policy policy name
Syntax Description
Defaults No MKA policies are created.
Command Modes Global configuration
Command History
Usage Guidelines If you enter the name of an existing policy, you see a warning that any changes to the policy deletes all
active MKA sessions with that policy.
Whenever you change an MKA policy, active MKA sessions with that policy applied are cleared.
If you try to create a policy name with more than 16 characters, you see a warning message, and the
policy is not created.
If you enter the no mka policy policy-name command to delete a policy that is applied to at least one
interface, you are prompted to first remove the policy from all interfaces that it is applied to and then to
reenter the command. If you attempt to delete a policy and the policy name does not exist, you are
notified.
When you enter MKA policy mode, these commands are available:
• confidentiality-offset—Sets the confidentiality offset for MACsec operation
• default—Sets the policy to its defaults
• exit—Exits from MKA Policy configuration mode
• no—Deletes the MKA policy
• replay-protection—Configures MKA to use replay protection for MACsec operation
policy name Identifies an MKA policy and enters MKA policy configuration mode. The
maximum policy name length is 16 characters.
Release Modification
12.2(53)SE2 This command was introduced.
To Next Page
Loading...
Need help?
General
