56-4
Catalyst 4500 Series Switch, Cisco IOS Software Configuration Guide - Cisco IOS XE 3.9.xE and IOS 15.2(5)Ex
Chapter 56 Configuring Auto Security
Configuring Auto Security
This example shows how to configure a port as an auto-security port host.
Switch# conf t
Enter configuration commands, one per line. End with CNTL/Z.
Switch(config)# int g1/0/18
Switch(config-if)# switchport mode access
Switch(config-if)# auto security-port host
Switch(config-if)# end
Switch#
Use the auto security and show running-config commands to confirm the prior configuration.
Switch# show auto security
Auto Security is Enabled globally
AutoSecure is Enabled on below interface(s):
--------------------------------------------
GigabitEthernet1/0/2
GigabitEthernet1/0/3
GigabitEthernet1/0/15
GigabitEthernet1/0/18
Switch# show run int g1/0/18
Building configuration...
Current configuration : 165 bytes
!
interface GigabitEthernet1/0/18
switchport access vlan 20
switchport mode access
switchport voice vlan 40
auto security-port host
spanning-tree portfast
Disabling Auto Security Feature for Access (End Hosts) or Uplink Ports
Use the no auto security-port command to disable auto security on a port:
This example shows how to disable auto security:
Switch# show run int g1/0/15
Building configuration...
Current configuration : 137 bytes
!
interface GigabitEthernet1/0/15
switchport trunk encapsulation dot1q
Command Purpose
Step 1
Switch# configure terminal
Enters global configuration mode.
Step 2
Switch(config)# interface interface
Enters interface mode
Step 3
Switch(config-if)# no auto
security-port
Disables auto security on a port.
Step 4
Switch(config-if)# end
Exits to EXEC mode.
Step 5
Switch(config)# do show run int
interface
Verifies auto security-port being disabled.
Step 6
Switch(config)# end
Returns to privileged EXEC mode.
To Next Page
Loading...
