Procedure
PurposeCommand or Action
Enters global configuration mode.switch# configure terminal
Step 1
Specifies a user role and enters role
configuration mode.
switch(config) # role name role-name
Step 2
Enters role VLAN policy configuration mode.switch(config-role )# vlan policy deny
Step 3
Specifies a range of VLANs that the role can
access.
switch(config-role-vlan # permit vlan vlan-list
Step 4
Repeat this command for as many VLANs as
needed.
Exits role VLAN policy configuration mode.switch(config-role-vlan) # exit
Step 5
Displays the role configuration.(Optional) switch# show role
Step 6
Saves the change persistently through reboots
and restarts by copying the running
configuration to the startup configuration.
(Optional) switch# copy running-config
startup-config
Step 7
Verifying the User Accounts and RBAC Configuration
Use one of the following commands to verify the configuration:
PurposeCommand
Displays the user role configuration
show role [role-name]
Displays the feature list.show role feature
Displays the feature group configuration.show role feature-group
Displays the user account configuration in the startup configuration.show startup-config security
Displays the user account configuration in the running configuration.
The all keyword displays the default values for the user accounts.
show running-config security [all]
Displays user account information.show user-account
Configuring User Accounts Default Settings for the User
Accounts and RBAC
The following table lists the default settings for user accounts and RBAC parameters.
Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 7.x
209
Configuring User Accounts and RBAC
Verifying the User Accounts and RBAC Configuration
To Next Page
Loading...
