Procedure
PurposeCommand or Action
Enters global configuration mode.switch# configure terminal
Step 1
Specifies a user role and enters role configuration
mode.
switch(config) # role name role-name
Step 2
Enters role VLAN policy configuration mode.switch(config-role )# vlan policy deny
Step 3
Specifies a range of VLANs that the role can access.switch(config-role-vlan # permit vlan
vlan-list
Step 4
Repeat this command for as many VLANs as needed.
Exits role VLAN policy configuration mode.switch(config-role-vlan) # exit
Step 5
(Optional)
Displays the role configuration.
switch# show role
Step 6
(Optional)
Saves the change persistently through reboots and
restarts by copying the running configuration to the
startup configuration.
switch# copy running-config
startup-config
Step 7
Verifying the User Accounts and RBAC Configuration
Use one of the following commands to verify the configuration:
PurposeCommand
Displays the user role configuration
show role [role-name]
Displays the feature list.show role feature
Displays the feature group configuration.show role feature-group
Displays the user account configuration in the startup
configuration.
show startup-config security
Displays the user account configuration in the running
configuration. The all keyword displays the default
values for the user accounts.
show running-config security [all]
Displays user account information.show user-account
Cisco Nexus 3548 Switch NX-OS System Management Configuration Guide, Release 6.x
29
Configuring User Accounts and RBAC
Verifying the User Accounts and RBAC Configuration
To Next Page
Loading...
