Cisco Nexus 9000 Series

To Next Page

To Previous Page

Before you begin

Create one or more user roles.

SUMMARY STEPS

1. configure terminal

2. role name role-name

3. vlan policy deny

4. permit vlan vlan-list

5. exit

6. (Optional) show role

7. (Optional) show role {pending | pending-diff}

8. (Optional) role commit

9. (Optional) copy running-config startup-config

DETAILED STEPS

PurposeCommand or Action

Enters global configuration mode.configure terminal

Example:

Step 1

switch# configure terminal

switch(config)#

Specifies a user role and enters role configuration mode.

role name role-name

Example:

Step 2

switch(config)# role name UserA

switch(config-role)#

Enters role VLAN policy configuration mode.vlan policy deny

Example:

Step 3

switch(config-role)# vlan policy deny

switch(config-role-vlan)#

Specifies a range of VLANs that the role can access.

permit vlan vlan-list

Step 4

Example:

Repeat this command for as many VLANs as needed.

switch(config-role-vlan)# permit vlan 1-4

Exits role VLAN policy configuration mode.exit

Example:

Step 5

switch(config-role-vlan)# exit

switch(config-role)#

Displays the role configuration.(Optional) show role

Example:

Step 6

switch(config)# show role

Cisco Nexus 9000 Series NX-OS Security Configuration Guide, Release 9.x

168

Configuring User Accounts and RBAC

Changing User Role VLAN Policies

Main Page

Cisco Nexus 9000 Series - Page 194

Table of Contents

Other manuals for Cisco Nexus 9000 Series

Related product manuals