EasyManuals Logo

Cisco TrustSec User Manual

Cisco TrustSec
208 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Page #87 background imageLoading...
Page #87 background image
CHAPTER
7-1
Cisco TrustSec Configuration Guide
OL-22192-01
7
Cisco TrustSec Command Summary
Revised: April 26, 2013, OL-22192-01
Cisco TrustSec Privileged EXEC Commands
cts change-password Initiate password change with AAA server.
cts credentials Inserts CTS device ID and password into the
keystore.
cts refresh Refresh environment, peer and RBACL policies.
cts rekey CTS SAP rekey
cts role-based policy trace TrustSec SGT and SGACL trace utility.
Cisco TrustSec Global Configuration Commands
cts authorization list Configures CTS global authorization
configuration.
cts cache Enables caching of TrustSec authorization and
environment-data information to DRAM and
NVRAM.
cts manual Define CTS keystore behavior
cts policy layer3 Specifies traffic and exception policies for CTS
Layer 3 Transport gateway interfaces.
cts role-based Maps IP addresses, L3 interfaces, and VRFs to
SGTs; enables CTS caching and
SGACL enforcement.
cts server Configures RADIUS server list configuration.
cts sgt Configures local device security group tag.
cts sxp Configures SGT exchange over TCP.
CTS Flexible NetFlow Commands
match flow cts

Table of Contents

Questions and Answers:

Question and Answer IconNeed help?

Do you have a question about the Cisco TrustSec and is the answer not in the manual?

Cisco TrustSec Specifications

General IconGeneral
CategoryNetwork Security
FunctionalityProvides role-based access control, network segmentation, and policy enforcement.
Key ComponentsSecurity Group Tags (SGT), Security Exchange Protocol (SXP).
Authentication Methods802.1X, MAC Authentication Bypass (MAB), Web Authentication
Security Group Tagging (SGT)Assigns security group tags to users and devices for identity-based segmentation.
Security Exchange Protocol (SXP)A protocol used to propagate SGT information across network devices.
Policy EnforcementEnforces security policies based on SGTs and SGACLs.
BenefitsEnhanced security, simplified policy management, and improved compliance.
EncryptionSupports encryption for data in transit through IPsec and MACsec.
ScalabilityScalable to large enterprise networks with thousands of devices.
CompatibilityCompatible with a wide range of Cisco network devices.
DescriptionCisco TrustSec is a security architecture framework designed to build secure networks. It uses identity-based access control to segment the network and enforce policies based on user roles and device types, rather than relying solely on IP addresses.

Related product manuals