EasyManua.ls Logo

Cisco TrustSec - Page 96

Cisco TrustSec
208 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Loading...
7-10
Cisco TrustSec Configuration Guide
OL-22192-01
Chapter 7 Cisco TrustSec Command Summary
cts credentials
cts credentials
Use the cts credentials command in privileged EXEC mode to specify the TrustSec ID and password of
the network device. Use the clear cts credentials command to delete the credentials.
cts credentials id cts_id password cts_pwd
Syntax Description
Defaults None
Command Modes Privileged EXEC (#)
Supported User Roles Administrator
Command History
Usage Guidelines For use in TrustSec Network Device Admission Control (NDAC) authentication, the cts credentials
command specifies the Cisco TrustSec device ID and password for this switch to use when
authenticating with other Cisco TrustSec devices with EAP-FAST. The CTS credentials state retrieval is
not performed by the nonvolatile generation process (NVGEN) because the CTS credential information
is saved in the keystore, not in the startup-config. The device can be assigned a CTS identity by the Cisco
Secure Access Control Server (ACS), or auto-generate a new password when prompted to do so by the
ACS. Those credentials are stored in the keystore, eliminating the need to save the running-config. To
display the CTS device ID, use the show cts credentials command. The stored password is never
displayed.
To change the device ID or the password, reenter the command. To clear the keystore, use the clear cts
credentials command.
Note When the CTS device ID is changed, all Protected Access Credentials (PACs) are flushed from the
keystore because the PACs are associated with the old device ID and are not valid for a new identity.
credentials id cts_id Specifies the Cisco TrustSec device ID for this device to use when
authenticating with other Cisco TrustSec devices with EAP-FAST. The cts-id
variable has a maximum length of 32 characters and is case sensitive.
password cts_pwd Specifies the password for this device to use when authenticating with other
Cisco TrustSec devices with EAP-FAST.
Release Modification
12.2(33) SXI This command was introduced on the Catalyst 6500 series switches.

Table of Contents

Related product manuals