02-14-2017 12:20 AM - edited 03-11-2019 12:27 AM
We would like to inquire if possible to restrict the access of our site IT, to prevent them changing the port that are already in siwtchport mode trunk, and also prevent them to shutdown.
configure terminal
show
interface
shutdown
no
exit
end
copy
enable
traceroute
switchport
clear port-security
02-14-2017 02:57 AM
Hi John,
You can do thois through Policy > Authorization. Create the relevant conditions and apply them there.
02-15-2017 08:13 AM
You will want to configure command authorization on the router (switch, etc.) and then create a command authorization set on ACS, and apply it to an authorization policy.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide