Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
991
Views
1
Helpful
1
Replies

TrustSec without MacSec (only SGT and Enforcement)

Go to solution
nuno.santos
Level 1
Level 1

‎07-31-2017 07:20 AM - edited ‎03-11-2019 12:54 AM

Is it possible to perform SGT propagation only using cts manual with sap no-encapsulation keeping the enforcement? Ideia is on LAN Uplinks to use only SGT without any kind of macsec (authentication and/or encryption).

Thanks,

Nuno

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Rob Ingram
VIP
VIP

‎07-31-2017 11:36 AM

Yes, you can propgate SGTs via inline tagging (cts manual command) or SXP. You don't need to use MACSec. Checkout the TrustSec matrix for info on what devices support inline tagging and enforcement http://www.cisco.com/c/dam/en/us/solutions/collateral/enterprise-networks/trustsec/platform-capability-matrix.pdf

View solution in original post

1 Reply 1

Go to solution
Rob Ingram
VIP
VIP

‎07-31-2017 11:36 AM

Yes, you can propgate SGTs via inline tagging (cts manual command) or SXP. You don't need to use MACSec. Checkout the TrustSec matrix for info on what devices support inline tagging and enforcement http://www.cisco.com/c/dam/en/us/solutions/collateral/enterprise-networks/trustsec/platform-capability-matrix.pdf

Customers Also Viewed These Support Documents