Purpose
Command or Action
switch# configure terminal
switch(config)#
Specifies a user role and enters role configuration mode.
role name role-name
Example:
Step 2
switch(config)# role name UserA
switch(config-role)#
Enters role VRF policy configuration mode.
vrf policy deny
Example:
Step 3
switch(config-role)# vrf policy deny
switch(config-role-vrf)#
Specifies the VRF that the role can access.
permit vrf vrf-name
Step 4
Example:
Repeat this command for as many VRFs as needed.
switch(config-role-vrf)# permit vrf vrf1
Exits role VRF policy configuration mode.
exit
Example:
Step 5
switch(config-role-vrf)# exit
switch(config-role)#
Displays the role configuration.
(Optional)
show role
Example:
Step 6
switch(config-role)# show role
Displays the user role configuration pending for distribution.
(Optional)
show role
{
pending
|
pending-diff
}
Example:
Step 7
switch(config-role)# show role pending
Applies the user role configuration changes in the temporary
database to the running configuration.
(Optional)
role commit
Example:
Step 8
switch(config-role)# role commit
Copies the running configuration to the startup
configuration.
(Optional)
copy running-config startup-config
Example:
Step 9
switch(config-role)# copy running-config
startup-config
Related Topics
, on page 162
Cisco Nexus 9000 Series NX-OS Security Configuration Guide, Release 9.x
170
Configuring User Accounts and RBAC
Changing User Role VRF Policies