Consolidated Platform Configuration Guide, Cisco IOS XE 3.6E (Catalyst 3850 Switches)

Information about Cisco TrustSec

Cisco TrustSec provides security improvements to Cisco network devices based on the capability to strongly identify users, hosts, and network devices within a network. TrustSec provides topology-independent and scalable access controls by uniquely classifying data traffic for a particular role. TrustSec ensures data confidentiality and integrity by establishing trust among authenticated peers and encrypting links with those peers.

The key component of Cisco TrustSec is the Cisco Identity Services Engine (ISE). Cisco ISE can provision switches with TrustSec Identities and Security Group ACLs (SGACLs), though these may be configured manually on the switch.

Finding Feature Information

To configure Cisco Trustsec on the switch, see the Cisco TrustSec Switch Configuration Guide at the following URL:

https://www.cisco.com/c/en/us/td/docs/switches/lan/trustsec/configuration/guide/trustsec.html

Release notes for Cisco TrustSec General Availability releases are at the following URL:

https://www.cisco.com/c/en/us/td/docs/switches/lan/trustsec/release/notes/rn_cts_crossplat.html

For restrictions and limitations on Catalyst 3850 and 3650, see the notes available at the following URL:

http://www.cisco.com/c/en/us/td/docs/switches/lan/trustsec/configuration/guide/trustsec/appa_cat3k.html

Additional information about the Cisco TrustSec solution, including overviews, datasheets, features by platform matrix, and case studies, is available at the following URL:

https://www.cisco.com/c/en/us/solutions/enterprise-networks/trustsec/index.html

Feature Information for Cisco TrustSec

Table 1. Feature Information for Cisco TrustSec
Feature Name	Release	Feature Information
NDAC SXPv1, SXPv2 SGT SGACL Layer2 Enforcement Interface to SGT and VLAN to SGT mapping. Subnet to SGT mapping Layer 3 Port Mapping (PM) Layer 3 Identity Port Mapping (IPM) Security Group Name Download SXP Loop Detection Policy-based CoA	Cisco IOS XE 3.3SE	These features were introduced on the Catalyst 3850 and 3650 switches and the Cisco 5700 Series Wireless LAN Controllers.
SXPv1 and SXPv2	Cisco IOS XE 15.0(2)EX	SXP is introduced on the Catalyst 2960-X switch.
SXPv1 and SXPv2	Cisco IOS XE 15.0(2)EX1	SXP is introduced on the Catalyst 2960-XR switch.

Bias-Free Language

Book Title

Consolidated Platform Configuration Guide, Cisco IOS XE 3.6E (Catalyst 3850 Switches)

Chapter Title

Configuring Cisco TrustSec

Results

Chapter: Configuring Cisco TrustSec

Configuring Cisco TrustSec

Information about Cisco TrustSec

Finding Feature Information

Feature Information for Cisco TrustSec

Was this Document Helpful?

Contact Cisco