Cisco Nexus 5000 Series Switch CLI Software Configuration Guide (OL-16597-01, July 2009)
Procedure
PurposeCommand or Action
Enters configuration mode.switch# configuration terminal
Step 1
Enables port security on that switch.switch(config)# port-security enable
Step 2
Disables (default) port security on that
switch.
switch(config)# no port-security enable
Step 3
Port Security Activation
Activating Port Security
To activate port security, perform this task:
Procedure
PurposeCommand or Action
Enters configuration mode.switch# configuration terminal
Step 1
Activates the port security database for the specified
VSAN, and automatically enables auto-learning.
switch(config)# port-security activate
vsan vsan-id
Step 2
Activates the port security database for the specified
VSAN, and disables auto-learning.
switch(config)# port-security activate
vsan vsan-id no-auto-learn
Step 3
Deactivates the port security database for the
specified VSAN, and automatically disables
auto-learning.
switch(config)# no port-security activate
vsan vsan-id
Step 4
Database Activation Rejection
Database activation is rejected in the following cases:
• Missing or conflicting entries exist in the configuration database but not in the active database.
• The auto-learning feature was enabled before the activation. To reactivate a database in this state, disable
auto-learning.
• The exact security is not configured for each port channel member.
• The configured database is empty but the active database is not.
If the database activation is rejected due to one or more conflicts listed in the previous section, you may decide
to proceed by forcing the port security activation.
Forcing Port Security Activation
If the port security activation request is rejected, you can force the activation.
Cisco Nexus 5000 Series Switch CLI Software Configuration Guide
OL-16597-01 639
Configuring Port Security
Port Security Activation