Wired Intelligent Edge

 View Only

  • 1.  User Role bpdu-protection

    Posted Apr 22, 2020 04:23 AM

    Hi community,

     

    Is there a possibility to configure spanning-tree options wihtin user roles?

    I have found the option to override the admin edge port feature, but not bpdu protection or bpdu filter.

     

    We want to connect desktop switches to any port on the access layer and be able to dynamically assign the correct port options. So far the following works very well:

     

    aaa authorization user-role name "DSW_ROLE"
   reauth-period 1800
   vlan-id 3999
   vlan-id-tagged 1,2,3,4
   device
      port-mode
      exit
   exit

     

    But we have configured spanning-tree bpdu-protection on every port. Therefore the port goes offline after connection the desktop switch.

     

    Thank you very much for your tipps and have a great day



  • 2.  RE: User Role bpdu-protection
    Best Answer

    Posted Apr 22, 2020 11:35 AM

    Only the admin-edge feature is available within a user role, you would need to configure bpdu protection and filter at the switch interface.

     

     



  • 3.  RE: User Role bpdu-protection

    Posted Apr 24, 2020 02:36 AM

    Thank you for your fast reply. Any plans on implementing such a feature? It is quite unfortunate to override all port settings through user roles, except of spanning-tree options.



Related Content