| Exam 200-155 | Question id=4605 | Cisco Data Center Networking Technologies |
Which two statements about role-based access control on the Cisco Nexus 7000 switch are true?
| A. |
The default user roles are network-admin, network-operator, vdc-admin, and vdc operator. | |
| B. |
User roles needed if RADIUS is used for AAA. | |
| C. |
No user roles are provided by default. It is however, best practice is to configure separate roles for admin and other users. | |
| D. |
Each user is assigned a unique role. | |
| E. |
User roles can be distributed to other switches using Cisco Fabric Services. |
The Cisco NX-OS software provides four default user roles:
•network-admin—Complete read-and-write access to the entire NX-OS device (only available in the default VDC)
•network-operator—Complete read access to the entire NX-OS device (only available in the default VDC)
•vdc-admin—Read-and-write access limited to a VDC
•vdc-operator—Read access limited to a VDC
Cisco Fabric Services (CFS) allows the NX-OS device distribute the user role configuration to other NX-OS devices in the network. When you enable CFS distribution for a feature on your device, the device belongs to a CFS region containing other devices in the network that you have also enabled for CFS distribution for the feature. CFS distribution for the user role feature is disabled by default.