The following table summarizes role policy configuration commands:
Click to expand in new window

Role-Policy Config Mode Commands

Command Description
default-role When a client fails to find a matching role, the default action is assigned to that client
ldap-deadperiod Configures the LDAP (Lightweight Directory Access Protocol) dead period interval
ldap-query Enables LDAP service and specifies the LDAP server query mode
ldap-server Configures the LDAP server settings
ldap-timeout Configures the LDAP query timeout
user-role Creates a role and associates it to the newly created role policy
no (role-policy-config-mode-command) Negates a command or reverts settings to their default


For more information on common commands (clrscr, commit, help, revert, service, show, write, and exit), see Common Commands.


The input parameter <HOSTNAME>, wherever used in syntaxes across this chapter, cannot include an underscore (_) character. In other words, the name of a device cannot contain an underscore.