Which option describes the default roles available to RBAC on Cisco Nexus switches?
A. admin, operator, network-admin, and network-operator
B. admin, read-only, network-admin, and network-operator
C. vdc-admin, vdc-operator, network-admin, and network-operator
D. vdc-admin, vdc-operator, network-admin, and network-operator (for Nexus 7000) and network-admin and network-operator (for other Nexus switches)
E. admin and read-only
Correct Answer: A
Explanation/Reference:
Explanation:
User roles contain rules that define the operations allowed for the user who is assigned the role. Each user role can contain multiple rules and each user can have multiple roles. For example, if role1 allows access only to configuration operations, and role2 allows access only to debug operations, then users who belong to both role1 and role2 can access configuration and debug operations. You can also limit access to specific VSANs, VLANs and interfaces.
The Nexus 5000 Series switch provides the following default user roles:
network-admin (superuser) — Complete read and write access to the entire Nexus 5000 Series switch.
network-operator — Complete read access to the Nexus 5000 Series switch.
Reference: http://www.cisco.com/c/en/us/td/docs/switches/datacenter/nexus5000/sw/system_management/521_n1_1/b_5k_System_Mgmt_Config_521N11/b_5k_System_Mgmt_Config_521N11_chapter_0111.html#con_1230629