Cisco Systems SMC-127 Network Router User Manual

Open as PDF

of 40

Configuring Secure Domain Routers on Cisco IOS XR Software

How to Configure Secure Domain Routers

SMC-159

Cisco IOS XR System Management Configuration Guide

Step 4

aaa authentication login remote local

Example:

RP/0/RP0/CPU0:router(admin-config)# aaa

authentication login remote local

Enables admin plane authentication.

• The remote keyword specifies a method list that uses

remote non-owner SDR for authentication.

• The local keyword specifies a method list that uses the

local username database method for authentication.

The local authentication cannot fail because the system

always ensures that at least one user is present in the

local database, and a rollover cannot happen beyond the

local method.

Note You can also use other methods to enable AAA

system accounting, such as TACACS+ or RADIUS

servers. See “Configuring AAA Services on Cisco

IOS XR Software” module of the Cisco IOS XR

System Security Configuration Guide for more

information.

Note When logged in to a non-owner SDR using admin

plane authentication, the admin configuration will

be displayed. However, admin plane authentication

should only be used to configure a username and

password for the non-owner SDR. To perform

additional configuration tasks, log in with the

username for the non-owner SDR, as described in

the following steps.

Step 5

end

commit

Example:

RP/0/RP0/CPU0:router (admin-config)# end

RP/0/RP0/CPU0:router(admin-config)# commit

Saves configuration changes.

• When you issue the end command, the system prompts

you to commit changes:

Uncommitted changes found. Commit them?

–

Entering yes saves configuration changes to the

running configuration file, exits the configuration

session, and returns the router to EXEC mode.

–

Entering no exits the configuration session and

returns the router to EXEC mode without

committing the configuration changes.

–

Entering cancel leaves the user in the same

command mode without committing the

configuration changes.

• Use the commit command to save the configuration

changes to the running configuration file and remain

within the configuration session.

Step 6

Connect a terminal to the console port of the

non-owner SDR DSDRSC.

Note A terminal server connection is required for Telnet

connections to the console port because an IP

address has not yet been assigned to the

management Ethernet port.

Command or Action Purpose

previous next

Top Automotive Device Types

Top Automotive Brands

Top Baby Care Device Types

Top Baby Care Brands

Top Car Audio & Video Device Types

Top Car Audio & Video Brands

Top Cellphone Device Types

Top Cellphone Brands

Top Communications Device Types

Top Communications Brands

Top Computer Device Types

Top Computer Brands

Top Fitness Device Types

Top Fitness Brands

Top Home Audio Device Types

Top Home Audio Brands

Top Household Appliance Device Types

Top Household Appliance Brands

Top Kitchen Appliance Device Types

Top Kitchen Appliance Brands

Top Laundry Appliance Device Types

Top Laundry Appliance Brands

Top Lawn & Garden Device Types

Top Lawn & Garden Brands

Top Marine Equipment Device Types

Top Marine Equipment Brands

Top Musical Instrument Device Types

Top Musical Instrument Brands

Top Outdoor Cooking Device Types

Top Outdoor Cooking Brands

Top Personal Care Device Types

Top Personal Care Brands

Top Photography Device Types

Top Photography Brands

Top Portable Media Device Types

Top Portable Media Brands

Top Power Tools Device Types

Top Power Tools Brands

Top TV and Video Device Types

Top TV and Video Brands

Top Videogame Device Types

Top Videogame Brands

Cisco Systems SMC-127 Network Router User Manual