Configuring AAA Services on Cisco IOS XR Software
Contents
SC-168
Cisco IOS XR System Security Configuration Guide
Contents
• Prerequisites for Configuring AAA Services, page SC-169
• Restrictions for Configuring AAA Services, page SC-169
• Information About Configuring AAA Services, page SC-169
• How to Configure AAA Services, page SC-183
• Configuration Examples for Configuring AAA Services, page SC-221
• Additional References, page SC-223
Release 3.3.0
• Support for the RADIUS Dead-Server Detection feature was added.
• To enable interoperability based on Cisco IOS software, tasks must be
marked as an optional attribute.
• Support was added on Cisco IOS XR to allow you to specify task IDs
as an attribute in the external RADIUS or TACACS+ server. If the
server is also shared by non-Cisco IOS XR systems, these attributes are
marked as optional as indicated by the server documentation. For
example, CiscoSecure ACS and the freeware TACACS+ server from
Cisco require an asterisk (*) instead of an equal sign (=) before the
attribute value for optional attributes.
• A procedure on how to specify the task ID and usergroups by using the
CiscoSecure ACS was added.
• All references to owner secure domain router (SDR) were replaced
with root SDR.
• Support was added to prompt the next logged-in user for a new
username and password if all the users were deleted.
• The predefined task group serviceadmin was added.
• An example was added for RADIUS Vendor -Specific Attribute (VSA).
• EXEC authorization was added to the “Administrative Access” section.
Release 3.4.0
• The server-private command was added to configure RADIUS server
groups.
• Support for the Per VRF AAA feature was added.
• Support for generating interim accounting records was added.
Release 3.5.0 No modification.
To Next Page
Loading...
Need help?
General
