Name: Cisco IOS XR
Brand: Cisco
Rating: 4 (1 reviews)

To Next Page

To Previous Page

Configuring AAA Services on Cisco IOS XR Software

Prerequisites for Configuring AAA Services

SC-169

Cisco IOS XR System Security Configuration Guide

Prerequisites for Configuring AAA Services

The following prerequisites are listed:

• You must be in a user group associated with a task group that includes the proper task IDs for

security commands.

• Establish a root system user using the initial setup dialog. The administrator may configure a few

local users without any specific AAA configuration. The external security server becomes necessary

when user accounts are shared among many routers within an administrative domain. A typical

configuration would include the use of an external AAA security server and database with the local

database option as a backup in case the external server becomes unreachable.

Restrictions for Configuring AAA Services

This section lists the restrictions for configuring AAA services.

Compatibility

Compatibility is verified with the Cisco freeware TACACS+ server and FreeRADIUS only.

Interoperability

Router administrators can use the same AAA server software and database (for example,

CiscoSecure ACS) for the router and any other Cisco equipment that does not currently run

Cisco IOS XR software. To support interoperability between the router and external TACACS+ servers

that do not support task IDs, see the “Task IDs for TACACS+ and RADIUS Authenticated Users”

section.

Information About Configuring AAA Services

This section lists all the conceptual information that a Cisco IOS XR software user must understand

before configuring user groups and task groups through AAA or configuring Remote Authentication

Dial-in User Service (RADIUS) or TACACS+ servers. Conceptual information also describes what AAA

is and why it is important.

• User, User Groups, and Task Groups, page SC-170

• Cisco IOS XR Software Administrative Model, page SC-172

• Password Types, page SC-177

• Task-Based Authorization, page SC-178

• Task IDs for TACACS+ and RADIUS Authenticated Users, page SC-179

• XML Schema for AAA Services, page SC-181

• About RADIUS, page SC-182

Questions and Answers:

Need help?

Do you have a question about the Cisco IOS XR and is the answer not in the manual?

Cisco IOS XR Specifications

General

Operating System	Cisco IOS XR
Architecture	Microkernel
High Availability	Yes
Type	Network operating system
Developed by	Cisco Systems
License	Proprietary
Programming Language	C, C++
Kernel	QNX
Supported Platforms	Cisco ASR9000, NCS series
Security Features	Role-Based Access Control (RBAC), Secure Boot, Encryption
Management Interface	CLI, SNMP, NETCONF, RESTCONF
Release Date	2004
Target Devices	High-end core routers, service provider edge routers, data center interconnect (DCI) routers
Supported Hardware	Cisco routers and switches
Networking Protocols	BGP, OSPF, IS-IS, MPLS
Virtualization Support	Virtualization-ready, supports network function virtualization (NFV) and containerization technologies.