Configuring security for the ml-series card, Understanding security, C h a p t e r – Cisco 15327 User Manual

C H A P T E R

19-1

Ethernet Card Software Feature and Configuration Guide, R7.2

19

Configuring Security for the ML-Series Card

This chapter describes the security features of the ML-Series card.

This chapter includes the following major sections:

•

Understanding Security, page 19-1

•

Disabling the Console Port on the ML-Series Card, page 19-2

•

Secure Login on the ML-Series Card, page 19-2

•

Secure Shell on the ML-Series Card, page 19-2

•

RADIUS on the ML-Series Card, page 19-6

•

RADIUS Relay Mode, page 19-6

•

RADIUS Stand Alone Mode, page 19-7

Understanding Security

The ML-Series card includes several security features. Some of these features operate independently
from the ONS node where the ML-Series card is installed. Others are configured using the Cisco
Transport Controller (CTC) or Transaction Language One (TL1).

Security features configured with Cisco IOS include:

•

Cisco IOS login enhancements

•

Secure Shell ( SSH) connection

•

authentication, authorization, and accounting/Remote Authentication Dial-In User Service
(AAA/RADIUS) stand alone mode

•

Cisco IOS basic password (For information on basic Cisco IOS password configuration, see the

“Passwords” section on page 3-8

)

Security features configured with CTC or TL1 include:

•

disabled console port

•

AAA/RADIUS relay mode