Configuring Security for the ML-Series Card
This chapter describes the security features of the ML-Series card and includes the following major
sections:
•
•
•
•
•
•
•
Understanding Security
The ML-Series card includes several security features. Some of these features operate independently
from the ONS node where the ML-Series card is installed. Others are configured using the Cisco
Transport Controller (CTC) or Transaction Language One (TL1).
Security features configured with Cisco IOS include:
•
•
•
•
Security features configured with CTC or TL1 include:
•
•
Understanding Security, page 19-1
Disabling the Console Port on the ML-Series Card, page 19-2
Secure Login on the ML-Series Card, page 19-2
Secure Shell on the ML-Series Card, page 19-2
RADIUS on the ML-Series Card, page 19-6
RADIUS Relay Mode, page 19-6
RADIUS Stand Alone Mode, page 19-7
Cisco IOS login enhancements
Secure Shell (SSH) connection
authentication, authorization, and accounting/Remote Authentication Dial-In User Service
(AAA/RADIUS) stand alone mode
Cisco IOS basic password (For information on basic Cisco IOS password configuration, see the
"Passwords" section on page
disabled console port
AAA/RADIUS relay mode
Cisco ONS 15454 and Cisco ONS 15454 SDH Ethernet Card Software Feature and Configuration Guide, R8.0
3-8)
19
C H A P T E R
19-1