Cisco Systems SMC-127 manual Creating SDRs in a 12000 Series Router, SMC-145

Page 19

Configuring Secure Domain Routers on Cisco IOS XR Software

How to Configure Secure Domain Routers

Creating SDRs in a 12000 Series Router

To create a non-owner SDR in a Cisco XR 12000 Series Router, create an SDR name, add an RP (that can act as DSDRSC) or 2 RPs in adjacent redundancy slots (that can act as the DSDRSC & standby DSDRSC) and then add additional (non-RP) nodes to the configuration

Note The procedures in this section can only be performed on a router that is already running the

Cisco IOS XR software. For instructions to boot a router and perform the initial configuration, refer to Cisco IOS XR Getting Started Guide. When a router is booted, the owner SDR is automatically created, and cannot be removed. This guide also includes instructions to create owner SDR username and password.

Complete the following steps to create a non-owner SDR.

SUMMARY STEPS

1.admin

2.configure

3.sdr sdr-name

4.location partially-qualified-nodeid

5.(Optional) location partially-qualified-nodeid

6.location partially-qualified-nodeid

7.Repeat Step 6 as needed to add additional nodes to an SDR.

8.exit

9.Repeat Step 3 through Step 7 as needed to create additional SDRs.

10.end or commit

11.Create a username and password for the new SDR as described in the “Configuring a Username and Password for a Non-Owner SDR” section on page SMC-157.

DETAILED STEPS

 

Command or Action

Purpose

Step 1

 

 

admin

Enters admin mode.

 

Example:

 

 

RP/0/0/CPU0:router# admin

 

Step 2

 

 

configure

Enters Administration configuration mode.

 

Example:

 

 

RP/0/0/CPU0:router(admin)# configure

 

 

 

 

Cisco IOS XR System Management Configuration Guide

SMC-145

Page 18 Page 20
Image 19
Page 18 Page 20
Contents Contents Configuring Secure Domain Routers on Cisco IOS XR SoftwareSMC-128 Prerequisites for Configuring Secure Domain RoutersSMC-129 Information About Configuring Secure Domain RoutersWhat Is a Secure Domain Router? Owner SDR and Administration Configuration ModeSMC-130 SDR Access PrivilegesNon-Owner SDRs Root-System UsersOther SDR Users Root-lr UsersSMC-131 DSCs and DSDRSCs in a Cisco CRS-1 Router Designated Secure Domain Router System Controller DsdrscSMC-132 SMC-133 DSC and DSDRSCs in a Cisco XR 12000 Series RouterSMC-134 SMC-135 Default Configuration for New Non-Owner SDRsRemoving a Dsdrsc Configuration Default Software Profile for SDRsDsdrsc Redundancy Fault IsolationRebooting an SDR High Availability ImplicationsSMC-137 Cisco IOS XR Software Package ManagementSMC-138 DSC Migration on Cisco CRS-1 Multishelf SystemsSMC-139 CaveatsContents How to Configure Secure Domain RoutersCreating SDRs SMC-141 Summary StepsExample Command or Action PurposeSMC-142 SMC-143 To assign a DRP pair as the DsdrscTo assign a single DRP node as the Dsdrsc To assign an RP pair as the DsdrscSMC-144 To add a single nodeTo add a DRP pair To add an RP pairSMC-145 Creating SDRs in a 12000 Series RouterSMC-146 DSDRSCs in a Cisco XR 12000 Series Router section onSee the DSC and DSDRSCs in a Cisco XR 12000 Series Router section on page SMC-133SMC-147 Refer to the Adding Nodes to a Non-Owner SDR sectionAdding Nodes to an SDR in a Cisco CRS-1 Router Adding Nodes to a Non-Owner SDRSMC-148 SMC-149 Creating SDRs in a Cisco CRS-1 RouterSMC-150 Adding Nodes to an SDR in a Cisco XR 12000 Series RouterA Cisco XR 12000 Series Router section on Removing Nodes and SDRsSMC-151 SMC-152 To remove an RP pair To remove a DsdrscTo remove a single node To remove a DRP pairSMC-154 Section on page SMC-150 Nodes to an SDR in a Cisco XR 12000 Series RouterSMC-155 SMC-156 Removing a Secure Domain RouterSMC-157 Configuring a Username and Password for a Non-Owner SDRSMC-158 Group root-lr End or commit ExitSMC-159 System Security Configuration Guide for moreSMC-160 See Disabling Remote Login for SDRs, page SMC-161for Disabling Remote Login for SDRsSMC-161 SMC-162 Configuration Examples for Secure Domain RoutersCreating a New SDR on a Cisco CRS-1 Router Creating an SDR on a Cisco XR 12000 Series RouterSMC-163 MIBs Additional ReferencesRelated Documents StandardsDescription Link RFCsTechnical Assistance RFCs TitleSMC-166
Top Page Image Contents