Cisco Cisco Prime Optical 9.3 Technical References

Cisco Prime Optical manages the entire Cisco optical portfolio, including: 

Metro core 

Metro dense wavelength-division multiplexing (DWDM)

Metro edge and access products 

New Carrier Packet Transport (CPT) System products

Prime Optical also serves as a foundation for integration into a larger overall Operations Support System 
(OSS) environment by providing northbound gateway interfaces to higher-layer management systems.

The basic external authentication feature enables Prime Optical to authenticate users who log in through 
the RADIUS access server.

Basic external authentication involves the following key components:

The following figure illustrates the basic external authentication workflow.

An access server is a centralized network server that stores user and credential information. Network 
devices such as routers, NEs, and software applications request permission from the access server. If a 
user wants access to a network device, the network device sends an Access-Request to the access server. 
The access server replies with one of the following responses:

Access-Accept—The user can log into the network device.

Access-Reject—User access is denied.

1. Authentication request

4. Local

 profile

 validation

Cisco Prime Optical

database

Cisco Prime Optical

server

Cisco Prime Optical

Access

server

Cisco Prime Optical

client

Cisco Prime Optical

client

5. Authentication result

2. External authentication request

3. External authentication result

5. A

uthentication result

1. A

uthentication request

310141