Cisco Cisco Packet Data Gateway (PDG) Guida All'Installazione
Initial System Configuration
Context-level Security Administrator and Hostname ▀
ASR 5500 Installation Guide ▄
117
Context-level Security Administrator and Hostname
Important:
You must configure a context-level security administrator during the initial configuration. After
completing the initial configuration process and ending the CLI session, if you have not configured a security
administrator CLI access will be locked.
administrator CLI access will be locked.
Step 1
At the CLI prompt, enter config.
[local]asr5500# config
[local]asr5500(config)#
[local]asr5500(config)#
Step 2
Enter the context configuration mode by entering context local.
The local context is the system‘s management context. Contexts allow you to logically group services or interfaces. A
single context can consist of multiple services and can be bound to multiple interfaces. Enter context local at the CLI
prompt.
single context can consist of multiple services and can be bound to multiple interfaces. Enter context local at the CLI
prompt.
[local]asr5500(config) context local
[local]asr5500(config-ctx)#
[local]asr5500(config-ctx)#
Step 3
Enter the following command to configure a context-level security administrator for the system:
administrator name { password password | encrypted password enc_password } [ ftp ] [ no-cli ]
[ timeout-absolute absolute_time ] [ timeout-idle idle_time ]
[ timeout-absolute absolute_time ] [ timeout-idle idle_time ]
Keyword/Variable
Description
name
Specifies the security administrator‘s name as an alphanumeric string of 1 through 32 characters
that is case sensitive.
that is case sensitive.
password password
Specifies the password for the security administrator as an alphanumeric string of 1 through 63
characters that is case sensitive.
characters that is case sensitive.
encrypted password
Specifies the encrypted password for the security administrator. This keyword is only used by the
system when you save configuration scripts. The system displays the encrypted keyword in the
configuration file as a flag indicating that the variable following the keyword is the encrypted
version of the plain text password. Only the encrypted password is saved as part of the
configuration file.
system when you save configuration scripts. The system displays the encrypted keyword in the
configuration file as a flag indicating that the variable following the keyword is the encrypted
version of the plain text password. Only the encrypted password is saved as part of the
configuration file.
ftp
Specifies that the security administrator is allowed to access the system with the File Transfer
Protocol (FTP). This option is useful to upload files (configuration or software images).
Protocol (FTP). This option is useful to upload files (configuration or software images).
no-cli
Specifies that the security administrator cannot access the system‘s command line interface (CLI).
Note: Use this keyword in conjunction with the ftp keyword to allow access to the system with
FTP only.
Note: Use this keyword in conjunction with the ftp keyword to allow access to the system with
FTP only.
timeout-absolute
absolute_time
Specifies the maximum amount of time that the operator can maintain a session with the system.
absolute_time is measured in seconds. Use any integer from 0 through 300000000. The default is
0. When the absolute timeout value is reached, the operator session is automatically terminated.
absolute_time is measured in seconds. Use any integer from 0 through 300000000. The default is
0. When the absolute timeout value is reached, the operator session is automatically terminated.
timeout-idle idle_time
Specifies the maximum amount of time that an operator session can remain idle before being
automatically terminated. The idle_time is measured in seconds. Use any integer from 0 through
300000000. The default is 0.
automatically terminated. The idle_time is measured in seconds. Use any integer from 0 through
300000000. The default is 0.