Cisco CRS-1 - Carrier Routing System Router Configuration Manual page 168

How to Implement Keychain Management
DETAILED STEPS
Command or Action
Step 1
configure
Example:
RP/0/RP0/CPU0:router# configure
Step 2
key chain key-chain-name
Example:
RP/0/RP0/CPU0:router(config)# key chain
isis-keys
Step 3
key key-id
Example:
RP/0/RP0/CPU0:router(config-isis-keys)# key 8
RP/0/RP0/CPU0:router(config-isis-keys-0x8)#
Step 4
accept-lifetime start-time [duration
duration-value | infinite | end-time]
Example:
RP/0/RP0/CPU0:router(config-isis-keys)# key 8
RP/0/RP0/CPU0:router(config-isis-keys-0x8)#
accept-lifetime 1:00:00 october 24 2005
infinite
Step 5
end
or
commit
Example:
RP/0/RP0/CPU0:router(config-isis-keys-0x8)# end
or
RP/0/RP0/CPU0:router(config-isis-keys-0x8)#
commit
Cisco IOS XR System Security Configuration Guide for the Cisco CRS-1 Router
SC-162
Implementing Keychain Management onCisco IOS XR Software
Purpose
Enters global configuration mode.
Creates a a name for the keychain.
Creates a key for the keychain.
(Optional) Specifies the validity of the key lifetime in terms
of clock time.
Saves configuration changes.
When you issue the end command, the system prompts
•
you to commit changes:
Uncommitted changes found, commit them before
exiting (yes/no/cancel)?
[cancel]:
– Entering yes saves configuration changes to the
running configuration file, exits the configuration
session, and returns the router to EXEC mode.
Entering no exits the configuration session and
–
returns the router to EXEC mode without
committing the configuration changes.
Entering cancel leaves the router in the current
–
configuration session without exiting or
committing the configuration changes.
• Use the commit command to save the configuration
changes to the running configuration file and remain
within the configuration session.
OL-20382-01