Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
565
Views
0
Helpful
0
Replies

NACM missing commands ASR9000

laroccacristian1
Level 1
Level 1

‎08-09-2019 02:24 PM - edited ‎08-09-2019 04:48 PM

Hi all!

I'm trying to enable NACM to restrict NETCONF operations. I have NACM working with the default configurations and I have only read-only access.

 

My problem is that I have no "nacm" commands on my router, and it seems that the only way to create rules and groups is with NETCONF but as I mentioned before, only read-only is allowed on NETCONF. This is like the chicken-egg dilema..

 

One option is to disable NACM, create the rules/groups with NETCONF and then enable NACM but we have restrictions at my work and we can't expose the NETCONF interface without write restrictions.

 

Any thoughts on how to solve this?

 

I'm doing this on an ASR 9006 running 6.4.2

 

Thanks!

#asr9000 #nacm #netconf 

 

1 person had this problem
0 Helpful
0 Replies 0
Customers Also Viewed These Support Documents