Book Image

Cisco ACI Cookbook

By : Stuart Fordham
Book Image

Cisco ACI Cookbook

By: Stuart Fordham

Overview of this book

Cisco Application Centric Infrastructure (ACI) is a tough architecture that automates IT tasks and accelerates data-center application deployments. This book focuses on practical recipes to help you quickly build, manage, and customize hybrid environment for your organization using Cisco ACI. You will begin by understanding the Cisco ACI architecture and its major components. You will then configure Cisco ACI policies and tenants. Next you will connect to hypervisors and other third-party devices. Moving on, you will configure routing to external networks and within ACI tenants and also learn to secure ACI through RBAC. Furthermore, you will understand how to set up quality of service and network programming with REST, XML, Python and so on. Finally you will learn to monitor and troubleshoot ACI in the event of any issues that arise. By the end of the book, you will gain have mastered automating your IT tasks and accelerating the deployment of your applications.
Table of Contents (17 chapters)
Title Page
Credits
About the Author
About the Reviewers
www.PacktPub.com
Customer Feedback
Preface

Creating local users


Local users are the easiest way to start segregating users and leveraging some form of accountability. We will have a bigger administrative overhead, and clearly, this would not be the preferred solution. Instead, one would look to a centralized system, such as RADIUS or LDAP. However, local users are a good place for us to start.

How to do it...

  1. Navigate to Admin | AAA | Security Management | Local Users.
  1. Click on Actions | Create Local User.
  2. Select a Security Domain, or leave it at the default (all unticked).
  1. Click on NEXT.
  2. Enter the Login ID and the Password, and fill in any other fields if desired.
  1. Click on FINISH.

How it works...

We can test the new user's access by connecting to the APIC with SSH:

The connection is successful. But what if need to limit access to a particular tenant? For that, we need to create a security domain.