Skip to main content



Cisco Defense Orchestrator

Onboard a Cisco IOS Device


Ensure that the ciphers your Cisco IOS server supports are supported by CDO.

At this time, CDO supports a limited set of ciphers for onboarding Cisco IOS devices. The supported ciphers are:

aes128-ctr, aes192-ctr, aes256-ctr, aes128-gcm,, aes256-gcm,

To determine the ciphers your server supports, execute ssh -vv <ip_address> on your on-prem SDC. Now you can successfully onboard you Cisco IOS device. 


Use this procedure to onboard a live Cisco device running Cisco IOS (Internetwork Operating System):

  1. From the CDO Navigation Bar, click Devices & Services. 
  2. Click the blue plus button blue_cross_button.png to begin onboarding the device.
  3. Click Connect to Integrations. 
  4. Give the device a name.
  5. Enter the location (IP address, fully qualified domain name, or hostname) of the device. The default connection port is 22. 
  6. From the Integrations menu, select IOS
  7. Click Go
  8. (Optional) At the Create Integration page, you have an opportunity to download and review the SSH fingerprint. 
  9. Enter the device's administrator name and password. 

Note: CDO does not support connections using public key authentication at this time.

  1. If you have set an enable password on the device, enter that in the EnablePassword field.
  2. Click Connect.
  3. (Optional) Enter a label for the device. See Labels and Label Groups for more information.
  4. Click Continue.
  5. Onboard another IOS device or click Finish.
  6. Return to the Devices & Services page. After the device has been successfully onboarded, you will see that the Configuration Status is "Synced" and the Connectivity state is "Online." 
  7. (Optional) If you want you can write a note about the device by typing it in the device's Notes pate. See Device Notes for more information. 


  • Was this article helpful?