Home > Cisco > Control System > Cisco Acs 57 User Guide

Cisco Acs 57 User Guide

Add to Favourites
    Download as PDF

    Here you can view all the pages of manual Cisco Acs 57 User Guide. The Cisco manuals for Control System are available online for free. You can easily download all the documents as PDF.

    Overview View all the pages Comments

    Page 11

    Page 11 5 Introducing ACS 5.7 Hardware Models Supported by ACS ACS Programmatic Interfaces ACS 5.7 provides web services and command-line interface (CLI) commands that allow software developers and system integrators to programmatically access some ACS features and functions. ACS 5.7 also provides access to the Monitoring and Report Viewer database and web services that allow you to create custom applications to monitor and troubleshoot events in ACS. The UCP web service allows users, defined in the ACS... 
    5   
Introducing ACS 5.7
Hardware Models Supported by ACS
ACS Programmatic Interfaces
ACS 5.7 provides web services and command-line interface (CLI) commands that allow software developers and system 
integrators to programmatically access some ACS features and functions. ACS 5.7 also provides access to the 
Monitoring and Report Viewer database and web services that allow you to create custom applications to monitor and 
troubleshoot events in ACS.
The UCP web service allows users, defined in the ACS...

    Page 12

    Page 12 6 Introducing ACS 5.7 Hardware Models Supported by ACS 
    6
Introducing ACS 5.7
 
Hardware Models Supported by ACS

    Page 13

    Page 13 1 Cisco Systems, Inc.www.cisco.com Migrating from ACS 4.x to ACS 5.7 ACS 4.x stores policy and authentication information, such as TACACS+ command sets, in the user and user group records. In ACS 5.7, policy and authentication information are independent shared components that you use as building blocks when you configure policies. The most efficient way to make optimal use of the new policy model is to rebuild policies by using the building blocks, or policy elements, of the new policy model. This... 
    1
Cisco Systems, Inc.www.cisco.com
 
Migrating from ACS 4.x to ACS 5.7
ACS 4.x stores policy and authentication information, such as TACACS+ command sets, in the user and user group 
records. In ACS 5.7, policy and authentication information are independent shared components that you use as building 
blocks when you configure policies.
The most efficient way to make optimal use of the new policy model is to rebuild policies by using the building blocks, 
or policy elements, of the new policy model. This...

    Page 14

    Page 14 2 Migrating from ACS 4.x to ACS 5.7 Before You Begin The Analysis and Export phase is an iterative process that you can rerun many times to ensure that there are no errors in the data to be imported. After you complete the Analysis and Export phase, you can run the import phase to import data into ACS 5.7. This section contains the following topics: Migration Requirements, page 2 Supported Migration Versions, page 2 Migration Requirements To run the Migration utility, you must deploy the following... 
    2
Migrating from ACS 4.x to ACS 5.7
 
Before You Begin
The Analysis and Export phase is an iterative process that you can rerun many times to ensure that there are no errors 
in the data to be imported. After you complete the Analysis and Export phase, you can run the import phase to import 
data into ACS 5.7.
This section contains the following topics:
Migration Requirements, page 2
Supported Migration Versions, page 2
Migration Requirements
To run the Migration utility, you must deploy the following...

    Page 15

    Page 15 3 Migrating from ACS 4.x to ACS 5.7 Downloading Migration Files Use any ACS administrator account with a superadmin role to run the Migration Utility in ACS 5.7. This release of ACS allows administrators with Super Admin role to run the Migration Utility. In previous releases, you can run the Migration Utility only with the acsadmin account. This limitation is now removed in Cisco Secure ACS, Release 5.7. You cannot use the remote desktop to connect to the migration machine to run the Migration... 
    3   
Migrating from ACS 4.x to ACS 5.7
Downloading Migration Files
Use any ACS administrator account with a superadmin role to run the Migration Utility in ACS 5.7. 
This release of ACS allows administrators with Super Admin role to run the Migration Utility. In previous releases, you can 
run the Migration Utility only with the acsadmin account. This limitation is now removed in Cisco Secure ACS, Release 
5.7. 
You cannot use the remote desktop to connect to the migration machine to run the Migration...

    Page 16

    Page 16 4 Migrating from ACS 4.x to ACS 5.7 Functionality Mapping from ACS 4.x to ACS 5.7 To migrate data from ACS 4.x to ACS 5.7: 1.Upgrade the ACS 4.x version to a migration-supported version if your ACS 4.x server currently does not run one of the migration-supported versions. For a list of migration-supported ACS versions, see Supported Migration Versions, page 2. 2.Install the same migration-supported version of ACS on the migration machine, which is a Windows server. 3.Back up the ACS 4.x data and... 
    4
Migrating from ACS 4.x to ACS 5.7
 
Functionality Mapping from ACS 4.x to ACS 5.7
To migrate data from ACS 4.x to ACS 5.7:
1.Upgrade the ACS 4.x version to a migration-supported version if your ACS 4.x server currently does not run one of 
the migration-supported versions. 
For a list of migration-supported ACS versions, see Supported Migration Versions, page 2.
2.Install the same migration-supported version of ACS on the migration machine, which is a Windows server.
3.Back up the ACS 4.x data and...

    Page 17

    Page 17 5 Migrating from ACS 4.x to ACS 5.7 Functionality Mapping from ACS 4.x to ACS 5.7 Table 1 Functionality Mapping from ACS 4.x to ACS 5.7 To configure... In ACS 4.x, choose... In ACS 5.7, choose... Additional information for 5.7 Network device groups Network Configuration pageNetwork Resources > Network Device Groups See Creating, Duplicating, and Editing Network Device Groups, page 2.You can use NDGs as conditions in policy rules. ACS 5.7 does not support NDG shared password. After migration,... 
    5   
Migrating from ACS 4.x to ACS 5.7
Functionality Mapping from ACS 4.x to ACS 5.7
Table 1 Functionality Mapping from ACS 4.x to ACS 5.7
To configure... In ACS 4.x, choose... In ACS 5.7, choose... Additional information for 5.7
Network device groups Network 
Configuration pageNetwork Resources > Network 
Device Groups
See Creating, Duplicating, and 
Editing Network Device Groups, 
page 2.You can use NDGs as conditions 
in policy rules. 
ACS 5.7 does not support NDG 
shared password. After 
migration,...

    Page 18

    Page 18 6 Migrating from ACS 4.x to ACS 5.7 Functionality Mapping from ACS 4.x to ACS 5.7 Shell exec parameters User Setup page System Administration > Dictionaries > Identity > Internal Users See Managing Dictionaries, page 6.Defined identity attribute fields appear in the User Properties page. You can use them as conditions in access service policies. Shell profiles (shell exec parameters or shell command authorization sets)Group Setup page Policy Elements > Authorization and Permissions > Device... 
    6
Migrating from ACS 4.x to ACS 5.7
 
Functionality Mapping from ACS 4.x to ACS 5.7
Shell exec parameters User Setup page System Administration > 
Dictionaries > Identity > Internal 
Users
See Managing Dictionaries, 
page 6.Defined identity attribute fields 
appear in the User Properties 
page. 
You can use them as conditions 
in access service policies.
Shell profiles (shell exec 
parameters or shell command 
authorization sets)Group Setup page Policy Elements > Authorization 
and Permissions > Device...

    Page 19

    Page 19 7 Migrating from ACS 4.x to ACS 5.7 Common Scenarios in Migration Common Scenarios in Migration The following are some of the common scenarios that you encounter while migrating to ACS 5.7: Migrating from ACS 4.2 on CSACS 1121 to ACS 5.7, page 7 Migrating from ACS 3.x to ACS 5.7, page 7 Migrating Data from Other AAA Servers to ACS 5.7, page 8 Migrating from ACS 4.2 on CSACS 1121 to ACS 5.7 In your deployment, if you have ACS 4.2 on the CSACS 1121 and you would like to migrate to ACS 5.7, you must... 
    7   
Migrating from ACS 4.x to ACS 5.7
Common Scenarios in Migration
Common Scenarios in Migration
The following are some of the common scenarios that you encounter while migrating to ACS 5.7:
Migrating from ACS 4.2 on CSACS 1121 to ACS 5.7, page 7
Migrating from ACS 3.x to ACS 5.7, page 7
Migrating Data from Other AAA Servers to ACS 5.7, page 8
Migrating from ACS 4.2 on CSACS 1121 to ACS 5.7
In your deployment, if you have ACS 4.2 on the CSACS 1121 and you would like to migrate to ACS 5.7, you must...

    Page 20

    Page 20 8 Migrating from ACS 4.x to ACS 5.7 Common Scenarios in Migration Migrating Data from Other AAA Servers to ACS 5.7 ACS 5.7 allows you to perform bulk import of various ACS objects through the ACS web interface and the CLI. You can import the following ACS objects: Users Hosts Network Devices Identity Groups NDGs Downloadable ACLs Command Sets ACS allows you to perform bulk import of data with the use of a comma-separated values (.csv) file. You must input data in the .csv file in the format... 
    8
Migrating from ACS 4.x to ACS 5.7
 
Common Scenarios in Migration
Migrating Data from Other AAA Servers to ACS 5.7
ACS 5.7 allows you to perform bulk import of various ACS objects through the ACS web interface and the CLI. You can 
import the following ACS objects:
Users
Hosts
Network Devices
Identity Groups
NDGs
Downloadable ACLs
Command Sets
ACS allows you to perform bulk import of data with the use of a comma-separated values (.csv) file. You must input data 
in the .csv file in the format...
    Start reading Cisco Acs 57 User Guide

    Related Manuals for Cisco Acs 57 User Guide

    All Cisco manuals