Home > Cisco > Control System > Cisco Acs 5x User Guide

Cisco Acs 5x User Guide

Add to Favourites
    Download as PDF

    Here you can view all the pages of manual Cisco Acs 5x User Guide. The Cisco manuals for Control System are available online for free. You can easily download all the documents as PDF.

    Overview View all the pages Comments

    Page 511

    Page 511 17-21 User Guide for Cisco Secure Access Control System 5.3 OL-24201-01 Chapter 17 Configuring System Operations Replicating a Secondary Instance from a Primary Instance Failover ACS 5.3 allows you to configure multiple ACS instances for a deployment scenario. Each deployment can have one primary and multiple secondary ACS server. Scenario 1: Primary ACS goes down in a Distributed deployment Consider we have three ACS instances ACS1, ACS2, and ACS3. ACS1 is the primary, and ACS2 and ACS3 are... 
    17-21
User Guide for Cisco Secure Access Control System 5.3
OL-24201-01
Chapter 17      Configuring System Operations
  Replicating a Secondary Instance from a Primary Instance
Failover
ACS 5.3 allows you to configure multiple ACS instances for a deployment scenario. Each deployment 
can have one primary and multiple secondary ACS server.
Scenario 1: Primary ACS goes down in a Distributed deployment
Consider we have three ACS instances ACS1, ACS2, and ACS3. 
ACS1 is the primary, and ACS2 and ACS3 are...

    Page 512

    Page 512 17-22 User Guide for Cisco Secure Access Control System 5.3 OL-24201-01 Chapter 17 Configuring System Operations Using the Deployment Operations Page to Create a Local Mode Instance Cleanup....... Starting ACS.... The database on the primary server is restored successfully. Now, you can observe that all secondary servers in the distributed deployment are disconnected. Step 3Log into the secondary webinterface and choose System Administration > Operations > Local Operations > Deployment... 
    17-22
User Guide for Cisco Secure Access Control System 5.3
OL-24201-01
Chapter 17      Configuring System Operations
  Using the Deployment Operations Page to Create a Local Mode Instance
Cleanup.......
Starting ACS....
The database on the primary server is restored successfully. 
Now, you can observe that all secondary servers in the distributed deployment are disconnected. 
Step 3Log into the secondary webinterface and choose System Administration > Operations > Local 
Operations > Deployment...

    Page 513

    Page 513 17-23 User Guide for Cisco Secure Access Control System 5.3 OL-24201-01 Chapter 17 Configuring System Operations Using the Deployment Operations Page to Create a Local Mode Instance You can use the configuration information on the ACS Configuration Audit report to manually restore the configuration information for this instance. Creating, Duplicating, Editing, and Deleting Software Repositories To create, duplicate, edit, or delete a software repository: Step 1Choose System Administration >... 
    17-23
User Guide for Cisco Secure Access Control System 5.3
OL-24201-01
Chapter 17      Configuring System Operations
  Using the Deployment Operations Page to Create a Local Mode Instance
You can use the configuration information on the ACS Configuration Audit report to manually restore 
the configuration information for this instance.
Creating, Duplicating, Editing, and Deleting Software Repositories
To create, duplicate, edit, or delete a software repository:
Step 1Choose System Administration >...

    Page 514

    Page 514 17-24 User Guide for Cisco Secure Access Control System 5.3 OL-24201-01 Chapter 17 Configuring System Operations Using the Deployment Operations Page to Create a Local Mode Instance Step 4Click Submit. The new software repository is saved. The Software Repository page appears, with the new software repository that you created, duplicated, or edited. Related Topics Managing Software Repositories from the Web Interface and CLI, page 17-24 Managing Software Repositories from the Web Interface and... 
    17-24
User Guide for Cisco Secure Access Control System 5.3
OL-24201-01
Chapter 17      Configuring System Operations
  Using the Deployment Operations Page to Create a Local Mode Instance
Step 4Click Submit. 
The new software repository is saved. The Software Repository page appears, with the new software 
repository that you created, duplicated, or edited.
Related Topics
Managing Software Repositories from the Web Interface and CLI, page 17-24
Managing Software Repositories from the Web Interface and...

    Page 515

    Page 515 CH A P T E R 18-1 User Guide for Cisco Secure Access Control System 5.3 OL-24201-01 18 Managing System Administration Configurations After you install Cisco Secure ACS, you must configure and administer it to manage your network efficiently. The ACS web interface allows you to easily configure ACS to perform various operations. For a list of post-installation configuration tasks to get started with ACS, see Chapter 6, “Post-Installation Configuration Tasks”. When you select System Administration >... 
    CH A P T E R
18-1
User Guide for Cisco Secure Access Control System 5.3
OL-24201-01
18
Managing System Administration Configurations
After you install Cisco Secure ACS, you must configure and administer it to manage your network 
efficiently. The ACS web interface allows you to easily configure ACS to perform various operations. 
For a list of post-installation configuration tasks to get started with ACS, see Chapter 6, 
“Post-Installation Configuration Tasks”.
When you select System Administration >...

    Page 516

    Page 516 18-2 User Guide for Cisco Secure Access Control System 5.3 OL-24201-01 Chapter 18 Managing System Administration Configurations Configuring Global System Options Configuring EAP-TLS Settings Use the EAP-TLS Settings page to configure EAP-TLS runtime characteristics. Select System Administration > Configuration > Global System Options > EAP-TLS Settings. The EAP-TLS Settings page appears as described in Table 18-2: Table 18-1 TACACS+ Settings Option Description Port to Listen Port number on which... 
    18-2
User Guide for Cisco Secure Access Control System 5.3
OL-24201-01
Chapter 18      Managing System Administration Configurations
  Configuring Global System Options
Configuring EAP-TLS Settings
Use the EAP-TLS Settings page to configure EAP-TLS runtime characteristics. 
Select System Administration > Configuration > Global System Options > EAP-TLS Settings.
The EAP-TLS Settings page appears as described in Table 18-2:
Table 18-1 TACACS+ Settings 
Option Description
Port to Listen Port number on which...

    Page 517

    Page 517 18-3 User Guide for Cisco Secure Access Control System 5.3 OL-24201-01 Chapter 18 Managing System Administration Configurations Configuring Global System Options Configuring PEAP Settings Use the PEAP Settings page to configure PEAP runtime characteristics. Select System Administration > Configuration > Global System Options > PEAP Settings. The PEAP Settings page appears as described in Table 18-3: Related Topic Generating EAP-FAST PAC, page 18-4 Configuring EAP-FAST Settings Use the EAP-FAST... 
    18-3
User Guide for Cisco Secure Access Control System 5.3
OL-24201-01
Chapter 18      Managing System Administration Configurations
  Configuring Global System Options
Configuring PEAP Settings
Use the PEAP Settings page to configure PEAP runtime characteristics. 
Select System Administration > Configuration > Global System Options > PEAP Settings.
The PEAP Settings page appears as described in Table 18-3:
Related Topic
Generating EAP-FAST PAC, page 18-4
Configuring EAP-FAST Settings
Use the EAP-FAST...

    Page 518

    Page 518 18-4 User Guide for Cisco Secure Access Control System 5.3 OL-24201-01 Chapter 18 Managing System Administration Configurations Configuring RSA SecurID Prompts Generating EAP-FAST PAC Use the EAP-FAST Generate PAC page to generate a user or machine PAC. Step 1Select System Administration > Configuration > Global System Options > EAP-FAST > Generate PAC . The Generate PAC page appears as described in Table 18-5: Step 2Click Generate PAC. Configuring RSA SecurID Prompts You can configure RSA... 
    18-4
User Guide for Cisco Secure Access Control System 5.3
OL-24201-01
Chapter 18      Managing System Administration Configurations
  Configuring RSA SecurID Prompts
Generating EAP-FAST PAC
Use the EAP-FAST Generate PAC page to generate a user or machine PAC. 
Step 1Select System Administration > Configuration > Global System Options > EAP-FAST > Generate 
PAC .
The Generate PAC page appears as described in Table 18-5:
Step 2Click Generate PAC.
Configuring RSA SecurID Prompts
You can configure RSA...

    Page 519

    Page 519 18-5 User Guide for Cisco Secure Access Control System 5.3 OL-24201-01 Chapter 18 Managing System Administration Configurations Managing Dictionaries Step 3Click Submit to configure the RSA SecurID Prompts. Managing Dictionaries The following tasks are available when you select System Administration > Configuration > Dictionaries: Viewing RADIUS and TACACS+ Attributes, page 18-5 Configuring Identity Dictionaries, page 18-10 Viewing RADIUS and TACACS+ Attributes The RADIUS and TACACS+ Dictionary... 
    18-5
User Guide for Cisco Secure Access Control System 5.3
OL-24201-01
Chapter 18      Managing System Administration Configurations
  Managing Dictionaries
Step 3Click Submit to configure the RSA SecurID Prompts.
Managing Dictionaries
The following tasks are available when you select System Administration > Configuration > 
Dictionaries:
Viewing RADIUS and TACACS+ Attributes, page 18-5
Configuring Identity Dictionaries, page 18-10
Viewing RADIUS and TACACS+ Attributes
The RADIUS and TACACS+ Dictionary...

    Page 520

    Page 520 18-6 User Guide for Cisco Secure Access Control System 5.3 OL-24201-01 Chapter 18 Managing System Administration Configurations Managing Dictionaries RADIUS (RedCreek) RADIUS (US Robotics) TA C A C S + To view and choose attributes from a protocol dictionary, select System Administration > Configuration > Dictionaries > Protocols; then choose a dictionary. The Dictionary page appears with a list of available attributes as shown in Table 18-7: Use the arrows to scroll through the attribute list.... 
    18-6
User Guide for Cisco Secure Access Control System 5.3
OL-24201-01
Chapter 18      Managing System Administration Configurations
  Managing Dictionaries
RADIUS (RedCreek)
RADIUS (US Robotics)
TA C A C S +
To view and choose attributes from a protocol dictionary, select System Administration > 
Configuration > Dictionaries > Protocols; then choose a dictionary. 
The Dictionary page appears with a list of available attributes as shown in Table 18-7:
Use the arrows to scroll through the attribute list....
    Start reading Cisco Acs 5x User Guide

    Related Manuals for Cisco Acs 5x User Guide

    All Cisco manuals