Home > Cisco > Interface > Cisco Ise 14 User Guide

Cisco Ise 14 User Guide

Add to Favourites
    Download as PDF Print this page Share this page

    Have a look at the manual Cisco Ise 14 User Guide online for free. It’s possible to download the document as PDF or print. UserManuals.tech offer 53 Cisco manuals and user’s guides for free. Share the user manual or guide on Facebook, Twitter or Google+.

    View all the pages
    Page
    of 232
    Add page 51 to Favourites
    image text
    Enable zoom 
    							%supportbundleinprogress:Copyingdatabaseconfigfiles...10%completed%supportbundleinprogress:Copyingdebuglogs...20%completed%supportbundleinprogress:Copyinglocallogs...30%completed%supportbundleinprogress:Copyingmonitorlogs...40%completed%supportbundleinprogress:Copyingpolicyxml...50%completed%supportbundleinprogress:Copyingsystemlogs...60%completed%supportbundleinprogress:Movingsupportbundletotherepository...75%completed%supportbundleinprogress:Completingsupportbundlegeneration......100%completedise/admin#
Related CommandsDescriptionCommand
backup
restore
repository
showbackup
showrestore
Cisco Identity Services Engine CLI Reference Guide, Release 1.4    
43
Cisco ISE CLI Commands in EXEC Mode
backup-logs
    Add page 52 to Favourites
    image text
    Enable zoom 
    							clock
Tosetthesystemclock,usetheclockcommandinEXECmode.Todisablesettingthesystemclock,usethe
noformofthiscommand.
clock[set{month|day|hh:min:ss|yyyy}]
Syntax DescriptionSetsthesystemclock.set
Currentmonthoftheyearbyname.Supportsuptothreealphabetic
characters.Forexample,JanforJanuary.
month
Currentday(bydate)ofthemonth.Value=0to31.Supportsupto
twonumbers.
day
Currenttimeinhours(24-hourformat),minutes,andseconds.hh:mm:ss
Currentyear(noabbreviation).yyyy
Command DefaultNodefaultbehaviororvalues.
Command ModesEXEC
Usage Guidelines
ChangingthesystemtimeonaCiscoISEappliancecausestheCiscoISEapplicationtobeunusable.Caution
Setsthesystemclock.YoumustrestarttheCiscoISEserverafteryouresettheclockforthechangetotake
effect.ChangingsystemtimeimpactsdifferentCiscoISEnodestypesofyourdeployment.
Torecoverfromtheimpact,usethefollowingsteps:
Standalone or Primary ISE Node
ChangingthesystemtimeafterinstallationisnotsupportedonastandaloneorprimaryISEnode.Note
Ifyouinadvertentlychangethesystemtime,dothefollowing:
•Reverttotheoriginalsystemtime(thetimebeforeitwaschanged).
•Runtheapplicationreset-configisecommandfromtheCLIofthatnode.
•Restorefromthelastknowngoodbackupbeforethetimechangeonthatnode.
   Cisco Identity Services Engine CLI Reference Guide, Release 1.4
44
Cisco ISE CLI Commands in EXEC Mode
clock
    Add page 53 to Favourites
    image text
    Enable zoom 
    							Secondary ISE Node
Changingthesystemtimeonasecondarynoderendersitunusableinyourdeployment.Note
Tosynchronizethesystemtimeofthesecondarynodewiththeprimarynode,dothefollowing:
•DeregisterthesecondaryISEnode.
•CorrectthesystemtimetobeinsyncwiththeprimaryISEnode.
•Runtheapplicationreset-configisecommandfromtheCLIoftheprimaryISEnode.
•ReregistertheISEnodeasasecondaryISEnodetotheprimaryISEnode.
Toensurethatyouhavethecorrectsystemtimesetatthetimeofinstallation,thesetup
wizardrequiresyoutospecifyanNetworkTimeProtocol(NTP)serverandtriestosync
withit.YoumustensurethattheNTPserverconfiguredduringsetupisalwaysreachable
sothatthesystemtimeisalwayskeptaccurate,especiallyinraresituationswherethe
BIOStimecangetcorruptedbecauseofpowerfailureorCMOSbatteryfailure.This,
inturn,cancorrupttheCiscoADE-OSsystemtimeduringareboot.Ifyoudonot
configureanNTPserverduringsetup,thenyouhavetoensurethatthesystemBIOS
timeissetrelativetotheUniversalTimeCoordinated(UTC)timezone,asdescribed
intheCiscoIdentityServicesEngineHardwareInstallationGuide.
Note
Example
ise/admin#clocksetAugust3018:07:202013ise/admin#showclockFriAug3018:07:26UTC2013ise/admin#
Related CommandsDescriptionCommand
showclock
Cisco Identity Services Engine CLI Reference Guide, Release 1.4    
45
Cisco ISE CLI Commands in EXEC Mode
clock
    Add page 54 to Favourites
    image text
    Enable zoom 
    							configure
Toenterintoconfigurationmode,usetheconfigurecommandinEXECmode.
configureterminal
Syntax DescriptionExecutesconfigurationcommandsfromtheterminal.terminal
Command DefaultNodefaultbehaviororvalues.
Command ModesEXEC
Usage GuidelinesUsethiscommandtoenterintoconfigurationmode.Notethatcommandsinthismodewritetotherunning
configurationfileassoonasyouenterthem.
ToexitconfigurationmodeandreturntoEXECmode,enterend,exit,orCtrl-z.
Toviewthechangesmadetotheconfiguration,usetheshowrunning-configcommandinEXECmode.
Ifthereplaceoptionisusedwiththiscommand,copiesaremoteconfigurationtothesystem,whichoverwrites
theexistingconfiguration.
Example
ise/admin#configureterminalEnterconfigurationcommands,oneperline.EndwithCNTL/Z.ise/admin(config)#
Related CommandsDescriptionCommand
showrunning-config
showstartup-config
   Cisco Identity Services Engine CLI Reference Guide, Release 1.4
46
Cisco ISE CLI Commands in EXEC Mode
configure
    Add page 55 to Favourites
    image text
    Enable zoom 
    							copy
Tocopyafilefromasourcetoadestination,usethecopycommandinEXECmode.
Thecopycommandissupportedonlyforthelocaldiskandnotforarepository.Note
Syntax DescriptionRepresentsthecurrentrunningconfigurationfile.running-config
Representstheconfigurationfileusedduringinitialization(startup).startup-config
Destinationforcopying.SeeTable2-1forprotocolkeywordoptions.protocol
Hostnameofdestination.hostname
Locationofdestination.
Representsthecurrentrunningconfigurationfile.
location
Thesystemlogfiles.logs
CopiesallCiscoISElogfilesfromthesystemtoanotherlocation.
Alllogsarepackagedasiselogs.tar.gzandtransferredtothespecified
directoryontheremotehost.
all
AllowsyoutocopyasingleCiscoISElogfileandtransferittothe
specifieddirectoryontheremotehost,withitsoriginalname.
filename
NameoftheCiscoISElogfile,asdisplayedbytheshowlogs
command(upto255characters).
log_filename
CopiestheCiscoISEmanagementdebuglogsandTomcatlogsfrom
thesystem,bundlesthemasmgmtlogs.tar.gz,andtransfersthemto
thespecifieddirectoryontheremotehost.
mgmt
CopiestheCiscoISEruntimedebuglogsfromthesystem,bundles
themasruntimelogs.tar.gz,andtransfersthemtothespecified
directoryontheremotehost.
runtime
Command DefaultNodefaultbehaviororvalues.
Command ModesEXEC
Cisco Identity Services Engine CLI Reference Guide, Release 1.4    
47
Cisco ISE CLI Commands in EXEC Mode
copy
    Add page 56 to Favourites
    image text
    Enable zoom 
    							Usage GuidelinesThecopycommandinCiscoISEcopiesarunningorstartupconfigurationandlogfilesfromthesystemto
anotherlocation.
Thefundamentalfunctionofthecopycommandallowsyoutocopyafile(suchasasystemimageor
configurationfile)fromonelocationtoanotherlocation.Thesourceanddestinationforthefilespecifieduses
theCiscoISEfilesystem,throughwhichyoucanspecifyanysupportedlocalorremotefilelocation.Thefile
systembeingused(alocalmemorysourceoraremotesystem)dictatesthesyntaxusedinthecommand.
Youcanenterallnecessarysourceanddestinationinformationandtheusernameandpasswordtouse;or,
youcanenterthecopycommandandhavetheserverpromptyouforanymissinginformation.
Theentirecopyingprocessmighttakeseveralminutesanddiffersfromprotocoltoprotocolandfromnetwork
tonetwork.
Usethefilenamerelativetothedirectoryforfiletransfers.
PossibleerrorsarestandardFileTransferprotocol(FTP)orSecureCopy(SCP)errormessages.
Table 1: Table 2-1 Protocol Prefix Keywords (Continued)
Source of DestinationKeyword
SourceordestinationURLforFTPnetworkserver.Thesyntaxfor
thisalias:
ftp:[[[//username[:password]@]location]/directory]/filename
ftp
SourceordestinationURLforSCPnetworkserver.Thesyntaxfor
thisalias:
scp:[[[//username[:password]@]location]/directory]/filename
scp
SourceordestinationURLforanSFTPnetworkserver.Thesyntax
forthisalias:
sftp:[[//location]/directory]/filename
sftp
SourceordestinationURLforaTFTPnetworkserver.Thesyntax
forthisalias:
tftp:[[//location]/directory]/filename
tftp
   Cisco Identity Services Engine CLI Reference Guide, Release 1.4
48
Cisco ISE CLI Commands in EXEC Mode
copy
    Add page 57 to Favourites
    image text
    Enable zoom 
    							Running Configuration
TheCiscoISEactiveconfigurationstoresitselfintheCiscoISERAM.Everyconfigurationcommandyou
enterresidesintherunningconfiguration.IfyourebootaCiscoISEserver,youlosetherunningconfiguration.
Ifyoumakechangesthatyouwanttosave,youmustcopytherunningconfigurationtoasafelocation,such
asanetworkserver,orsaveitastheCiscoISEserverstartupconfiguration.
Ifyoudonotsavetherunningconfiguration,youwillloseallyourconfigurationchangesduringthenext
rebootoftheCiscoISEserver.Whenyouaresatisfiedthatthecurrentconfigurationiscorrect,copyyour
configurationtothestartupconfigurationwiththecopyrunstartcommand.
Aliasesreducetheamountoftypingthatyouneedtodo.Forexample,typecopyrunandpresstheTab
key,typestartandpresstheTabkey,whichistheabbreviatedformofthecopyrunning-config
startup-configcommand).
Note
Toreplacethestartupconfigurationwiththerunningconfiguration,usethefollowingcommand:
copyrunstart
Tocopytherunningconfigurationtothestartupconfiguration,usethefollowingcommand:
copyrunning-configstartup-config
Tomergethestartupconfigurationontopoftherunningconfiguration,usethefollowingcommand:
copystartrun
Example 1
ise/admin#copyrunstartGeneratingconfiguration...ise/admin#
Example 2
ise/admin#copyrunning-configstartup-configGeneratingconfiguration...ise/admin#
Cisco Identity Services Engine CLI Reference Guide, Release 1.4    
49
Cisco ISE CLI Commands in EXEC Mode
Running Configuration
    Add page 58 to Favourites
    image text
    Enable zoom 
    							Copying Running Configuration to a Remote Location
Tocopytherunningconfigurationtoaremotesystem,usethefollowingcommand:
copyrunning-config[protocol://hostname/location]
   Cisco Identity Services Engine CLI Reference Guide, Release 1.4
50
Cisco ISE CLI Commands in EXEC Mode
Running Configuration
    Add page 59 to Favourites
    image text
    Enable zoom 
    							Copying Running Configuration from a Remote Location
Tocopyandmergearemotefiletotherunningconfiguration,usethefollowingcommand:
copy[protocol://hostname/location]running-config—Copiesandmergesaremotefiletotherunning
configuration.
Cisco Identity Services Engine CLI Reference Guide, Release 1.4    
51
Cisco ISE CLI Commands in EXEC Mode
Running Configuration
    Add page 60 to Favourites
    image text
    Enable zoom 
    							Startup configuration
Youcannoteditastartupconfigurationdirectly.Allcommandsthatyouenterstorethemselvesintherunning
configuration,whichyoucancopyintothestartupconfiguration.
Inotherwords,whenyoubootaCiscoISEserver,thestartupconfigurationbecomestheinitialrunning
configuration.Asyoumodifytheconfiguration,thetwodiverge:thestartupconfigurationremainsthesame;
therunningconfigurationreflectsthechangesthatyouhavemade.Ifyouwanttomakeyourchangespermanent,
youmustcopytherunningconfigurationtothestartupconfiguration.
Tocopythestartupconfigurationtotherunningconfiguration,usethefollowingcommand:
copystartup-configrunning-config
Example 1
ise/admin#copystartrunise/admin#
Example 2
ise/admin#copystartup-configrunning-configise/admin#
Copying Startup Configuration to a Remote Location
Tocopythestartupconfigurationtoaremotesystem,usethefollowingcommand:
copystartup-config[protocol://hostname/location]
   Cisco Identity Services Engine CLI Reference Guide, Release 1.4
52
Cisco ISE CLI Commands in EXEC Mode
Startup configuration
    All Cisco manuals Comments (0)

    Related Manuals for Cisco Ise 14 User Guide