I am trying to install ACS 5.0 on workstation, however once the install finsihes it reboots and I enter the Linux bash command line rather than the Cisco CLI.
Note - this is now fixed. I followed the steps here to install ACS 5.0 on VMware Workstation 7: url...
In ACS 5.3 radius authentication report I want to show the called-station-id attribute. (this was appearning on failed and passed auth in ACS 4.2). The value of called-station-id appears in the details. However, I want it to appear as a column with the report.
View 2 Replies View RelatedWe need to move from ESX 3.5 to ESX 4.0 a virtual machine running Cisco Secure ACS per Windows version 4.2.
View 10 Replies View RelatedI am reading up on the ACS VMware appliance installation instructions and am a bit confused on the disk space requirements. It says 60Gb is required and then goes on to talk about 500GB for the secondary instance. Do I need more than 60gb? Is the secondary instance a separate machine or part of the same one?URL
View 5 Replies View Relatedis it possible to install cisco acs 5.4 on vmware 8 workstation ?
View 1 Replies View RelatedAre there any recommendations for configuring the VM for the ACS 5.x? What are the required minimum CPU-Cycles to dedicate and also the minimum RAM to dedicate?
View 1 Replies View RelatedWhat are the VMware requirements to run ACS4.1.4? Im trying to use a VM this as the migration server. According to the cisco docs, it states that: "ACS 4.1 has been tested on the VMWare ESX server with the following configuration:
•VMWare ESX Server 3.0.0
•16 GB of RAM
•AMD Opteron Dual Core processor
•300 GB hard drive
•Four virtual machines
•Windows 2003 Standard Edition
•3 GB of RAM for the guest operating system"
I understand it will work as it "has been tested" with those specs, but the doc does not state the minimum requirements for the virtual machine. I dont want to use/find 300GB of space if I only need 20GB(as an example) to make it work.
I'm with problems to migrate the ACS 5.1 hardware to ACS 5.1 vmware. In my infraestructure I have a appliance with ACS 5.1 and I need to migrate to vmware to do HA. I installed vmware as the Cisco ACS recommendations. I made a backup of the ACS hardware and copied the local disk vmware ACS.
When I start the restore process after a few minutes an error occurs:
UMA/admin# dir
Directory of disk:/
33293306 Jun 08 2011 16:51:38 bkp-production-110608-1433.tar.gpg
5862 Nov 07 2009 01:06:32 favicon.ico.1
16384 Jun 06 2011 17:54:34 lost+found/
[Code]....
I have a client that is running ACS 5.3 as a VM in ESX 4.1. The client wants their VMWare admins to have the ability to shut down the ACS server during maintenance etc... I know I could create a CLI user with admin priviliges, however, assigning full admin priviliges is beyond the scope of what the user requires. They simply want a user account with the added privilige of performing a halt from the CLI. In the CLI Reference Guide for ACS.
So is it possible to create an account with user priviliges, then modify its permissions to allow for a halt?
it's possible to install ACS Remote Agent 4.2.1 on VMWare server. Is it supported by Cisco?Do you have any experience with running the remote agent on VMWare servers?
View 2 Replies View Relatedto backup an ACS 5.3 vm running on ESXi 5.0 our backup admin requested to install vmware tools on the acs server.
View 2 Replies View RelatedAs observed ACS 5.x " Change Password on Next Login" Feature does not work with SSH Clients ( tried with X-sheel, Secure CRT, Putty etc...) , however through telnet session to IOS devices, users can change their password on their next login.
1: on ACS 5.x i create a new user & Set " Change password on NExt Login" option.
2: Logged into the device through Telnet & Password can be changed after i authenticate successfully. however the same is not happening when i login to the devices through SSH.
is it because of the fact that SSH is encrypted session ?
Because changing password through a telnet session is not accepted in many fanancial organizations as per PCI Standard.
how the certificates work when using PEAP on ACS 5.2.Currently we have clients which are Cisco wireless IP phones that are using the ACS server(s) for authentication to the wireless network. The phones are configured to use PEAP with server validation enabled. The phones have a Godaddy root certificate, and Godaddy intermediate certificates installed on them, (in addition they have all the certs that are on the phone by default). On the ACS server there is a certificate that is signed by Godaddy. This was creating doing the CSR process etc...
So from what I understand, because all the phones are set up to validate the server certificate, they require the public root certs and the intermediate certs that are installed on them, in order to validate the private cert that is on the ACS server. The private certificate (the one signed and issued by Godaddy), expires the middle of next year (2014) (a little ways off I know, but it is never too early be concerned about stuff). When we go to get a new private certificate for the ACS servers (or get a renewal) and when we install this new signed certificate onto the ACS servers…will all the clients still trust this new certificate, and everything will continue to work smoothly? Or will the clients all need to have new root certs installed, and new intermediate certificates installed? From what I can gather I think the first scenario should be the case, because the root certs and intermediate certs are there to trust certs that are signed by Godaddy, so as long as the new private certificate is signed by Godaddy everything should be okay.
We have ACS 5.3, and trying to set up sftp backup on freesshd server. SSH connection works, but ACS cannot copy backup file to sftp server, we get following errors:
Acs.MGMT.ACSVIEW Backup failed: CARS_XM_SSH_CONNECT : -306 : SSH connect error
FTP backup works fine.
I am trying to get the ACS 5.3 to work with NCS but cannot make it work correctly. url...But this does not show how the ACS referencing AD groups would work when determining which custom attributes to use.
On the ACS 5.3 i have set up the following .The ad is working and in Users and identity stores/External identity stores/Active Directory then my AD test works fine.I have set up the Users and Identity stores/Identity Groups with appropriate ip s.I have configured the Network Device Groups/Network Devices and AAA Clients with the ip address and Authenication optionsA.In Policy Elements/Authorisation and Permissions/device administration/shell profiles.I have creeated a shell profile called network shell pro which das a common tasks of def priv = 0 and max priv = 15
Now i can get into the NCS but i do not see any of the administration buttons on NCS - so this means the custom attributes are not working.i shouldnt need a user for this on the ACS as its using AD.
I have several 2950 switches that I cannot get to work with TACACS. I'm using the same config for these that I am using for other cisco switches. [code]
View 1 Replies View RelatedI have an issue about ACS v5.3 Appliance.I have an ACS v 5.3 wo authenticate wireless users, together with a cisco wlc. One profile is to corporate users and the second profile is to guest.
The corporate users should authenticate with Active Directory and the guest with WLC. Guest users should authenticate with the ACS Local Database. I have configurate two service selection policy that match with protocol Radius. The first rule is to users of Active Directory and the second is to users in
the Local Database of ACS.When i try to authenticate users with active directory is OK, but when try to authenticate users with Local Database (Guest Portal) the ACS try to find the
the internal user in the Active Directory, because math the first rule, and the second profile can not authenticate.When I change the order, first the Rule of internal users and second the rule of users of Active Directory, the internal users can authenticate in to ACS, but
the users in the Active Directory can not authenticate.I think my ACS only authenticate the first rule of radius to Active Directory, no two rules of radius in the same time. Or maybe exists an issue in OS of the ACS.The authentication by separately is OK.
I have win 2008 server as DC, i have installed acs 4.2 on menber server (win 2003) , but it doesn't work, how to let this one work.
View 6 Replies View RelatedI'm using an HP Elitebook 6930p with Windows XP and an HP EN488UT docking station. When I use the computer by itself the Network Connections shows "Local Area Connection 3 Connected Intel 83567LM Gigabit Network Connection" and I can connect to the internet. When I am in the docking station, I can also see this connection, as long as my notebok is open when I start up. However, if i start the computer with the lid closed (I just want to use the external monitor, not the notebook monitor) that network connection does not appear and I cannot connect to the intenet.
[code]....
Can I connect 2 or more wireless repeaters to the same wireless base station signal to extend wireless coverage? I.e. The base station is located in the centre of the building and the signal covers the middle but not the extreme end of the building. I would like to add a repeater on each opposite sides of the signal's reach so it covers the complete building. I can't use LAN cable and the building has different electricity supply to the 3 different part of the building so can't use the mains to carry the signal. Is this possible using wirless repeaters or do I have to use wireless bridge units to connect to the base station and then output with wireless access points attached to the bridge unit to extend the wirless signal?
View 6 Replies View Relatedwhat is a diskless station in networking
View 1 Replies View Relatedif the network i'm planning on will even work so i drew a picture on my project (attached). All cables will be gigabit compatible as will be the switches. The reason i will have 2 switches is because they won't be in the same building. The uppermost switch will be physically next to the router to enable me to have gigabit connection between the DiskStation and the PCs/HTPC without having to change my router (in fact can't change it due to special firmware for my internet TV).
View 4 Replies View RelatedWe would like to install a wireless network throughout the station. Currently we have a wired network with 15 PC's and are looking at obtaining tablets for our squads and apparatus. The station is quite large and is divided by the vehicle bays.I'm thinking that we will need multiple access points throughout the station. I am familiar with setting up one wireless router but not with multiple access points.
View 2 Replies View RelatedI have the Air Station WHR-G300N. I just moved here from CA, I was on Verizon and now trying to use it on my girlfriend Cox system I can't get it to operate correctly.
Her PC system stopped having internet connection after about 2 weeks(running on the router) and going with Cox's reboot procedure of eliminating the router it can back up and seems to work fine as soon as I hook it back to the modem it stops.
I have unplugged all cables waited 30 seconds on both systems a couple of times. The lights are on the modem and the router.
I was wondering if it is at all possible to set up a DIR-655 as a wireless base station for any router (specifically a netgear wrg614 v10). I've read that the DIR-655 can be set up as an access point, but with my current situation it's not currently possible.If this is not compatible with this specific netgear router, is there any other solution besides having to purchase a dedicated access point?
View 3 Replies View RelatedI am blocked with the below doubt for my issue resolution. When a ethernet frame for eg:ARP Packet of minimum length (64 bytes) is received at the end station, will the L2 layer remove both FCS and extra padding bytes(18 padding bytes for ARP)? Or removal of the padding bytes is dependent on the implementation?
View 2 Replies View Relatedi have 10 stations, and i think one of them generated allot of traffic.maybe a virus sending spam.is there a command that can show my which station consume bandwidth?
View 3 Replies View RelatedI have a Latitude D820, Windows XP, SP3. At my office I have a regular docking station but at home I have a D/Dock docking station. When I dock the 820 at home the Broadcomm network card works flawlessly. When I dock it in the office, it will occasionally work but most of the time the link light and data light on the docking station are on solidly and XP reports that the cable is unplugged. I have tried two different docking stations with identical results and also tested the cable by plugging it into the docking station that holds a D810. With the D810 it worked normally.
View 1 Replies View RelatedI want to connect from a Linux station to RV082, is it possible? What software can I use and with what configuration?
View 2 Replies View RelatedI am trying to set a little network in vmware (for do some testing on GP)in a vmware installed server2008 and win7 both are in one team Both has only one network adapter which is set to LAN1 Segment Both can ping each other Installed AD and configured DNS configured dhcp with scope 192.168.2.100 to 192.168.2.200 Set domain - [URL]Assign static to server 2008 192.168.2.101 Windows 7 can connect to domain no problem both machine got no external connectivity means cant open any webpage Do i need to add another network adapter in server2008 and set as NAT so it can connect to external network as well Can i set static IP address to 192.168.2.2 to server2008 or its has to be only within the loop basically need to setup a netwrok within a team that should be able to connect internally and externally as well ( Wont be able to connect to my host machine as need to set up VLAN for that but atleast access to internet) So wt type of vmware connection should i use
Host
NAt
LAN segment
or custom
And how many network adapter i need in each machine and which connect to which one?
If I have linux or another machine inside of a VM and I perform tasks across the network, does any of the packets ever expose my hardware MAC address?
View 2 Replies View RelatedIn Cisco ASDM 7.1(1), webvpn configuration, it is possible to configure bookmarks with "vdi://" links to Citrix's or Vmware's Virtual Desktop Infrastructures, but we couldn't find any configuration resource (conf guide) on official Cisco site: if it is actually possible to integrate Vmware View Client into ASA 9.1 WebVpn solution?
View 1 Replies View RelatedSamsung CY-WDCA7UT/ZA USB Central Station Dongle driver?
View 1 Replies View Related
