I was asked to performe upgrade from acs 5.3 to 5.4 (vm), but i noticed that someone installed it on 80gb partition and there is 500gb as one of the requriments in upgrade and install procedure. What is strange to me is that "dir disk:" command shows such an output: 5165345067 bytes available.And under ESX i see 80gb partition. Anyway, is there any way to extend partition size to 500gb? Can I just change it under ESX? Is there any procedure to take under ACS console?
We are migrating from ACE 20 module to an ACE 4710 appliance. [code] When pasting in the config on the ACE 4710 running A4(2.1) code, I get the subject error message when trying to enter in the highlighted sticky-serverfarm command above. Again, this config works on the older hardware and older code.
I know this sounds a simple and easy question, but I can't find the answer anywhere - so here it is :-I need to know the maximum number of vpn tunnels that a Cisco 881 can handle.(In context, we have a group of users, who work from home and this office, so their laptops have the cisco vpn client, I need to know how many of these vpn connections the 881 can handle at once before it dies a death.)Hote - I have read somewhere a line that state maximum number of users is 20 but think this was in reference to some VOIP service.
We have a ASA 5510 (v8.2.2 with ASDM 6..4.7, 256Mb mem) with a license for 250 VPN Peers. The machine has currently one site-to-site VPN active. I've added a remote-access IPSec VPN for some users but when connecting from the remote site the connection is dropped and the ASA reports %ASA-4-713239 Tunnel Rejected : The maximum tunnel count allowed has been reached.
I've searched for info relating to this message but I found none. Before I plan a restart (it's up for 222 days), is there something I could do on CLI to fix this ?
Just loaded the 184.108.40.206 software onto the brand new WiSM2. Going throught the options and have found that under the global parameters for 802.11a/n, 802.11b/g/n radios is now the "Maximum Allowed Clients" option. The allowed setting is from 1 - 200 clients.
Does that mean only 200 clients will be allowed to associate to the WLC on that radio at a maximum?
Doesn't seems to make sense... I have the 500 AP license on this WiSM2... I know this option used to be an optional setting under a WLAN in previous releases.
We've had this firewall in place for years, and there haven't been changes to it in the past few months. Last week, however, we started having problems accessing one of our networks through the PIX, and after working with Microsoft, we determined it was an MTU issue. The maximum sized packet to the PIX and through the PIX is 1020 bytes, and it doesn't matter if the packets are sourced from a server or the PIX itself. From the server, we can ping 1500 byte packets to the core switch with no issues. All interfaces are set for 1500 byte.
I've just installed ACS 5.1 and noticed that it seems to count managed devices differently than previous versions.
I have a 500 count license which should be fine as I have about 100 devices which will use ACS for TACACS. On ACS 3.x and 4.x, I would set up AAA clients by using a wild card for the subnets that host our routers/switches, say 192.168.1.0/24, 172.16.1.0/24 and 10.1.1.0/24. when I do this with ACS 5, I get a Managed Device Count Exceeded error messasge becasue of the potential of more than 500 AAA clients. It seems to be counting every IP address in the subnet as a managed device, even if there are only a handful actually in use. Is there a way around this short of having to manually enter (and maintain) the exact IP Address of every managed switch and rotuer which will use the ACS server for TACACS?
I have a Problem with an an ACE4710 Setup. Between my 2 Ace's there are Switches which don't Support Jumbo Frames - Is there a way to configure the Interface on the ACE to an Standard MTU Sive (15xx) ,I'm using SW-Version A3(2.7).
We have a site where uses are unable to login to an application. After running a packet trace on the traffic coming from the site to the server they are trying to access, the trace indentifies that the client pc is sending a window size of zero to the server, and it does this twice. So in essence the client is saying it is too busy. This is strange as all the other applications work for the users and it is only this one application that is experiencing issues. The only other issue is that there is some retransmitted traffic before the client sends window size.
Currently using a CSS1506 for our reverse proxy SSL.I have a couple of questions
1 - Does the 11506 use an internal disk as well as the one in slot 0 ? 2 - I have a spare mem card in slot1, how can I copy all of the required boot files etc to slot 1 in case of a card failure in slot 0?
My customer is tight on SN space, so they set up 400GB for the ACS AM. I saw a message about having less than 500GB flash by during the DVD install, but it seemed OK otherwise. When the VM boots off the HD, I get the localhost login prompt, and I type in setup, but nothing happens for about a minute, then I get the message 'INIT: ID "S0" respawning too fast: disabled for 5 minutes". After that, nothing. I've booted multiple times. Is this related to the disk space, and is it possible to install with less than 500GB?
We are running ACS 4.1 on Windows 2003 server. The disk filled completely up with years of log files. We have freed up space but now none of the services will start back up either automatically or manually.
We are getting ready to bring up 2 new 5.1 ACS servers to replace our ACS 4.2 configuration.The documentation says that 512GB of disk space is required for each server. This means we will need to request1 TB of disk space. The VMware folks in our group are asking why we need so much space when the 4.2 servers are only using 20 gigs including the OS.
I have a problem in the ACE 4710. In view of the connections of a web environment. When I view connections on Config> Operations> Real Servers, Conns column values appear very high connections (Example. 1606317769078).Already in Config> Operations> Virtual Server the number of connections appear normal. Version 4710 ACE Device manger A4 (2.1a)
What are the maximum number of real servers, server farms and virtual servers i can configure on ACE30 module,Is there any documentation available on cisco site where i can check this? Does it depend on the hardware or does it depend on the software version?
After an upgrade from ACS 5.1 to 5.3 the view-logprocessor are not running any more. I also installed the newest patch 220.127.116.11.1. The installations are success but the view-logprocessor steal are not working.
I have deployed 7 appliances 18.104.22.168.4 CSACS-1121-K9 whose 6 are performing AAA authentications while the last one is is the primary and is the master for configuration and log collector.
Since this morning, I cannot access anymore the view where I can see all Radius authentication for today. I obtain the following message:The server workspace storage for on demand transient reports is full, please try again later or contact administrator to increase on demand transient report storage capacity?
Moreover, if I generate other report, I have the message:18002: iPortal generate report failed.I could find some information which makes references to a Cisco bug CSCtb98071, as below:
Launching a shared report in the ACS 5.1 Monitoring and Report Viewer displays an iportal error for a particular scenario. #Symptom: You will see the following iportal error message when you launch a shared report: #iPortal generate report failed. # #Conditions: This error occurs when you add a report to a group in the interactive viewer and save it as a shared report. #Workaround: Avoid using the option Add Group from the interactive viewer for hyperlinked column entries when you save the report as shared
However, I am not adding any report to any group, so I don't understand why this error appears and how to solve it.
we have installed TACAS server for all kinds of authentation. What i came to face is that when i configured enable mode password on ASA 5520 or 5510....maximum length this password is of 8 character but i need to more character.
Would like to check out is it possible binding Cisco secure ACS 5.x to support router/switch ios feature view - superview and parser command
Busines objective is assigning administrative roles, with different role based CLI access, using ACS5.X as backend server. a. Admin (allow all) b. network monitor (privlege # 7, enable view that can doing various show command and configure) c. support (privlege #1, read only)
We have Cisco ACS 4.2 in our network and the accounting is done for 750-1000 devices and only for level priv-15.If i want to enable accounting for all levels from priv-1 to 15. All commands executed in devices are sent to ACS. Does the ACS can that much sessions from those many devices?Am also planning to configure acs remote agent to store all the accounting history.
We have a Cisco ACS 5.2 deployment (appliance). It has an existing integration with Active Directory. We utilize this with RADIUS to authenticate our wireless users and TACACS for managing our network equipment.The RADIUS reports are useful for other teams (outside my own) to be able to troubleshoot password and account lockouts (everyone forgets to change the password on their phone).I would like to allow this team and other access to view the RADIUS authentications report.
We have an issue with View db (Monitoring & Reports) backup on ACS, version 22.214.171.124. We have scheduled incremental backup daily and full backup monthly. Everything has been working well, but since yesterday following errors have appeared, and full and incremental backup stopped working:
Alarm Name System Alarm [Incremental Backup] Cause/Trigger On-demand Full Backup failed Alarm Details CARS_BR_BACKUP_CREATE : -405 : Internal error: couldn't create backup file Alarm Name
We use same repository as always. Backup to the same repository works from CLI.
I am having trouble viewing all the Administration logs in ACS View. I have my Local Log Target set to a Maximum log retention period of 90 days. In ACS View I can display authentications that go back 90 days + However when I try and display the "ACS_Configuration_Audit" in View and perform a Custom query that goes back 90 days it will only display about 35 days of Admin logs.I know the logs are there because when I go into CLI and do a search like "show logging | i "ObjectType=Administrator Account" the Administration logs go back over a year.why ACS View cannot display all the Admin logs?The ACS is running v126.96.36.199 Patch 6 (Also experiencing this in a v5.2 ACS as well)