Cisco :: LMS 4.2 Backup Configuration Of Devices
Nov 29, 2012How to backup the configuration of Cisco devices managed by LMS 4.2 and store it in Folder , than restore it once it need it
View 10 RepliesHow to backup the configuration of Cisco devices managed by LMS 4.2 and store it in Folder , than restore it once it need it
View 10 Replies1)how can i backup the configuration on cisco lms 4.2 and to re-imported later when i re-install the lms 4.2
2)how can i change the admin password on cisco lms 4.2
How to backup the configuration on cisco acs 5.2 and how to restore it , if some thing wrong happened
View 7 Replies View RelatedCisco ACS 5.x appliance?How to back up Config?What is best way, via TFTP? COPY Startup-config tftp:?COPY Running-config tftp:?I currently use Solarwinds CatTolls to back my Cisco Switches, can I use this for Cisco ACS also?
View 3 Replies View Relatedhow to backup the configuration of ACS 5.3 then restore it on the secondary ACS 5.3 Appliance in order to save time without configure the 2nd Appliance?
View 1 Replies View RelatedI'm having problems configuring an asa 8.2(1) with a backup isp. I followed the asdm instructions in this document: [URL]
I have my backup interface configured as DHCP and the static routes set. Pinging the gateway and other external IP address from the backup interfaces works normally. I have also tried configuring the backup interface as a static address but got the same results.
When removing the primary wan link, all traffic stops. When I ping a external DNS, I get these errors in the log: portmap translation creation failed for udp src inside: 192.168.13.23 dst backup:208.67.222.222_type 8, code0)
I though this type of error is related to a NAT problem, not sure where to look though.
how to backup a Cisco Wireless Access Point Controller 5508.
View 2 Replies View RelatedI'm busy on configuring the backup of the configuration from Nexus switches 5K and 7K.I have installed COPSSH on my windows server and try to confiugre the sftp credentials. [code] I have tested from the CLI from the switch and i have the issue but if i use the default vrf 'default' it works fine.How can i change the command sent by DCNM to the Nexus in order to specify vrf default and not vrf management ?
View 1 Replies View RelatedIs it possible to create a job what automatically export the devices configs that are in the folder CSCOpxfiles medemushadow? It would be wonderdul if CW could export the .cfg files into a .rar and send in email or something like this.
View 1 Replies View RelatedI recently tested the process for a customer of defaulting a Cisco WLC to factory configuration and then restoring the configuration from Cisco NCS. It was not seamless to say the least and I wonder if I have just gone about it the wrong way.
Have have set the NCS platform to configuration sync with the 5508 controllers at 04:00 every day and prior to the controller defaulting I ensured that NCS also reported that the config was in sync. I have also set NCS to complete a tftp backup of the controller every night 23:00 - interestingly though I have no idea where this is stored on the NCS platform ( a VM appliance ) or what it's file name is.
Anyway my experiences where as follows:-
1. defaulted WLC and via serial CLI ended up at the configuration wizard.
2. Set the correct LAG, management IP, host name that NCS knew this controller by.
3. To test things just created a dummy WLAN ( SSID ) as I assumed this would be overwritten ( big mistake ! ).
At this point I connected the controller to the network and tried to restore the configuration from the config sync version.
First problem - you have to remember to set up the SNMP community string you were using as it is needed by the configuration sync process. After adding this to the controller I could push the configuration to the controller.
Second problem - failed to add the first WLAN from the backup as I have added the temporary dummy W LAN via the wizard and NCS reported a conflict. So had to delete WLAN ID 1 from the WLC GUI directly and then the config push no longer reported this error.
Third problem - for some reason did not add the TACACS server details - reported the error that it could not added them. I manually added these via a template via NCS and all was well.
Fourth problem - all but the first WLAN was in the disabled state - had to re-enable all of the WLANs.
Fifth problem - any default items I had disabled or removed have not been saved - therefore I have removed the public and private SNMP communities - but these were still on the WLC after the restore. I have disabled unused ports not in the LAG as they show an error in NCS - these where not disabled after the restore.
So all in all not a very satisfactory restore process from NCS to an defaulted WLC ( meant to simulate to the customer what would be needed if they had to replace a controller due to hardware failure ).
We have more than 50 devices handling by PI 1.2 (testing) I like to know how to do configuration archiving with user who doesn't have write privilege.
I tried like this.
username john privilege 6 password cisco privilege exec level 6 show running-config
(result) show run --> blank
I tried this user with one of switch in PI 1.2. It did not do configuration backup
username inout password inout username inout privilege 15 autocommand show running-config
(result) once logged in, it automatically showed running-config. However when I tried with PI 1.2 with this user (inout). I couldn't do configuration back.
reference [URL]
create certain user with read-only privilege while PI 1.2 is able to do configuration archiving ?
Is there a way to backup the configuration file to a tftp server? I've tried "copy start tftp" and copy run tftp". No luck, I get an error message.
View 1 Replies View RelatedI have a Cisco LMS 4.2.1 on a Windows 2008 Server R2 platform and I would like to backup the configuration of my WS-C4503-E version cat4500e-universalk9.SPA.03.03.01.SG.151-1.SG1I create the job in Configuration > Configuration Archive > Synchronization and after the execution of the job, I check th status in Admin > Job > Browser: I don't know why the archive doesn't exist. It's a newly install.
View 2 Replies View RelatedI am currently stuck to setup an automated configuration backup for ACE Blades. I found a script to backup the ACE from the Cisco ANM box but unfortunately I am not very familiar with Linux. (script) in place, to "pull" the ACE config from a Microsoft system ?
System State:
ACE IOS A2.(1).5
I have 2960G that in rommon status.I need that the switch work in 0x2102 (regular mode).I don't have a backup to configutratuio in my PC.I do wr before the switch go to rommon (startup config).What to do in order to the switch will be in 0x2102 (regular mode) with the same configuration( before the switch go to rommon)?
View 1 Replies View RelatedI can't seem to find and answer to this, but is it possible on a 2504 WLC to trigger a configuration backup when the configuration is saved like on Cisco routers and switches?
View 2 Replies View RelatedI'm working on setting up a backup link for our ASA 5505 and I've followed these directions: [URL]
The backup ISP gives us a dynamic address, however, when I enable the backup ISP's interface on the ASA, my vpn tunnels drop. As soon as I disable the backup interface, the tunnels come back up. I'm attempting to configure this across one of these tunnels, so obviously this is an issue, as is the fact that other people need the tunnels as well. I'm not sure what I did to make this happen, but I've been over the config many times and can't see anything different from the instructions in the link above.
I thought it might be trying to route traffic across the backup interface, but my primary interface is tracked and has SLA running on it, so I would assume it wouldn't roll over onto the backup interface.
On our cisco 3750 switches we can take config backups with the archive command. After every "write mem" it rights the config to our backup server. We would like to do this also for our asa 5520 with version 8.2(2). I also searched in the command reference guide, but I can't seem to find the proper command to do it.
View 2 Replies View RelatedI like to take log backup in ASA.. and i like to check whether any attack pattern is there?? how could i do this...?Also how could i do a best practise for this?
View 12 Replies View Relatedi have two internet links each of which from different ISP and different real ip addresses.Want to make the second backup internet work for Internal and external (AnyConnect) users.
my question: is that applicable to register single A record with different real ip addresses? and also is the AnyConnect method the best solution for them?
note: i have single firewall 5520 behind the cable modems.
I am looking at management (backup of the configuration) of the ACE 4710 running A4.1, the management software is Cisco Cirrus. The question I have is around the management of the context's, I have a backup of the Admin but would like the user context's also, how this is completed.
View 3 Replies View Relatedi'm looking for a cisco 881 configuration with SDSL line as nominal and ADSL as backup.
View 9 Replies View RelatedI have a WAG160N and its seems to have reset to factory defaults, no idea why, but when trying to restore the Configuration Backup all I get is "Restore Failure <Unmatched pid>"
View 2 Replies View Relatedi want to download an backup of the configuration file of my Cisco sg300-10 but do not know what to call the file extension.. backup.??? backup.img? backup.ros ?
View 4 Replies View RelatedI need to take the backup of configuration file for WLAN Controller 4420, I tried all the possibilities given in the documentation but the backup fails, I have main confusion with the file name to be backedup, i am not able to findout the configuration filename any where even when i use CLI?
View 1 Replies View RelatedI have finally been able to reconfigure my BEFSR41 V3 Wired Router to properly support my small server environment. I would like to know if there is a way to make a complete Backup of the current configuration that should be restored to the router if it should become "reset" to factory defaults. This happened to me approximately a week ago, and it took several days, a couple of phone support calls, and quite a bit of"grief" and aggravation/frustration before I managed to get everything re-configured correctly. If it had been "Backed up" to a file, I could have restored it and been back up and serving websites in a few hours. Instead it took almost a complete week! Is it even possible to actually backup the router? Or... must I just print each screen to be sure I get it all?
View 4 Replies View RelatedI'm trying to configure scp for secure configuration backup. I've configured the SCP server with an account and password but, I keep getting the no such file or directory error
AP-C2R1C5-3750#sh run | b arch archive path scp://mchenry:PASSWORD@172.20.22.229//C:/Program_Files/OpenSSH/Cisco_Configs/Switch_Config
username mchenry privilege 15 password 7 XXXXXXXXXXXXXXXXXXXXX
ip scp server enable
Error: %scp: /C:/Program_Files/OpenSSH/Cisco_Configs/Switch_ConfigSep-17-16-04-44.172-1: No such file or di
SWITCH#ping 172.20.22.229 Type escape sequence to abort.Sending 5, 100-byte ICMP Echos to 172.20.22.229, timeout is 2 seconds:!!!!!Success rate is 100 percent (5/5), round-trip min/avg/max = 33/33/34 ms
I have upgraded the configuration of about 650 Cisco devices (catalyst switches, routers, ASA, VGxxx, etc.) so as to integrate a new AAA server (Cisco ACS 5.3). This AAA server is bound with an Active Directory Server (MS Windows Server 2008 R2) for user authentication (only for admin purpose not for network access).Before this upgrade, the AAA server was Cisco ACS 4.1 (not bound to the Active Directory Server). Cisco devices are managed with a Cisco LMS 4.01 server. I modified the Network Level Login Credentials of the full privileged user of LMS because any caracters of the password were not accepted by AD. Therefore, in order to maintain the telnet connection availibility beetween the LMS server and the network devices, I had also to upgrade the appropriate device credentials in DCR. Finally I got the following issue when performing the credential verification : telnet incorrect !
When performing direct telnet connection with TeraTerm, I can reach the device and the user authentication is well performed by the ACS server and the AD server. Log files on the ACS 5.3 server show the accepted connection, the initiator and the tarjet device.But when LMS sends a telnet connection on to the same device (through a credential verification job), the ACS 5.3 does not receive the authentication inquiry (nothing in the tacacs+ log file). When performing AAA authentication debugging on the switch, the bind message repeats many times with no following authorization message (as requested also in debug). [code]
I reversed to the initial configuration of the switch (with ACS 4.1 as AAA server, not bound to AD) and performed a test with the same LMS server (with reversed credential data). The credential verification job is successful and the debug mode of AAA shows a correct negotiation beetween the switch and its ACS server : [code]
Indeed the ACS 4.1 authentication log file lists the successfull connection of the LMS server to the switch.In the two cases I exported the device credentials to a csv file to check the availability of each.
So, how to explain why a telnet session initiated by a terminal, can connect in both cases (ACS 4.1 ans ACS 5.3) to the switch and a telnet session coming from a LMS job can only connect to the ACS 4.1 server? When the switch "sees" an incoming telnet session request from everywhere, it must send it to the AAA server specified for authentication. I do not anderstand why the request from LMS is not sent to ACS (no record in log file, even according authentication deny.
I have some problem with WS-C4006 Cisco Catalyst that LMS doesn't collect and put into "never collected" area. I also see that those devices doesn't show the classic prompt ">" and "#". Could be the main problem ? If yes how can configure LMS to recognize a different prompt for devices.
View 1 Replies View RelatedWe are attempting to implement a VPN configuration using an ASA 8.02 at a Central site which terminates remote site VPN connections from IOS routers (12.4), using static crypto maps. We have a functional configuration, but looking to implement a backup site-site configuration on the ASA, using different service providers. The observation is that as soon as i add the 'connection-type originate-only' to the crypto map on the ASA, the tunnel is fatally broken. As soon as statement is removed the tunnel comes is restored. just wanted to confirm that the 'connection-type originate-only' configuration on the Central ASA is supported with the Cisco IOS peer. Documentation seems to indicate there is some sort of proprietary exchange that is supported only between ASA peers.
View 7 Replies View RelatedCurrently my home network is being switched via TrendNet TEGs80G unmanaged gig switches. I have been using them for about a year now with no issues. As my home network becomes more advanced, I recently just added a Cisco ASA5505, I am thinking about swapping those unmanaged devices, 4 of them, to managed. I was looking at the Cisco SG300-10 for upstairs, and a 16 port variant for my main core. These devices do not support full Cisco IOS cli, but they are manageable with a rich feature set nonetheless. My question is, should I swap the unmanaged devices with the more expensive Cisco devices, or just keep what works and save the money until I really need to spend it. As previously stated, my home LAN works just fine as it is, however my WiFi, NTV550s, server and workstations are all on the same network. Probably not the most secure but it is what it is without VLAN support.
View 11 Replies View RelatedI have installed my new E4200 and it works beautifully. I have several wirelss adapters and a few wired connections through powerline adapters. I also have a second VPN router attached to the 4200.I can see the wireless connected devices with the associated IP addresses. If I plug a laptop directly into the Cisco, I can of course see it.However, I can see none of the devices attatched to the powerline devices? I have a securty cam connected via the powerline and want to know the IP address. I checked with cisco technical support via chat and they said it is impossible. I have used 2 previous routers with the same configuration and can see all devices.
View 1 Replies View RelatedAll of a sudden my laptop, android phone and blu ray player (all wireless devices) can't communicate with my wired devices (marantz receiver and samsung tv). Everything still connects to the internet independently but i can't for instance play music from my wireless laptop to my wired marantz receiver. I had no trouble with this last week and didn't change anything (that I'm aware of) I did get Verizon to switch out my router but it didn't solve anything. My wife's computer also cannot connect to wired devices. Lastly, if I connect my laptop with via ethernet cable it sees wired devices fine. I tried shutting off windows firewall but didn't work. I have no other firewall/virus software installed. I can ping to all devices (wired and wireless) from my laptop.
View 1 Replies View Related