Administration Guide
Page 27
... on the ACE, see the Cisco 4700 Series Application Control Engine Appliance Routing and Bridging Configuration Guide. Cisco 4700 Series Application Control Engine Appliance Administration Guide 1-1 CH A P T E R 1 Setting Up the ACE OL-11157-01 This chapter describes how to the ACE, configuring VLAN interfaces on the ACE, and configuring a default or static route on the Cisco 4700 Series...
... on the ACE, see the Cisco 4700 Series Application Control Engine Appliance Routing and Bridging Configuration Guide. Cisco 4700 Series Application Control Engine Appliance Administration Guide 1-1 CH A P T E R 1 Setting Up the ACE OL-11157-01 This chapter describes how to the ACE, configuring VLAN interfaces on the ACE, and configuring a default or static route on the Cisco 4700 Series...
Administration Guide
Page 30
... entering the login username and password. For example, enter: switch login: admin Password: admin ---- Cisco 4700 Series Application Control Engine Appliance Administration Guide 1-4 OL-11157-01 This setup utility will be able to log in to the Device Manager Chapter 1 Setting Up the ACE The ACE provides a default answer in brackets [ ] for each question in this...
... entering the login username and password. For example, enter: switch login: admin Password: admin ---- Cisco 4700 Series Application Control Engine Appliance Administration Guide 1-4 OL-11157-01 This setup utility will be able to log in to the Device Manager Chapter 1 Setting Up the ACE The ACE provides a default answer in brackets [ ] for each question in this...
Administration Guide
Page 33
...(you can configure the ACE to reinitialize as it reads the ACE CLI configuration. Note Do not modify the dm user password from the ACE console port. If the password is hidden on the ACE, see the Cisco 4700 Series Application Control ...Engine Appliance Security Configuration Guide. You can remotely access the ACE CLI through the console port; Chapter 1 Setting Up the ACE Connecting and Logging into the ACE Connecting and Logging into the ACE This section describes how to connect to the ACE as the default...
...(you can configure the ACE to reinitialize as it reads the ACE CLI configuration. Note Do not modify the dm user password from the ACE console port. If the password is hidden on the ACE, see the Cisco 4700 Series Application Control ...Engine Appliance Security Configuration Guide. You can remotely access the ACE CLI through the console port; Chapter 1 Setting Up the ACE Connecting and Logging into the ACE Connecting and Logging into the ACE This section describes how to connect to the ACE as the default...
Administration Guide
Page 34
... The prompt changes to the ACE Device Manager GUI. Cisco 4700 Series Application Control Engine Appliance Administration Guide 1-8 OL-11157-01 Otherwise, you have not already done so. Log into the ACE Chapter 1 Setting Up the ACE To connect to the ACE and access configuration mode to... startup-configuration file, a setup script appears to enable connectivity to the following prompt: switch login: admin Password: admin By default, both the username and password are admin. The ACE has one standard RS-232 serial port found on the rear panel that operates as 9600 baud, 8 ...
... The prompt changes to the ACE Device Manager GUI. Cisco 4700 Series Application Control Engine Appliance Administration Guide 1-8 OL-11157-01 Otherwise, you have not already done so. Log into the ACE Chapter 1 Setting Up the ACE To connect to the ACE and access configuration mode to... startup-configuration file, a setup script appears to enable connectivity to the following prompt: switch login: admin Password: admin By default, both the username and password are admin. The ACE has one standard RS-232 serial port found on the rear panel that operates as 9600 baud, 8 ...
Administration Guide
Page 35
...line. however, for every ACE shipped from Flash memory. If you create in to the ACE, you reboot the ACE, it reads the username and password from Cisco Systems. Caution For software versions A1(8.0a) and higher, you must change the default Admin password if you create in Flash...account Exec command. OL-11157-01 Cisco 4700 Series Application Control Engine Appliance Administration Guide 1-9 For details on your ACE can be compromised because the administrative password is configured to be able to log in other contexts, the default scope of access is Network-Monitor....
...line. however, for every ACE shipped from Flash memory. If you create in to the ACE, you reboot the ACE, it reads the username and password from Cisco Systems. Caution For software versions A1(8.0a) and higher, you must change the default Admin password if you create in Flash...account Exec command. OL-11157-01 Cisco 4700 Series Application Control Engine Appliance Administration Guide 1-9 For details on your ACE can be compromised because the administrative password is configured to be able to log in other contexts, the default scope of access is Network-Monitor....
Administration Guide
Page 36
... that you enter. For example, to the factory-default value of the ACE. Changing the Administrative Password Chapter 1 Setting Up the ACE To change the default administrative password, use the username command in the running-config. You must have access to the ACE through the console port. 1-10 Cisco 4700 Series Application Control Engine Appliance Administration Guide OL...
... that you enter. For example, to the factory-default value of the ACE. Changing the Administrative Password Chapter 1 Setting Up the ACE To change the default administrative password, use the username command in the running-config. You must have access to the ACE through the console port. 1-10 Cisco 4700 Series Application Control Engine Appliance Administration Guide OL...
Administration Guide
Page 37
... appears on the terminal (see the example below). Continuing... Chapter 1 Setting Up the ACE Changing the Administrative Password To reset the password that allows the Admin user access to the ACE, perform the following steps: Step 1 Step 2 Step 3 Step 4 Connect to the ACE. Press ESC when the "Starting services..." PCI test loop , count 0 PCI path...
... appears on the terminal (see the example below). Continuing... Chapter 1 Setting Up the ACE Changing the Administrative Password To reset the password that allows the Admin user access to the ACE, perform the following steps: Step 1 Step 2 Step 3 Step 4 Connect to the ACE. Press ESC when the "Starting services..." PCI test loop , count 0 PCI path...
Administration Guide
Page 64
... memory (nonvolatile memory) during the boot process. Enter the config-register command so that upon reboot the ACE boots to the GRUB bootloader. 1-38 Cisco 4700 Series Application Control Engine Appliance Administration Guide OL-11157-01 See the "Setting the Boot Method from the...section. 2. You can bypass the startup configuration file to safely boot the ACE and then resolve issues with the default password of admin. Modifying the Boot Configuration Chapter 1 Setting Up the ACE Configuring the ACE to Bypass the Startup Configuration File During the Boot Process From the GRUB ...
... memory (nonvolatile memory) during the boot process. Enter the config-register command so that upon reboot the ACE boots to the GRUB bootloader. 1-38 Cisco 4700 Series Application Control Engine Appliance Administration Guide OL-11157-01 See the "Setting the Boot Method from the...section. 2. You can bypass the startup configuration file to safely boot the ACE and then resolve issues with the default password of admin. Modifying the Boot Configuration Chapter 1 Setting Up the ACE Configuring the ACE to Bypass the Startup Configuration File During the Boot Process From the GRUB ...
Administration Guide
Page 195
... file, you can copy the file to the disk0: file system in Flash memory on the ACE by using the following tasks: • Prompts you for your username and password if the destination file system requires user authentication. • Prompts you for the server information if...default selection of the startup-configuration file to the disk0: file system, use the copy running-config disk0: command in all cases when copying files to a remote FTP server, enter: host1/Admin# copy running-config ftp://192.168.1.2/running -config | startup-config} disk0:[path/]filename OL-11157-01 Cisco...
... file, you can copy the file to the disk0: file system in Flash memory on the ACE by using the following tasks: • Prompts you for your username and password if the destination file system requires user authentication. • Prompts you for the server information if...default selection of the startup-configuration file to the disk0: file system, use the copy running-config disk0: command in all cases when copying files to a remote FTP server, enter: host1/Admin# copy running-config ftp://192.168.1.2/running -config | startup-config} disk0:[path/]filename OL-11157-01 Cisco...
Administration Guide
Page 199
...ACE Software Saving Configuration Files inservice serverfarm type host serverfarm1 predictor hash address real real1 inservice real real2 inservice real real3 inservice class-map match-any vipmap1 10 match virtual-address 17.1.2.1 tcp any policy-map type loadbalance first-match policymap1 class class-default...-group input acl1 service-policy input policy1 no shutdown context Admin member default username admin password 5 $1$faXJEFBj$TJR1Nx7sLPTi5BZ97v08c/ role Admin domain default-domain username www password 5 $1$UZIiwUk7$QMVYN1JASaycabrHkhGcS/ role Admin domain de fault-domain snmp-server ...
...ACE Software Saving Configuration Files inservice serverfarm type host serverfarm1 predictor hash address real real1 inservice real real2 inservice real real3 inservice class-map match-any vipmap1 10 match virtual-address 17.1.2.1 tcp any policy-map type loadbalance first-match policymap1 class class-default...-group input acl1 service-policy input policy1 no shutdown context Admin member default username admin password 5 $1$faXJEFBj$TJR1Nx7sLPTi5BZ97v08c/ role Admin domain default-domain username www password 5 $1$UZIiwUk7$QMVYN1JASaycabrHkhGcS/ role Admin domain de fault-domain snmp-server ...
Administration Guide
Page 208
...:, sftp:, or tftp:, the ACE performs the following tasks: • Prompts you for your username and password if the destination file system requires... user authentication. • Prompts you for transferring compiled files (executables). For example, to save a core dump file to a remote FTP server, enter: host1/Admin# copy core:0x401_vsh_log.8249.tar.gz ftp://192.168.1.2 5-18 Cisco...System on the ACE Chapter 5 Managing the ACE Software • running-config-Specifies the running -config_Adminctx Enter username[]? The default selection of the...
...:, sftp:, or tftp:, the ACE performs the following tasks: • Prompts you for your username and password if the destination file system requires... user authentication. • Prompts you for transferring compiled files (executables). For example, to save a core dump file to a remote FTP server, enter: host1/Admin# copy core:0x401_vsh_log.8249.tar.gz ftp://192.168.1.2 5-18 Cisco...System on the ACE Chapter 5 Managing the ACE Software • running-config-Specifies the running -config_Adminctx Enter username[]? The default selection of the...
Administration Guide
Page 219
... For example, to delete the file 0x401_VSH_LOG.25256.TAR.GZ from the ACE to a remote FTP server, enter: host1/Admin# copy core:0x401_vsh_log.....8249.tar.gz] Enter username[]? Hash mark printing on . The default selection of the Admin context. The ascii file transfer mode is intended...files. user1 Enter the file transfer mode[bin/ascii]: [bin] Password: Passive mode on (1024 bytes/hash mark). Clearing the Core Directory.../Admin# delete core:0x401_VSH_LOG.25256.TAR.GZ OL-11157-01 Cisco 4700 Series Application Control Engine Appliance Administration Guide 5-29 Note The bin ...
... For example, to delete the file 0x401_VSH_LOG.25256.TAR.GZ from the ACE to a remote FTP server, enter: host1/Admin# copy core:0x401_vsh_log.....8249.tar.gz] Enter username[]? Hash mark printing on . The default selection of the Admin context. The ascii file transfer mode is intended...files. user1 Enter the file transfer mode[bin/ascii]: [bin] Password: Passive mode on (1024 bytes/hash mark). Clearing the Core Directory.../Admin# delete core:0x401_VSH_LOG.25256.TAR.GZ OL-11157-01 Cisco 4700 Series Application Control Engine Appliance Administration Guide 5-29 Note The bin ...
Administration Guide
Page 338
... assigned the system-defined default group of Network-Monitor. Authentication determines that this privacy password is from a valid ...password. In this server require AES for the user. The ACE automatically synchronizes the SNMP authentication password as the password for the user. The ACE supports the following special characters in a password: Note that the ACE encrypts clear text passwords...Cisco 4700 Series Application Control Engine Appliance Virtualization Configuration Guide. • auth-(Optional) Sets authentication parameters for SNMP PDU encryption. 8-28 Cisco...
... assigned the system-defined default group of Network-Monitor. Authentication determines that this privacy password is from a valid ...password. In this server require AES for the user. The ACE automatically synchronizes the SNMP authentication password as the password for the user. The ACE supports the following special characters in a password: Note that the ACE encrypts clear text passwords...Cisco 4700 Series Application Control Engine Appliance Virtualization Configuration Guide. • auth-(Optional) Sets authentication parameters for SNMP PDU encryption. 8-28 Cisco...
Administration Guide
Page 340
.... In this case, all SNMP users are automatically assigned the system-defined default group of SNMP. Enter an unquoted text string with read -only access for the user, authentication password, and message encryption parameters (see the "Configuring SNMP Users" section). Note... Only network monitoring operations are supported through the ACE implementation of Network-Monitor. The syntax of the Network-Monitor group, with no snmp-server community SNMP_Community1 group Network-Monitor 8-30 Cisco 4700 Series Application Control Engine Appliance Administration Guide OL-...
.... In this case, all SNMP users are automatically assigned the system-defined default group of SNMP. Enter an unquoted text string with read -only access for the user, authentication password, and message encryption parameters (see the "Configuring SNMP Users" section). Note... Only network monitoring operations are supported through the ACE implementation of Network-Monitor. The syntax of the Network-Monitor group, with no snmp-server community SNMP_Community1 group Network-Monitor 8-30 Cisco 4700 Series Application Control Engine Appliance Administration Guide OL-...
Administration Guide
Page 366
...case, the user would otherwise have not already done so. CISCO CONFIDENTIAL Note The dm user is an internal user that would be able to use XML to remotely configure an ACE until you change the default www user password if you will not be www. See Chapter 2, Configuring... Virtualization, in the Cisco 4700 Series Application Control Engine Appliance Virtualization Configuration Guide for the XML ...
...case, the user would otherwise have not already done so. CISCO CONFIDENTIAL Note The dm user is an internal user that would be able to use XML to remotely configure an ACE until you change the default www user password if you will not be www. See Chapter 2, Configuring... Virtualization, in the Cisco 4700 Series Application Control Engine Appliance Virtualization Configuration Guide for the XML ...
Administration Guide
Page 394
...Exec mode to existing network traffic during a software upgrade or downgrade, deploy your ACE with the operating system software. Before You Begin Before you fully understand the entire upgrade process. Cisco 4700 Series Application Control Engine Appliance Administration Guide A-2 OL-11157-01 After the ... and Preempt • Creating a Checkpoint Changing the Admin Password Before you upgrade to software version A1(8.0a) or higher, you must change the default Admin password if you will use the copy command in to the ACE through the console port. Then, reboot the appliance to ...
...Exec mode to existing network traffic during a software upgrade or downgrade, deploy your ACE with the operating system software. Before You Begin Before you fully understand the entire upgrade process. Cisco 4700 Series Application Control Engine Appliance Administration Guide A-2 OL-11157-01 After the ... and Preempt • Creating a Checkpoint Changing the Admin Password Before you upgrade to software version A1(8.0a) or higher, you must change the default Admin password if you will use the copy command in to the ACE through the console port. Then, reboot the appliance to ...
Administration Guide
Page 395
... to software version A1(8.0a) or higher, you must change the default www user password. Note that you change the default www user password if you want the currently active ACE to remain active after you upgrade the ACE software, the www user will not be www. Creating a Checkpoint... We strongly recommend that the preempt command is configured. OL-11157-01 Cisco 4700 Series Application ...
... to software version A1(8.0a) or higher, you must change the default www user password. Note that you change the default www user password if you want the currently active ACE to remain active after you upgrade the ACE software, the www user will not be www. Creating a Checkpoint... We strongly recommend that the preempt command is configured. OL-11157-01 Cisco 4700 Series Application ...