Reference Guide
Page 3
... 2-1 Before Accessing the ACS CLI 2-1 Starting the CSACS-1121 2-2 Running Setup to Configure ACS 2-2 Accessing the ACS CLI 2-3 Supported Hardware and Software Platforms 2-4 Opening the CLI with Secure Shell 2-5 Opening the CLI Using a Local PC 2-5 Understanding Command Modes 2-6 EXEC Mode 2-6 ACS Configuration Mode 2-7 Configuration Mode 2-8 Configuration Submodes 2-8 CLI Reference Guide for the Cisco Secure Access Control System...
... 2-1 Before Accessing the ACS CLI 2-1 Starting the CSACS-1121 2-2 Running Setup to Configure ACS 2-2 Accessing the ACS CLI 2-3 Supported Hardware and Software Platforms 2-4 Opening the CLI with Secure Shell 2-5 Opening the CLI Using a Local PC 2-5 Understanding Command Modes 2-6 EXEC Mode 2-6 ACS Configuration Mode 2-7 Configuration Mode 2-8 Configuration Submodes 2-8 CLI Reference Guide for the Cisco Secure Access Control System...
Reference Guide
Page 4
... acs restore A-18 acs support A-20 application install A-23 application remove A-24 application reset-config A-25 application start A-26 application stop A-26 application upgrade A-27 backup A-28 backup-logs A-30 clock A-31 configure A-32 copy A-32 debug A-36 delete A-38 dir A-39 exit A-41 forceout A-41 CLI Reference Guide for the Cisco Secure...
... acs restore A-18 acs support A-20 application install A-23 application remove A-24 application reset-config A-25 application start A-26 application stop A-26 application upgrade A-27 backup A-28 backup-logs A-30 clock A-31 configure A-32 copy A-32 debug A-36 delete A-38 dir A-39 exit A-41 forceout A-41 CLI Reference Guide for the Cisco Secure...
Reference Guide
Page 5
... session-timeout A-54 terminal session-welcome A-54 terminal terminal-type A-55 traceroute A-55 undebug A-56 write A-58 Show Commands A-59 show acs-config-web-interface A-60 show acs-cores A-60 show acs-logs A-61 show application A-64 show backup history A-67 show cdp A-68 show clock A-69 show cpu A-69 show disks A-71... logins A-78 show memory A-78 show ntp A-79 show ports A-80 show process A-81 show repository A-82 show restore A-83 CLI Reference Guide for the Cisco Secure Access Control System 5.1 v
... session-timeout A-54 terminal session-welcome A-54 terminal terminal-type A-55 traceroute A-55 undebug A-56 write A-58 Show Commands A-59 show acs-config-web-interface A-60 show acs-cores A-60 show acs-logs A-61 show application A-64 show backup history A-67 show cdp A-68 show clock A-69 show cpu A-69 show disks A-71... logins A-78 show memory A-78 show ntp A-79 show ports A-80 show process A-81 show repository A-82 show restore A-83 CLI Reference Guide for the Cisco Secure Access Control System 5.1 v
Reference Guide
Page 6
... show tech-support A-86 show terminal A-88 show timezone A-88 show timezones A-89 show udi A-90 show uptime A-91 show users A-92 show version A-92 ACS Configuration Commands A-93 access-setting accept-all A-93 debug-adclient A-94 debug-log A-95 decrypt-support-bundle A-98 export-data A-98 import-data A-100 import... exit A-121 hostname A-122 icmp echo A-122 interface A-123 ip address A-124 ip default-gateway A-125 ip domain-name A-126 CLI Reference Guide for the Cisco Secure Access Control System 5.1 vi OL-18996-01
... show tech-support A-86 show terminal A-88 show timezone A-88 show timezones A-89 show udi A-90 show uptime A-91 show users A-92 show version A-92 ACS Configuration Commands A-93 access-setting accept-all A-93 debug-adclient A-94 debug-log A-95 decrypt-support-bundle A-98 export-data A-98 import-data A-100 import... exit A-121 hostname A-122 icmp echo A-122 interface A-123 ip address A-124 ip default-gateway A-125 ip domain-name A-126 CLI Reference Guide for the Cisco Secure Access Control System 5.1 vi OL-18996-01
Reference Guide
Page 9
..., a few are straightforward; Subsequent sections build on information and recommendations discussed in combination with ACS 5.1, runs on the CSACS-1121 appliance. Note Use this document for using the CLI in the Cisco Application Deployment Engine (ADE) OS 1.2 that, in previous sections. • Use this guide...in conjunction with the documentation listed in its entirety. Preface This guide describes how you can configure and maintain Cisco Secure Access Control System (ACS) 5.1 by using this guide are complex. Who Should Read This Guide The majority of the tasks required for...
..., a few are straightforward; Subsequent sections build on information and recommendations discussed in combination with ACS 5.1, runs on the CSACS-1121 appliance. Note Use this document for using the CLI in the Cisco Application Deployment Engine (ADE) OS 1.2 that, in previous sections. • Use this guide...in conjunction with the documentation listed in its entirety. Preface This guide describes how you can configure and maintain Cisco Secure Access Control System (ACS) 5.1 by using this guide are complex. Who Should Read This Guide The majority of the tasks required for...
Reference Guide
Page 10
...problem. Note Means reader take note. Tip Means the following conventions to material not covered in square brackets. CLI Reference Guide for the Cisco Secure Access Control System 5.1 x OL-18996-01 You must enter. < > Nonprinting characters (for example, passwords) appear in angle ...z} A choice of required keywords appears in equipment damage or loss of data. Using the ACS Command Line Describes how you can access and administer ACS Interface from the CLI. ACS Command Reference Provides a complete description of all the commands. Preface How This Guide Is Organized ...
...problem. Note Means reader take note. Tip Means the following conventions to material not covered in square brackets. CLI Reference Guide for the Cisco Secure Access Control System 5.1 x OL-18996-01 You must enter. < > Nonprinting characters (for example, passwords) appear in angle ...z} A choice of required keywords appears in equipment damage or loss of data. Using the ACS Command Line Describes how you can access and administer ACS Interface from the CLI. ACS Command Reference Provides a complete description of all the commands. Preface How This Guide Is Organized ...
Reference Guide
Page 11
... application" section on page A-64 Updated the following ACS-specific documentation helpful: • Installation and Upgrade Guide for the Cisco Secure Access Control System 5.1 • User Guide for the Cisco Secure Access Control System 5.1 • Regulatory Compliance and Safety Information for Cisco 1121 Secure Access Control System 5.1 and Cisco NAC Appliance 4.7 • Migration Guide for the...
... application" section on page A-64 Updated the following ACS-specific documentation helpful: • Installation and Upgrade Guide for the Cisco Secure Access Control System 5.1 • User Guide for the Cisco Secure Access Control System 5.1 • Regulatory Compliance and Safety Information for Cisco 1121 Secure Access Control System 5.1 and Cisco NAC Appliance 4.7 • Migration Guide for the...
Reference Guide
Page 13
... and Modes in ACS, page 1-1 • Types of Command Modes in each mode. For detailed information on the ACS server: • Admin (administrator) • Operator (user) OL-18996-01 CLI Reference Guide for the Cisco Secure Access Control System 5.1 1-1 1 C H A P T E R Overview of the ACS Command Line Interface Cisco Secure Access Control System (ACS) 5.1 uses the CSACS-1121 appliance running...
... and Modes in ACS, page 1-1 • Types of Command Modes in each mode. For detailed information on the ACS server: • Admin (administrator) • Operator (user) OL-18996-01 CLI Reference Guide for the Cisco Secure Access Control System 5.1 1-1 1 C H A P T E R Overview of the ACS Command Line Interface Cisco Secure Access Control System (ACS) 5.1 uses the CSACS-1121 appliance running...
Reference Guide
Page 14
During this Admin account that you to use to log in ACS, page 1-5). Table 1-1 lists the command privileges for each type of the ACS Command Line Interface When you power up the CSACS-1121 appliance for the first time. It is this setup process, an administrator...information, the appliance automatically reboots and prompts you specified for the Cisco Secure Access Control System 5.1 1-2 OL-18996-01 Table 1-1 Command Privileges Command access-setting accept-all acs commands acs config-web-interface acs-config application commands backup backup-logs cdp run the username command...
During this Admin account that you to use to log in ACS, page 1-5). Table 1-1 lists the command privileges for each type of the ACS Command Line Interface When you power up the CSACS-1121 appliance for the first time. It is this setup process, an administrator...information, the appliance automatically reboots and prompts you specified for the Cisco Secure Access Control System 5.1 1-2 OL-18996-01 Table 1-1 Command Privileges Command access-setting accept-all acs commands acs config-web-interface acs-config application commands backup backup-logs cdp run the username command...
Reference Guide
Page 15
...kron logging commands mkdir nslookup ntp server password policy patch ping reload replication repository reset-management-interface-certificate restore commands rmdir service show acs-cores show acs-logs show acs-config-web-interface show application show backup show cdp show clock show cpu show debug-adclient show debug-log show disks show ... OL-18996-01 CLI Reference Guide for the Cisco Secure Access Control System 5.1 1-3
...kron logging commands mkdir nslookup ntp server password policy patch ping reload replication repository reset-management-interface-certificate restore commands rmdir service show acs-cores show acs-logs show acs-config-web-interface show application show backup show cdp show clock show cpu show debug-adclient show debug-log show disks show ... OL-18996-01 CLI Reference Guide for the Cisco Secure Access Control System 5.1 1-3
Reference Guide
Page 16
CLI Reference Guide for the Cisco Secure Access Control System 5.1 1-4 OL-18996-01 Typically, logging in the Operator (user) mode or the Admin (EXEC) mode. User Accounts and Modes in ACS Chapter 1 Overview of the ACS Command Line Interface Table 1-1 Command Privileges (continued) Command show inventory show ip route ... Logging in to the ACS server places you in requires a username and password.
CLI Reference Guide for the Cisco Secure Access Control System 5.1 1-4 OL-18996-01 Typically, logging in the Operator (user) mode or the Admin (EXEC) mode. User Accounts and Modes in ACS Chapter 1 Overview of the ACS Command Line Interface Table 1-1 Command Privileges (continued) Command show inventory show ip route ... Logging in to the ACS server places you in requires a username and password.
Reference Guide
Page 17
... or export configuration data, synchronize configuration information between the primary and secondary ACS, reset IP address filtering and management interface certificate, define debug logging and show and reload (for the Cisco Secure Access Control System 5.1 1-5 See EXEC Commands, page 1-5. • ACS configuration-Use the commands in this mode to factory default settings. •...
... or export configuration data, synchronize configuration information between the primary and secondary ACS, reset IP address filtering and management interface certificate, define debug logging and show and reload (for the Cisco Secure Access Control System 5.1 1-5 See EXEC Commands, page 1-5. • ACS configuration-Use the commands in this mode to factory default settings. •...
Reference Guide
Page 18
... password to a remote system. backup-logs Performs a backup of EXEC Commands (continued) Command Description acs Enables or disables an interface for ACS configuration web. for the Cisco Secure Access Control System 5.1 1-6 OL-18996-01 delete Deletes a file in the ACS server. ping Determines the network connectivity to the default setting. CLI Reference Guide for...
... password to a remote system. backup-logs Performs a backup of EXEC Commands (continued) Command Description acs Enables or disables an interface for ACS configuration web. for the Cisco Secure Access Control System 5.1 1-6 OL-18996-01 delete Deletes a file in the ACS server. ping Determines the network connectivity to the default setting. CLI Reference Guide for...
Reference Guide
Page 19
... command situations; Disables the output (display of errors or events) of the current session. Displays information about the enabled Cisco Discovery Protocol (CDP) interfaces. Displays information about the backup. Some show commands are used to the current line of the...version information. The commands in ACS Table 1-2 Summary of terminal connected to view the ACS settings and are among the most useful commands. for the Cisco Secure Access Control System 5.1 1-7 Displays information about the hardware inventory, including the ACS appliance model and serial number....
... command situations; Disables the output (display of errors or events) of the current session. Displays information about the enabled Cisco Discovery Protocol (CDP) interfaces. Displays information about the backup. Some show commands are used to the current line of the...version information. The commands in ACS Table 1-2 Summary of terminal connected to view the ACS settings and are among the most useful commands. for the Cisco Secure Access Control System 5.1 1-7 Displays information about the hardware inventory, including the ACS appliance model and serial number....
Reference Guide
Page 20
...for use in ACS. Displays information about the CSACS-1121's Unique Device Identifier (UDI). The ACS configuration mode requires a specific, authorized user role to execute each . Displays the restore history in ACS. Displays information about the terminal configuration parameter settings for the ACS management and ...by all the processes listening on roles in ACS. Displays the contents of the startup configuration in ACS 5.1, refer to the Cisco Technical Assistance Center (TAC) when you can provide to the User Guide for the Cisco Secure Access Control System 5.1 1-8 OL-18996...
...for use in ACS. Displays information about the CSACS-1121's Unique Device Identifier (UDI). The ACS configuration mode requires a specific, authorized user role to execute each . Displays the restore history in ACS. Displays information about the terminal configuration parameter settings for the ACS management and ...by all the processes listening on roles in ACS. Displays the contents of the startup configuration in ACS 5.1, refer to the Cisco Technical Assistance Center (TAC) when you can provide to the User Guide for the Cisco Secure Access Control System 5.1 1-8 OL-18996...
Reference Guide
Page 21
... nt-interface-certif certificate to access the management pages command on a secondary ACS node. this command. debug-log Defines the local debug logging level for the Cisco Secure Access Control System 5.1 1-9 Any user, irrespective of role, can issue the ACS components. replication force-sync Synchronizes configuration information Only the super admin or system...
... nt-interface-certif certificate to access the management pages command on a secondary ACS node. this command. debug-log Defines the local debug logging level for the Cisco Secure Access Control System 5.1 1-9 Any user, irrespective of role, can issue the ACS components. replication force-sync Synchronizes configuration information Only the super admin or system...
Reference Guide
Page 22
... for backup and restore operations. Table 1-5 lists the configuration commands and provides a short description of ACS Configuration Commands (continued) Command show debug-adclient show debug-log Description Required User Role Displays debug logging status for the Cisco Secure Access Control System 5.1 OL-18996-01 Sets the time zone for the Ethernet interface...
... for backup and restore operations. Table 1-5 lists the configuration commands and provides a short description of ACS Configuration Commands (continued) Command show debug-adclient show debug-log Description Required User Role Displays debug logging status for the Cisco Secure Access Control System 5.1 OL-18996-01 Sets the time zone for the Ethernet interface...
Reference Guide
Page 23
... to a remote system. Table 1-7 lists the configuration mode commands that causes configurational changes in the ACS operational logs. Sets the IP address and netmask for the Cisco Secure Access Control System 5.1 1-11 Sends SNMP traps to execute ACS configuration commands. OL-18996-01 CLI Reference Guide for the Ethernet interface. Disables or removes...
... to a remote system. Table 1-7 lists the configuration mode commands that causes configurational changes in the ACS operational logs. Sets the IP address and netmask for the Cisco Secure Access Control System 5.1 1-11 Sends SNMP traps to execute ACS configuration commands. OL-18996-01 CLI Reference Guide for the Ethernet interface. Disables or removes...
Reference Guide
Page 24
...file or JVM core log excluding the latest log. Backs up . Restores from backup the file contents of an ACS server. Gathers information for the Cisco Secure Access Control System 5.1 OL-18996-01 export-data Exports configuration data from a remote repository to a remote ...repository. import-data Imports configuration data from an ACS local store to an ACS local store. import-export-abort Aborts specific (or...
...file or JVM core log excluding the latest log. Backs up . Restores from backup the file contents of an ACS server. Gathers information for the Cisco Secure Access Control System 5.1 OL-18996-01 export-data Exports configuration data from a remote repository to a remote ...repository. import-data Imports configuration data from an ACS local store to an ACS local store. import-export-abort Aborts specific (or...
Reference Guide
Page 25
Starting the CSACS-1121, page 2-2 2. 2 C H A P T E R Using the ACS Command Line Interface This chapter provides helpful tips for Cisco Secure Access Control System 5.1. 1. Running Setup to the ACS CLI, review the tasks that you should have completed during hardware installation: Note These sections only provide an overview of the installation and configuration process for the Cisco Secure Access...
Starting the CSACS-1121, page 2-2 2. 2 C H A P T E R Using the ACS Command Line Interface This chapter provides helpful tips for Cisco Secure Access Control System 5.1. 1. Running Setup to the ACS CLI, review the tasks that you should have completed during hardware installation: Note These sections only provide an overview of the installation and configuration process for the Cisco Secure Access...