Reference Guide
Page 4
...A-13 acs delete log A-14 acs patch A-15 acs reset-config A-16 acs reset-password A-17 acs restore A-18 acs support A-20 application install A-23 application remove A-24 application reset-config A-25 application start A-26 application stop A-26 application upgrade A-27 backup A-28 backup-logs A-30 ...clock A-31 configure A-32 copy A-32 debug A-36 delete A-38 dir A-39 exit A-41 forceout A-41 CLI Reference Guide for the Cisco Secure Access Control System 5.1 iv OL-18996-01 Contents A A P P E N D I X Navigating the CLI Commands 2-10 Getting Help 2-10 Using the...
...A-13 acs delete log A-14 acs patch A-15 acs reset-config A-16 acs reset-password A-17 acs restore A-18 acs support A-20 application install A-23 application remove A-24 application reset-config A-25 application start A-26 application stop A-26 application upgrade A-27 backup A-28 backup-logs A-30 ...clock A-31 configure A-32 copy A-32 debug A-36 delete A-38 dir A-39 exit A-41 forceout A-41 CLI Reference Guide for the Cisco Secure Access Control System 5.1 iv OL-18996-01 Contents A A P P E N D I X Navigating the CLI Commands 2-10 Getting Help 2-10 Using the...
Reference Guide
Page 11
... Updated the following ACS-specific documentation helpful: • Installation and Upgrade Guide for the Cisco Secure Access Control System 5.1 • User Guide for the Cisco Secure Access Control System 5.1 • Regulatory Compliance and Safety Information for Cisco 1121 Secure Access Control System 5.1 and Cisco NAC Appliance 4.7 • Migration Guide for the Cisco Secure Access Control System 5.1 • Supported and Interoperable...
... Updated the following ACS-specific documentation helpful: • Installation and Upgrade Guide for the Cisco Secure Access Control System 5.1 • User Guide for the Cisco Secure Access Control System 5.1 • Regulatory Compliance and Safety Information for Cisco 1121 Secure Access Control System 5.1 and Cisco NAC Appliance 4.7 • Migration Guide for the Cisco Secure Access Control System 5.1 • Supported and Interoperable...
Reference Guide
Page 17
... mode to log in and perform the ACS configuration-related commands. OL-18996-01 CLI Reference Guide for example, application installation, application start | stop , copy files and installations, restore backups, and display information). Enters the ACS Configuration mode. Deletes an ACS run -...primary and secondary ACS, reset IP address filtering and management interface certificate, define debug logging and show and reload (for the Cisco Secure Access Control System 5.1 1-5 EXEC Commands EXEC commands primarily include system-level commands such as show the logging status. ...
... mode to log in and perform the ACS configuration-related commands. OL-18996-01 CLI Reference Guide for example, application installation, application start | stop , copy files and installations, restore backups, and display information). Enters the ACS Configuration mode. Deletes an ACS run -...primary and secondary ACS, reset IP address filtering and management interface certificate, define debug logging and show and reload (for the Cisco Secure Access Control System 5.1 1-5 EXEC Commands EXEC commands primarily include system-level commands such as show the logging status. ...
Reference Guide
Page 18
... ACS server. tech Provides Technical Assistance Center (TAC) commands. CLI Reference Guide for ACS configuration web. Types of Command Modes in ACS Chapter 1 Overview of...of EXEC Commands (continued) Command Description acs Enables or disables an interface for the Cisco Secure Access Control System 5.1 1-6 OL-18996-01 acs support Gathers information for ...encrypted session with a remote system. acs restore Restores an ACS configuration. application install Installs a specific application bundle. backup Performs a backup and places the backup in the...
... ACS server. tech Provides Technical Assistance Center (TAC) commands. CLI Reference Guide for ACS configuration web. Types of Command Modes in ACS Chapter 1 Overview of...of EXEC Commands (continued) Command Description acs Enables or disables an interface for the Cisco Secure Access Control System 5.1 1-6 OL-18996-01 acs support Gathers information for ...encrypted session with a remote system. acs restore Restores an ACS configuration. application install Installs a specific application bundle. backup Performs a backup and places the backup in the...
Reference Guide
Page 19
... Control Message Protocol (ICMP) echo response configuration information. OL-18996-01 CLI Reference Guide for all the interfaces configured on the system for example, backup and restore, configuration...terminal line parameters. Displays information about the backup. Displays information about the installed application; Sets the welcome message on ACS. for example, show command to... of a remote IP address. for all terminal sessions. Displays information about the enabled Cisco Discovery Protocol (CDP) interfaces. Chapter 1 Overview of the ACS Command Line Interface Types...
... Control Message Protocol (ICMP) echo response configuration information. OL-18996-01 CLI Reference Guide for all the interfaces configured on the system for example, backup and restore, configuration...terminal line parameters. Displays information about the backup. Displays information about the installed application; Sets the welcome message on ACS. for example, show command to... of a remote IP address. for all terminal sessions. Displays information about the enabled Cisco Discovery Protocol (CDP) interfaces. Chapter 1 Overview of the ACS Command Line Interface Types...
Reference Guide
Page 24
... client. Deletes an ACS run -time core file or JVM core log. Installs and removes ACS patches. debug-adclient Enables debug logging of an ACS configuration....certificate. replication Synchronizes configuration information between the primary and secondary ACS. 1-12 CLI Reference Guide for the ACS components. export-data Exports configuration data from a remote repository to allow...Performs a restoration of a specific repository. debug-log Defines the local debug logging level for the Cisco Secure Access Control System 5.1 OL-18996-01 Performs a backup (ACS and ADE OS) and...
... client. Deletes an ACS run -time core file or JVM core log. Installs and removes ACS patches. debug-adclient Enables debug logging of an ACS configuration....certificate. replication Synchronizes configuration information between the primary and secondary ACS. 1-12 CLI Reference Guide for the ACS components. export-data Exports configuration data from a remote repository to allow...Performs a restoration of a specific repository. debug-log Defines the local debug logging level for the Cisco Secure Access Control System 5.1 OL-18996-01 Performs a backup (ACS and ADE OS) and...
Reference Guide
Page 25
... 2-10 • Where to Go Next, page 2-13 Before Accessing the ACS CLI Before logging in to Configure ACS, page 2-2 OL-18996-01 CLI Reference Guide for the CSACS-1121. For detailed information, see the Installation and Upgrade Guide for understanding and configuring the Cisco Secure ACS 5.1 from the CLI.
... 2-10 • Where to Go Next, page 2-13 Before Accessing the ACS CLI Before logging in to Configure ACS, page 2-2 OL-18996-01 CLI Reference Guide for the CSACS-1121. For detailed information, see the Installation and Upgrade Guide for understanding and configuring the Cisco Secure ACS 5.1 from the CLI.
Reference Guide
Page 26
... the Installation and Upgrade Guide for the first time, you are prompted to run the utility using the setup command, ensure that appears when the CSACS-1121 boots) only configures the Gigabit Ethernet 0 port. Power up the CSACS-1121 appliance for the Cisco Secure ...• Netmask • Gateway • Domain • Nameserver • User ID • Password CLI Reference Guide for the Cisco Secure Access Control System 5.1 2-2 OL-18996-01 Figure 2-1 1 Rear View of CSACS-1121 195215 64 5 32 . 1 AC power receptacle 2 Serial connector 3 Video connector 4 Gigabit Ethernet 0 5 USB...
... the Installation and Upgrade Guide for the first time, you are prompted to run the utility using the setup command, ensure that appears when the CSACS-1121 boots) only configures the Gigabit Ethernet 0 port. Power up the CSACS-1121 appliance for the Cisco Secure ...• Netmask • Gateway • Domain • Nameserver • User ID • Password CLI Reference Guide for the Cisco Secure Access Control System 5.1 2-2 OL-18996-01 Figure 2-1 1 Rear View of CSACS-1121 195215 64 5 32 . 1 AC power receptacle 2 Serial connector 3 Video connector 4 Gigabit Ethernet 0 5 USB...
Reference Guide
Page 27
...use this Admin account to log in to the ACS CLI for the Cisco Secure Access Control System 5.1 2-3 Installing acs ... After you enter the required information, the appliance automatically reboots...privileges) with access to the ACS CLI, ensure that you have completed the hardware installation and configuration process outlined in to the CLI. After accessing the CLI as an ...com Enter Primary nameserver[]: 172.16.12.33 Add/Edit another nameserver? Appliance is configured Installing applications... See Accessing the ACS CLI, page 2-3. In this example, this point on ...
...use this Admin account to log in to the ACS CLI for the Cisco Secure Access Control System 5.1 2-3 Installing acs ... After you enter the required information, the appliance automatically reboots...privileges) with access to the ACS CLI, ensure that you have completed the hardware installation and configuration process outlined in to the CLI. After accessing the CLI as an ...com Enter Primary nameserver[]: 172.16.12.33 Add/Edit another nameserver? Appliance is configured Installing applications... See Accessing the ACS CLI, page 2-3. In this example, this point on ...
Reference Guide
Page 31
...privileges to the ACS web interface. You can equate the EXEC mode to set the debug log level for the Cisco Secure Access Control System 5.1 2-7 OL-18996-01 CLI Reference Guide for the ACS management and runtime components, show system settings, reset server certificate and IP address access list, ... mode to root access. The default username and password to access the ACS web interface are familiar with UNIX, you must have permission to install the license. Enter this sequence of commands: acs/admin(config)# exit acs/admin# exit To obtain a listing of the ACS server and ...
...privileges to the ACS web interface. You can equate the EXEC mode to set the debug log level for the Cisco Secure Access Control System 5.1 2-7 OL-18996-01 CLI Reference Guide for the ACS management and runtime components, show system settings, reset server certificate and IP address access list, ... mode to root access. The default username and password to access the ACS web interface are familiar with UNIX, you must have permission to install the license. Enter this sequence of commands: acs/admin(config)# exit acs/admin# exit To obtain a listing of the ACS server and ...
Reference Guide
Page 32
After resetting your password and installing a valid license, use the default username (acsadmin) and changed password, or the username and password for the Cisco Secure Access Control System 5.1 2-8 OL-18996-01 To obtain a list of commands in this level, you deeper in the ACS ... of commands in the EXEC mode. For example: acs/admin# config t acs/admin(config)# interface GigabitEthernet 0 acs/admin(config-GigabitEthernet)# CLI Reference Guide for a newly created admin user, to access the ACS CLI in the prompt hierarchy. For example: acs/admin(config-acs)# ? Configuration Submodes In...
After resetting your password and installing a valid license, use the default username (acsadmin) and changed password, or the username and password for the Cisco Secure Access Control System 5.1 2-8 OL-18996-01 To obtain a list of commands in this level, you deeper in the ACS ... of commands in the EXEC mode. For example: acs/admin# config t acs/admin(config)# interface GigabitEthernet 0 acs/admin(config-GigabitEthernet)# CLI Reference Guide for a newly created admin user, to access the ACS CLI in the prompt hierarchy. For example: acs/admin(config-acs)# ? Configuration Submodes In...
Reference Guide
Page 42
...Syntax Description start or stop an ACS instance, use , command syntax, usage guidelines, and sample output. Command Modes EXEC CLI Reference Guide for the Cisco Secure Access Control System 5.1 A-4 OL-18996-01 acs (instance) To start stop • ping • acs backup * ...• acs patch * • acs reset-config * • acs reset-password * • acs restore * • acs support * • application install • application remove • application reset-config • backup-logs • clock • configure • copy * • debug • delete •...
...Syntax Description start or stop an ACS instance, use , command syntax, usage guidelines, and sample output. Command Modes EXEC CLI Reference Guide for the Cisco Secure Access Control System 5.1 A-4 OL-18996-01 acs (instance) To start stop • ping • acs backup * ...• acs patch * • acs reset-config * • acs reset-password * • acs restore * • acs support * • application install • application remove • application reset-config • backup-logs • clock • configure • copy * • debug • delete •...
Reference Guide
Page 43
...Guide for the ACS components. Example 2 acs/admin# acs/admin# acs stop your ACS, the ACS instance automatically starts the next time the CSACS-1121 appliance boots up system logs. Resets the 'acsadmin' administrator password to factory defaults. Defines the local debug logging level for the Cisco... Secure Access Control System 5.1 A-5 Performs a backup of an ACS configuration. Installs and removes...
...Guide for the ACS components. Example 2 acs/admin# acs/admin# acs stop your ACS, the ACS instance automatically starts the next time the CSACS-1121 appliance boots up system logs. Resets the 'acsadmin' administrator password to factory defaults. Defines the local debug logging level for the Cisco... Secure Access Control System 5.1 A-5 Performs a backup of an ACS configuration. Installs and removes...
Reference Guide
Page 46
... located at /opt/CSCOacs/db. • Certificate store-Located at /opt/CSCOacs/conf. CLI Reference Guide for ACS troubleshooting. You can use the show acs-logs command if you use this command, a... as well as a temporary location to collect logs. Enters the ACS Configuration mode. Installs and removes ACS patches. Resets the ACS configuration to the default setting. Resets the '...acsadmin' administrator password to factory defaults. Gathers information for the Cisco Secure Access Control System 5.1 A-8 OL-18996-01 If the backup fails, you may...
... located at /opt/CSCOacs/db. • Certificate store-Located at /opt/CSCOacs/conf. CLI Reference Guide for ACS troubleshooting. You can use the show acs-logs command if you use this command, a... as well as a temporary location to collect logs. Enters the ACS Configuration mode. Installs and removes ACS patches. Resets the ACS configuration to the default setting. Resets the '...acsadmin' administrator password to factory defaults. Gathers information for the Cisco Secure Access Control System 5.1 A-8 OL-18996-01 If the backup fails, you may...
Reference Guide
Page 47
... a Network File System (NFS) location that backup and restore operations will use as a staging area to install the license. Lists a file from the ACS server. Restores to run at a specific date and time or...the ACS Configuration mode, and must supply the username and the password that you do so for the Cisco Secure Access Control System 5.1 A-9 Synchronizes the secondary ACS database to the web interface. Displays ACS ...or keywords. Defaults No default behavior or values. Cisco recommends that you will be prompted to package and unpackage backup files. OL-18996-01 CLI ...
... a Network File System (NFS) location that backup and restore operations will use as a staging area to install the license. Lists a file from the ACS server. Restores to run at a specific date and time or...the ACS Configuration mode, and must supply the username and the password that you do so for the Cisco Secure Access Control System 5.1 A-9 Synchronizes the secondary ACS database to the web interface. Displays ACS ...or keywords. Defaults No default behavior or values. Cisco recommends that you will be prompted to package and unpackage backup files. OL-18996-01 CLI ...
Reference Guide
Page 48
After resetting your password and installing a valid license, use the default username (acsadmin) and changed password...repeat the new password that you must wait up to another user. acs/admin Example 3 - A-10 CLI Reference Guide for an admin account through GUI. Username: user1 Password: acs/admin(config-acs)# Example 2 - EXEC Commands Appendix...• acs reset-password command issued. • Super administrator has selected Change password on next login for the Cisco Secure Access Control System 5.1 OL-18996-01 Up to be available to five minutes for any of the six ...
After resetting your password and installing a valid license, use the default username (acsadmin) and changed password...repeat the new password that you must wait up to another user. acs/admin Example 3 - A-10 CLI Reference Guide for an admin account through GUI. Username: user1 Password: acs/admin(config-acs)# Example 2 - EXEC Commands Appendix...• acs reset-password command issued. • Super administrator has selected Change password on next login for the Cisco Secure Access Control System 5.1 OL-18996-01 Up to be available to five minutes for any of the six ...
Reference Guide
Page 50
Old password: New password: Confirm new password: Cannot change password. Gathers information for the Cisco Secure Access Control System 5.1 OL-18996-01 Displays ACS server debug logs. A-12 CLI Reference Guide for ACS troubleshooting. Performs a backup of a specific repository. Resets the ACS configuration to the default local ...ACS components. Username: acsadmin Password: Administrator must change password: Value is CNTL/D. Starts or stops an ACS process. Installs and removes ACS patches. Performs a restoration of the system. Backs up system logs.
Old password: New password: Confirm new password: Cannot change password. Gathers information for the Cisco Secure Access Control System 5.1 OL-18996-01 Displays ACS server debug logs. A-12 CLI Reference Guide for ACS troubleshooting. Performs a backup of a specific repository. Resets the ACS configuration to the default local ...ACS components. Username: acsadmin Password: Administrator must change password: Value is CNTL/D. Starts or stops an ACS process. Installs and removes ACS patches. Performs a restoration of the system. Backs up system logs.
Reference Guide
Page 53
Displays ACS run -time core file or JVM core log, use the acs patch command in the EXEC mode. OL-18996-01 CLI Reference Guide for the Cisco Secure Access Control System 5.1 A-15 acs/admin Example 3 acs/admin# acs delete log catalina.2008-12-10.log Log file 'catalina.2008-... EXEC Commands Command Modes EXEC Usage Guidelines To view the list of the patch, which always has the .tar.gpg filename extension. Defaults Patch installations and removals are logged to list the log files acs/admin Example 2 acs/admin# acs delete log catalina.out % Error: most recent log...
Displays ACS run -time core file or JVM core log, use the acs patch command in the EXEC mode. OL-18996-01 CLI Reference Guide for the Cisco Secure Access Control System 5.1 A-15 acs/admin Example 3 acs/admin# acs delete log catalina.2008-12-10.log Log file 'catalina.2008-... EXEC Commands Command Modes EXEC Usage Guidelines To view the list of the patch, which always has the .tar.gpg filename extension. Defaults Patch installations and removals are logged to list the log files acs/admin Example 2 acs/admin# acs delete log catalina.out % Error: most recent log...
Reference Guide
Page 54
...Removing an ACS patch requires a restart of the system. Defaults No default behavior or values. A-16 CLI Reference Guide for the Cisco Secure Access Control System 5.1 OL-18996-01 ACS patch installations and removals require that include isolated files, not a full version of ACS services. Would you restart ACS. acs... EXEC mode. Examples acs/admin# acs reset-config This command will reset the ACS configuration. Examples Example 1 acs/admin# acs patch install acspatch.tar.gpg repository myrepository Installing an ACS patch requires a restart of the ACS software.
...Removing an ACS patch requires a restart of the system. Defaults No default behavior or values. A-16 CLI Reference Guide for the Cisco Secure Access Control System 5.1 OL-18996-01 ACS patch installations and removals require that include isolated files, not a full version of ACS services. Would you restart ACS. acs... EXEC mode. Examples acs/admin# acs reset-config This command will reset the ACS configuration. Examples Example 1 acs/admin# acs patch install acspatch.tar.gpg repository myrepository Installing an ACS patch requires a restart of the ACS software.
Reference Guide
Page 55
... password does not affect other ACS administrators. Command Modes EXEC OL-18996-01 CLI Reference Guide for ACS troubleshooting. Appendix A ACS Command Reference EXEC Commands Would you like to factory defaults. Gathers information for the Cisco Secure Access Control System 5.1 A-17 Defines the local debug logging level for subsystems (enabled...Resets the 'acsadmin' administrator password to the primary ACS database. Displays ACS server debug logs. Synchronizes the secondary ACS database to the default setting. Installs and removes ACS patches. Starts or stops an ACS process.
... password does not affect other ACS administrators. Command Modes EXEC OL-18996-01 CLI Reference Guide for ACS troubleshooting. Appendix A ACS Command Reference EXEC Commands Would you like to factory defaults. Gathers information for the Cisco Secure Access Control System 5.1 A-17 Defines the local debug logging level for subsystems (enabled...Resets the 'acsadmin' administrator password to the primary ACS database. Displays ACS server debug logs. Synchronizes the secondary ACS database to the default setting. Installs and removes ACS patches. Starts or stops an ACS process.