Cisco Cisco Access Registrar 4.2 manuale d’uso
- Visualizza on-line o scarica il manuale
- 94 pagine
- 0.39 mb
Vai alla pagina of
Manuali d’uso simili
-
Network Card
Cisco WAN Interface Cards Cable WIC-1B-U
5 pagine 1.56 mb -
Network Card
Cisco Fourth-Generation Versatile Interface Processor VIP4
44 pagine 0.36 mb -
Network Card
Cisco AS5400
88 pagine 0.15 mb -
Network Card
Cisco CompactFlash Adapter
34 pagine 0.35 mb -
Network Card
Cisco EIA/TIA-232 Serial Cable CAB-232FC
5 pagine 0.61 mb -
Network Card
Cisco AS5400XM
69 pagine 0.44 mb -
Network card
Cisco PLTE200
33 pagine -
Network Card
Cisco Catalyst 8510
8 pagine 1.73 mb
Un buon manuale d’uso
Le regole impongono al rivenditore l'obbligo di fornire all'acquirente, insieme alle merci, il manuale d’uso Cisco Cisco Access Registrar 4.2. La mancanza del manuale d’uso o le informazioni errate fornite al consumatore sono la base di una denuncia in caso di inosservanza del dispositivo con il contratto. Secondo la legge, l’inclusione del manuale d’uso in una forma diversa da quella cartacea è permessa, che viene spesso utilizzato recentemente, includendo una forma grafica o elettronica Cisco Cisco Access Registrar 4.2 o video didattici per gli utenti. La condizione è il suo carattere leggibile e comprensibile.
Che cosa è il manuale d’uso?
La parola deriva dal latino "instructio", cioè organizzare. Così, il manuale d’uso Cisco Cisco Access Registrar 4.2 descrive le fasi del procedimento. Lo scopo del manuale d’uso è istruire, facilitare lo avviamento, l'uso di attrezzature o l’esecuzione di determinate azioni. Il manuale è una raccolta di informazioni sull'oggetto/servizio, un suggerimento.
Purtroppo, pochi utenti prendono il tempo di leggere il manuale d’uso, e un buono manuale non solo permette di conoscere una serie di funzionalità aggiuntive del dispositivo acquistato, ma anche evitare la maggioranza dei guasti.
Quindi cosa dovrebbe contenere il manuale perfetto?
Innanzitutto, il manuale d’uso Cisco Cisco Access Registrar 4.2 dovrebbe contenere:
- informazioni sui dati tecnici del dispositivo Cisco Cisco Access Registrar 4.2
- nome del fabbricante e anno di fabbricazione Cisco Cisco Access Registrar 4.2
- istruzioni per l'uso, la regolazione e la manutenzione delle attrezzature Cisco Cisco Access Registrar 4.2
- segnaletica di sicurezza e certificati che confermano la conformità con le norme pertinenti
Perché non leggiamo i manuali d’uso?
Generalmente questo è dovuto alla mancanza di tempo e certezza per quanto riguarda la funzionalità specifica delle attrezzature acquistate. Purtroppo, la connessione e l’avvio Cisco Cisco Access Registrar 4.2 non sono sufficienti. Questo manuale contiene una serie di linee guida per funzionalità specifiche, la sicurezza, metodi di manutenzione (anche i mezzi che dovrebbero essere usati), eventuali difetti Cisco Cisco Access Registrar 4.2 e modi per risolvere i problemi più comuni durante l'uso. Infine, il manuale contiene le coordinate del servizio Cisco in assenza dell'efficacia delle soluzioni proposte. Attualmente, i manuali d’uso sotto forma di animazioni interessanti e video didattici che sono migliori che la brochure suscitano un interesse considerevole. Questo tipo di manuale permette all'utente di visualizzare tutto il video didattico senza saltare le specifiche e complicate descrizioni tecniche Cisco Cisco Access Registrar 4.2, come nel caso della versione cartacea.
Perché leggere il manuale d’uso?
Prima di tutto, contiene la risposta sulla struttura, le possibilità del dispositivo Cisco Cisco Access Registrar 4.2, l'uso di vari accessori ed una serie di informazioni per sfruttare totalmente tutte le caratteristiche e servizi.
Dopo l'acquisto di successo di attrezzature/dispositivo, prendere un momento per familiarizzare con tutte le parti del manuale d'uso Cisco Cisco Access Registrar 4.2. Attualmente, sono preparati con cura e tradotti per essere comprensibili non solo per gli utenti, ma per svolgere la loro funzione di base di informazioni e di aiuto.
Sommario del manuale d’uso
-
Pagina 1
Americas Headquarters Cisco Systems, In c. 170 West Tasman Drive San Jose, CA 951 34-1706 USA http://www.ci sco.com Tel: 408 526-4000 800 553-NETS (638 7) Fax: 408 527-0883 Installing and Conf iguring Cisco A ccess Registrar , 4.2 November 20 08 Text Part Number: OL -17221-02[...]
-
Pagina 2
THE SPECIFICATION S AND INFORMAT ION REGARDING THE PRODUCTS IN THIS MANU AL ARE SUBJECT T O CHANGE W ITHOUT NOTICE. A LL STATEMENTS , INFORMATION, AND RECOMMENDATI ONS IN THI S MANUAL ARE BE LIEVED TO BE A CCURATE BUT ARE PRESENTED WI THOUT WARRANTY OF ANY KIND, EX PRESS OR IMPLIED. USERS MUST TAKE FULL RESPO NSIBILITY FOR THEIR APPLICAT ION OF ANY[...]
-
Pagina 3
iii Installing and Configuring Cisc o Access Registrar, 4.2 OL-17221-02 CONTENTS About This Guide ix Obtaining Documentation ix Cisco.com ix Documentation Feedback x Cisco Product Security Overview x Reporting Security Problems in Cisco Prod ucts x Obtaining Technical Assistance xi Cisco Technica l Support & Documentati on Website xi Submitting[...]
-
Pagina 4
Contents iv Installing and Configuring Cisc o Access Registrar, 4.2 OL-17221-02 CHAPTER 2 Installing Cisco Access Registrar 4.2 2-1 Installing the Cisco Access Registrar 4.2 License File 2-1 Installing Cisco Access Re gistrar 4.2 Software on Solaris 2-1 Deciding Where to Install 2-2 Installing Cisco Access Re gistrar Software from CD-ROM 2-2 Instal[...]
-
Pagina 5
Contents v Installing and Configuring Cisc o Access Registrar, 4.2 OL-17221-02 Installing Cisco Access Registrar Software from CD-ROM 3-14 Common Linux In stallation Steps 3-15 Backup Copy of Original Configuration 3-17 Removing Old VSA Names 3-18 VSA Update Script 3-18 Configuring SNMP 3-19 Configuring SNMP 3-19 Restarting Replication 3-19 CHAPTER[...]
-
Pagina 6
Contents vi Installing and Configuring Cisc o Access Registrar, 4.2 OL-17221-02 Enabling SNMP in the Cisco Access Regist rar Server 4-14 Stopping the Master Agent 4-14 Modifying the snmpd.con f File 4-14 Access Control 4-15 Trap Recipient 4-15 System Contact Information 4-16 Restarting the Master Agent 4-16 Configuring Dynamic DNS 4-16 Testing Dyna[...]
-
Pagina 7
Contents vii Installing and Configuring Cisc o Access Registrar, 4.2 OL-17221-02 Configuring Services 5-14 Creating the Services 5-14 Configuring the Script 5-15 Choosing the Scripting Poin t 5-15 Configuring Session Management 5-16 Configuring a Resource Manager 5-16 Creating a Resource Manager 5-16 Configuring a Session Manager 5-17 Creating a Se[...]
-
Pagina 8
Contents viii Installing and Configuring Cisc o Access Registrar, 4.2 OL-17221-02[...]
-
Pagina 9
ix Installing and Configuring Cisc o Access Registrar, 4.2 OL-17221-02 About This Guide The Installing and Conf iguring Cisco A ccess Registra r , 4.2, provides informat ion about installing, confi guring, and customizing CAR 4.2. This gu ide is intended to be used by experienced netw ork administrators with w orking kno wledge of the Solaris UNIX [...]
-
Pagina 10
x Installing and Configuring Cisc o Access Registrar, 4.2 OL-17221-02 About This Guide Y ou can access internationa l Cisco websites at this URL: http://www .cisco.com/public/cou ntries_languages.shtml Documentation Feedback Y ou can rate and provide feedback about Cisco tech nical documents by completing the onlin e feedback form that appears with[...]
-
Pagina 11
xi Installing and Configuring Cisc o Access Registrar, 4.2 OL-17221-02 About This Guide In an emer gency , you can also reach PSIR T by telephone: • 1 877 228-7302 • 1 408 525-6532 Ti p W e encourage you to use Pretty Good Pri v ac y (PGP) or a compatible product (for e xample, GnuPG) to encrypt any sensitiv e information that you send to Ci s [...]
-
Pagina 12
xii Installing and Configuring Cisc o Access Registrar, 4.2 OL-17221-02 About This Guide output. Search results sho w an illustration of yo ur product with the serial number labe l location highlighted. Locate the serial numb er label on your product and record the information before placing a service call. Submitting a Service Request Using the on[...]
-
Pagina 13
xiii Installing and Configuring Cisc o Access Registrar, 4.2 OL-17221-02 About This Guide Obtaining Additional Publications and Information Information about Cisco products, techno logies, and networ k solutions is av ailable from v arious onlin e and printed sources. • The Cisco Pr oduct Quic k Refer ence Guide is a handy , compact referen ce to[...]
-
Pagina 14
xiv Installing and Configuring Cisc o Access Registrar, 4.2 OL-17221-02 About This Guide • W orld-class networking train ing is av ailable from Cisco. Y ou can view curr ent of ferings at this URL: http://www .cisco.com/en/ US/learning/inde x.html[...]
-
Pagina 15
CH A P T E R 1-1 Installing and Configuring Cisco A ccess Registrar, 4.2 OL-17221-02 1 Overview This chapter pro vides an overvi ew of the software instal lation process. Y ou can install the CAR 4.2 software on a machine f or the first ti me, or you can upgrade the existing Cisco AR software on a workstation to CAR 4.2. Y ou might receive the Cisc[...]
-
Pagina 16
1-2 Installing and Configuring Cisc o Access Registrar, 4.2 OL-17221-02 Chapter 1 Overvi ew Installation Dialog Overview Installation Location The next questi on in the installation d ialog asks, “W here do you want t o install?” The default location to install the softw are is /opt/C SCOar . Y ou can choose to specify another location by enter[...]
-
Pagina 17
1-3 Installing and Configuring Cisco A ccess Registrar, 4.2 OL-17221-02 Chapter 1 Overview Downloading Cisco Access Registrar Softw are Example Configuration The installation dialog asks if you want to instal l the example conf iguration. Y ou can use the example configuration to learn a bout Cisco AR an d to refer to the examples that appear later[...]
-
Pagina 18
1-4 Installing and Configuring Cisc o Access Registrar, 4.2 OL-17221-02 Chapter 1 Overvi ew Cisco Access Registrar 4.2 Licensing • CSCOar -4.2.1-sol10-k9.tar .gz for Solaris 10 • CSCOar -4.2.1-lnx26-install-K9.sh for RedHat Enterprise Linux (RHEL) 4.0 Complete the follo wing steps to do wnload the software. Step 1 Create a temporary di rectory [...]
-
Pagina 19
1-5 Installing and Configuring Cisco A ccess Registrar, 4.2 OL-17221-02 Chapter 1 Overview Cisco Access Registrar 4.2 Licensing CAR can be deployed in a t wo-tier architecture—front- end and back-end server . The front-end server performs AAA functions and i t needs the base license and the TPS license. The back-end server performs session mana g[...]
-
Pagina 20
1-6 Installing and Configuring Cisc o Access Registrar, 4.2 OL-17221-02 Chapter 1 Overvi ew Cisco Access Registrar 4.2 Licensing If you receiv e a Software License Claim Certif icate, you can get y our Cisco AR lice nse file at one of the two follo wing URLs: • www .cisco.com/go/license Use this site if you are a register ed user of Cisco Connect[...]
-
Pagina 21
1-7 Installing and Configuring Cisco A ccess Registrar, 4.2 OL-17221-02 Chapter 1 Overview Cisco Access Registrar 4.2 Licensing Displaying License Information Cisco AR provid es two ways of getting license information using aregcmd : • aregcmd command-line optio n • Launching ar egcmd aregcmd Command-Line Option Cisco AR provides a ne w -l comm[...]
-
Pagina 22
1-8 Installing and Configuring Cisc o Access Registrar, 4.2 OL-17221-02 Chapter 1 Overvi ew Cisco Access Registrar 4.2 Licensing[...]
-
Pagina 23
CH A P T E R 2-1 Installing and Configuring Cisco A ccess Registrar, 4.2 OL-17221-02 2 Installing Cisco Access Registrar 4.2 This chapter pro vides information about installing CAR 4 .2 software. The softw are is av ailable in CD-R OM form and can also be do wn loaded from the Cisco.com website. The installation instructions dif fer slightly depend[...]
-
Pagina 24
2-2 Installing and Configuring Cisc o Access Registrar, 4.2 OL-17221-02 Chapter 2 Insta lling Cisco Access Registrar 4.2 Installing Cisco Access Registrar 4.2 Software on Solaris Installing Cisco Access Regist rar 4.2 Software on Solaris This section describes the software instal lation proc ess when inst alling Cisco AR software on a Solaris works[...]
-
Pagina 25
2-3 Installing and Configuring Cisco A ccess Registrar, 4.2 OL-17221-02 Chapter 2 Installin g Cisco Access Registrar 4.2 Installing Cisco Access R egistrar 4.2 Software on Solaris This section includes the following subsections: • Deciding Wh ere to Inst all • Installing Cisco Access Re gistrar Software from CD-R OM • Installing Do wnloaded S[...]
-
Pagina 26
2-4 Installing and Configuring Cisc o Access Registrar, 4.2 OL-17221-02 Chapter 2 Insta lling Cisco Access Registrar 4.2 Installing Cisco Access Registrar 4.2 Software on Solaris Step 3 Use the follo wing command line to u ncompress the tarfi le and extract t he installation package f iles. zcat CSCOar -4.2.1-sol9-K9.tar .gz | tar xvf - Note These [...]
-
Pagina 27
2-5 Installing and Configuring Cisco A ccess Registrar, 4.2 OL-17221-02 Chapter 2 Installin g Cisco Access Registrar 4.2 Installing Cisco Access R egistrar 4.2 Software on Solaris http://java.sun.com/ Where is the J2RE installed? [?,q] /nfs/insbu-cnstools/java The J2RE is req uired to use the Cisco AR GUI. If you already ha ve a Ja va 2 pl atform i[...]
-
Pagina 28
2-6 Installing and Configuring Cisc o Access Registrar, 4.2 OL-17221-02 Chapter 2 Insta lling Cisco Access Registrar 4.2 Installing Cisco Access Registrar 4.2 Software on Solaris Do you want to install these as setuid/setgid files [y,n,?,q] Step 13 Enter Y to install t he setuid/setgid file s . This package contains scripts which will be executed w[...]
-
Pagina 29
2-7 Installing and Configuring Cisco A ccess Registrar, 4.2 OL-17221-02 Chapter 2 Installin g Cisco Access Registrar 4.2 Installing Cisco Access Registrar 4.2 Software on Linux Configuring SNMP If you choose not to use the SNMP features of CAR, the inst allation process is complet ed. T o use SNMP features, complete the conf iguration procedure des[...]
-
Pagina 30
2-8 Installing and Configuring Cisc o Access Registrar, 4.2 OL-17221-02 Chapter 2 Insta lling Cisco Access Registrar 4.2 Installing Cisco Access Registrar 4.2 Software on Linux Deciding Where to Install Before you be gin the softwa re installation, you sh ould decide where you wa nt to install the ne w software. The def ault installation directory [...]
-
Pagina 31
2-9 Installing and Configuring Cisco A ccess Registrar, 4.2 OL-17221-02 Chapter 2 Installin g Cisco Access Registrar 4.2 Installing Cisco Access Registrar 4.2 Software on Linux Step 3 Enter the name of the script f ile to begin the installation: ./CSCOar -4.2.1-lnx26-install-k9.sh Name : CSCOar Relocations: /opt/CSCOar Version : 4.2.1 Vendor: Cisco[...]
-
Pagina 32
2-10 Installing and Configuring Cisc o Access Registrar, 4.2 OL-17221-02 Chapter 2 Insta lling Cisco Access Registrar 4.2 Installing Cisco Access Registrar 4.2 Software on Linux Step 7 When prompted whether to install the e xample configu ration no w , enter Y or N to cont inue. Note Y ou can delete the example conf iguration at any time by running[...]
-
Pagina 33
CH A P T E R 3-1 Installing and Configuring Cisco A ccess Registrar, 4.2 OL-17221-02 3 Upgrading Cisco Access Registrar Software CAR 4.2 supports softw are upgrades from your pre vious ly installed Cisco AR software wh ile preserving your exist ing config uration database. Cisco AR supports an up grade path for both the Solaris or Linux versions of[...]
-
Pagina 34
3-2 Installing and Configuring Cisc o Access Registrar, 4.2 OL-17221-02 Chapter 3 Upgrad ing Cisco Access Registrar Softwa re Linux Softwar e Upgrade Ov erview Step 2 If you hav e modif ied the snmpd.conf fi le in the /cisco-ar/ucd-snmp/share /snmp directory , you must back up this fi le before doing the upgrade process. The pkgrm remo ves the snmp[...]
-
Pagina 35
3-3 Installing and Configuring Cisco A ccess Registrar, 4.2 OL-17221-02 Chapter 3 Upgrading Cisco Access Registra r Software Software Upgrade Task s Step 2 If you hav e modif ied the snmpd.conf fi le in the /cisco-ar/ucd-snmp/share /snmp directory , you must back up this fi le before doing the upgrade process. The pkgrm remov es the snmpd.conf file[...]
-
Pagina 36
3-4 Installing and Configuring Cisc o Access Registrar, 4.2 OL-17221-02 Chapter 3 Upgrad ing Cisco Access Registrar Softwa re Software Upgrad e Tasks [ //localhost/Radius/Replication ] RepType = None RepTransactionSyncInterval = 60000 RepTransactionArchiveLimit = 100 RepIPAddress = 0.0.0.0 RepPort = 1645 RepSecret = NotSet RepIsMaster = FALSE RepMa[...]
-
Pagina 37
3-5 Installing and Configuring Cisco A ccess Registrar, 4.2 OL-17221-02 Chapter 3 Upgrading Cisco Access Registra r Software Software Upgrade Task s 2973: terminated 2971: terminated, wait status 0x000f 2965: terminated Access Registrar Server Agent shutdown complete. # removing /etc/rc.d files # done with preremove. ## Removing pathnames in class [...]
-
Pagina 38
3-6 Installing and Configuring Cisc o Access Registrar, 4.2 OL-17221-02 Chapter 3 Upgrad ing Cisco Access Registrar Softwa re Software Upgrad e Tasks Access Registrar Server Agent shutdown complete. # removing /etc/rc.d files # done with preremove. ## Removing pathnames in class <snmp> /opt/CSCOar/ucd-snmp/share/snmp/snmpd.conf /opt/CSCOar/uc[...]
-
Pagina 39
3-7 Installing and Configuring Cisco A ccess Registrar, 4.2 OL-17221-02 Chapter 3 Upgrading Cisco Access Registra r Software Installing the Cisc o Acc ess Registrar License File 4 processes left.3 processes left.......2 processes left.......k0 processes left.0 processes left Access Registrar Server Agent shutdown complete. Installing the Cisco Acce[...]
-
Pagina 40
3-8 Installing and Configuring Cisc o Access Registrar, 4.2 OL-17221-02 Chapter 3 Upgrad ing Cisco Access Registrar Softwa re Upgrading Cisco Ac cess Registrar Solaris Softwar e Installing Cisco Access Registrar Software from CD-ROM The follo wing steps descr ibe ho w to begin th e software inst allation process when installin g software from the C[...]
-
Pagina 41
3-9 Installing and Configuring Cisco A ccess Registrar, 4.2 OL-17221-02 Chapter 3 Upgrading Cisco Access Registra r Software Upgrading Cisco Acc ess Registrar Solaris Software (sparc) 4.2.1 Copyright (C) 1998-2008 by Cisco Systems, Inc. This program contains proprietary and confidential information. All rights reserved except as may be permitted by[...]
-
Pagina 42
3-10 Installing and Configuring Cisc o Access Registrar, 4.2 OL-17221-02 Chapter 3 Upgrad ing Cisco Access Registrar Softwa re Upgrading Cisco Ac cess Registrar Solaris Softwar e Do you want to preserve the local database in /opt/CSCOar [y]: [y,n,?,q] y Step 6 Enter Y to preserv e the local database. The upgrade procedure needs administrator access[...]
-
Pagina 43
3-11 Installing and Configuring Cisco A ccess Registrar, 4.2 OL-17221-02 Chapter 3 Upgrading Cisco Access Registra r Software Upgrading Cisco Acc ess Registrar Solaris Software inflating: /opt/CSCOar/jakarta-tomcat-4.0.6/webapps/tomcat-docs/RUNNING.txt inflating: /opt/CSCOar/jakarta-tomcat-4.0.6/webapps/tomcat-docs/security-manager-howto.html infla[...]
-
Pagina 44
3-12 Installing and Configuring Cisc o Access Registrar, 4.2 OL-17221-02 Chapter 3 Upgrad ing Cisco Access Registrar Softwa re Upgrading Cisco Ac cess Registrar Solaris Softwar e ############################################################### # # A backup copy of your original configuration has been # saved to the file: # # /opt/CSCOar/temp/10062.o[...]
-
Pagina 45
3-13 Installing and Configuring Cisco A ccess Registrar, 4.2 OL-17221-02 Chapter 3 Upgrading Cisco Access Registra r Software Upgrading Cisco Acc ess Registrar Linux Software # to perform the update. The script is located in: # # /opt/CSCOar/temp/10062.manual-changes # # Review the script to make sure it does not conflict with # any of your VSA cha[...]
-
Pagina 46
3-14 Installing and Configuring Cisc o Access Registrar, 4.2 OL-17221-02 Chapter 3 Upgrad ing Cisco Access Registrar Softwa re Upgrading Cisco Access Registrar Linux So ftware cd /opt/CSCOar/bin arserver stop Waiting for these processes to die (this may take some time): AR RADIUS server running (pid: 1403) AR Server Agent running (pid: 29310) AR MC[...]
-
Pagina 47
3-15 Installing and Configuring Cisco A ccess Registrar, 4.2 OL-17221-02 Chapter 3 Upgrading Cisco Access Registra r Software Upgrading Cisco Acc ess Registrar Linux Software Step 5 Change the permissions of the CSCOar-4.2.1- lnx26-install-k9.sh f ile to make it ex ecutable. chmod 777 CSCOar -4.2.1-lnx26-install-k9.sh T o continue the installation,[...]
-
Pagina 48
3-16 Installing and Configuring Cisc o Access Registrar, 4.2 OL-17221-02 Chapter 3 Upgrad ing Cisco Access Registrar Softwa re Upgrading Cisco Access Registrar Linux So ftware Step 5 Enter the di rectory where you have stored the CAR 4.2 license file. Access Registrar provides a Web GUI. It requires J2RE version 1.4.* to be installed on the server.[...]
-
Pagina 49
3-17 Installing and Configuring Cisco A ccess Registrar, 4.2 OL-17221-02 Chapter 3 Upgrading Cisco Access Registra r Software Upgrading Cisco Acc ess Registrar Linux Software inflating: /opt/CSCOar/jakarta-tomcat-4.0.6/webapps/tomcat-docs/security-manager-howto.html inflating: /opt/CSCOar/jakarta-tomcat-4.0.6/webapps/tomcat-docs/ssl-howto.html crea[...]
-
Pagina 50
3-18 Installing and Configuring Cisc o Access Registrar, 4.2 OL-17221-02 Chapter 3 Upgrad ing Cisco Access Registrar Softwa re Upgrading Cisco Access Registrar Linux So ftware Removing Old VSA Names The upgrade p rocess pro vides an analysis of the confi guration database, additio n of ne w database elements, and a search for obsolete VSA names. Wh[...]
-
Pagina 51
3-19 Installing and Configuring Cisco A ccess Registrar, 4.2 OL-17221-02 Chapter 3 Upgrading Cisco Access Registra r Software Configuring SNMP Step 11 Record the location of the u pgrade messages for future reference. ############################################################## # # These upgrade messages are saved in: # # /opt/CSCOar/temp/10062.u[...]
-
Pagina 52
3-20 Installing and Configuring Cisc o Access Registrar, 4.2 OL-17221-02 Chapter 3 Upgrad ing Cisco Access Registrar Softwa re Restarting Replication[...]
-
Pagina 53
CH A P T E R 4-1 Installing and Configuring Cisco A ccess Registrar, 4.2 OL-17221-02 4 Configuring Cisco Access Registrar 4.2 This chapter describe s how to configure a site. Ci sco Access Registrar 4.1 i s very fle xible. Y ou can choose to conf igure it in man y di fferent w ays. In addition, you can wr ite s cripts that can be in voked at dif fe[...]
-
Pagina 54
4-2 Installing and Configuring Cisc o Access Registrar, 4.2 OL-17221-02 Chapter 4 Configuring Cisco Access Registrar 4.2 Configuring a Basic Site Y ou can use CAR’ s command completion feature to see what commands are possible from your current directory location in the CAR server hierarchy b y pressing the T ab key . Y ou can also press the T ab[...]
-
Pagina 55
4-3 Installing and Configuring Cisco A ccess Registrar, 4.2 OL-17221-02 Chapter 4 Configuring Cisco Ac cess Registrar 4.2 Configuring a Basic Site Step 1 Run the aregcmd command: aregcmd Step 2 When asked for “Cluster , ” press Enter . Step 3 Enter your administrat or name and password. When you install CAR software, th e installation process c[...]
-
Pagina 56
4-4 Installing and Configuring Cisc o Access Registrar, 4.2 OL-17221-02 Chapter 4 Configuring Cisco Access Registrar 4.2 Configuring a Basic Site Creating Additional Administrators Use the add command to add additional admini strators. Step 1 Use the cd command to change to the Administ rators lev el: cd /Administrators Step 2 Use the add command a[...]
-
Pagina 57
4-5 Installing and Configuring Cisco A ccess Registrar, 4.2 OL-17221-02 Chapter 4 Configuring Cisco Ac cess Registrar 4.2 Configuring a Basic Site Checking the System-Level Defaults Because this site does not use incoming or outgoing scripts, you do not need to change the scripts’ properties (IncomingScr ipt and OutgoingScript). Since the default[...]
-
Pagina 58
4-6 Installing and Configuring Cisc o Access Registrar, 4.2 OL-17221-02 Chapter 4 Configuring Cisco Access Registrar 4.2 Configuring a Basic Site T o conf igure Cisco AR to use port s other than the default ports, complete the follo wing steps: Step 1 Change directory to /Radius/Advanced/P orts . cd /Radius/Adva nced/Ports [ //localhost/Radius/Adva[...]
-
Pagina 59
4-7 Installing and Configuring Cisco A ccess Registrar, 4.2 OL-17221-02 Chapter 4 Configuring Cisco Ac cess Registrar 4.2 Configuring a Basic Site Cisco AR, by default, specif ies a Service called local-users t hat has the type local and uses the Default UserList ( Figure 4-1 ). Figur e 4-1 Choosing Appr opriat e Services Displaying the Default Use[...]
-
Pagina 60
4-8 Installing and Configuring Cisc o Access Registrar, 4.2 OL-17221-02 Chapter 4 Configuring Cisco Access Registrar 4.2 Configuring a Basic Site Description = Password = <encrypted> Enabled = TRUE Group~ = Telnet-users BaseProfile~ = AuthenticationScript~ = AuthorizationScript~ = UserDefined1 = AllowNullPassword = FALSE Attributes/ CheckItem[...]
-
Pagina 61
4-9 Installing and Configuring Cisco A ccess Registrar, 4.2 OL-17221-02 Chapter 4 Configuring Cisco Ac cess Registrar 4.2 Configuring a Basic Site • PPP-users— uses the BaseProf ile default-P PP-users to specify the attrib utes of PPP service to provide the user . The BaseProfile defaul t-PPP-use rs contains the attributes that are added to the[...]
-
Pagina 62
4-10 Installing and Configuring Cisc o Access Registrar, 4.2 OL-17221-02 Chapter 4 Configuring Cisco Access Registrar 4.2 Configuring a Basic Site set IncomingScript ParseServiceHints EnableDynamicA uthorization TR UE EnableNotif ications TR UE The script, ParseServiceHints , checks the username for %PPP or %SLIP . It uses these tags to modify the [...]
-
Pagina 63
4-11 Installing and Configuring Cisco A ccess Registrar, 4.2 OL-17221-02 Chapter 4 Configuring Cisco Ac cess Registrar 4.2 Configuring a Basic Site When you need to set an attrib ute to a value that includes a space, you must double-quote the v alue, as in the follo wing: set Framed-Routing "192.168.1.0/24 192.168.1. 1" Adding Multiple Ci[...]
-
Pagina 64
4-12 Installing and Configuring Cisc o Access Registrar, 4.2 OL-17221-02 Chapter 4 Configuring Cisco Access Registrar 4.2 Configuring a Basic Site Step 2 Use the rel oa d command to reload your server . rel o ad Testing Your Configuration No w that you ha ve conf igured some users and a N AS, you are ready to test your co nfiguratio n. There are tw[...]
-
Pagina 65
4-13 Installing and Configuring Cisco A ccess Registrar, 4.2 OL-17221-02 Chapter 4 Configuring Cisco Ac cess Registrar 4.2 Configuring Accounting p001 send p002 Step 6 Enter the response identif ier to display the contents of the Access-Accept pac ket: p002 Packet: code = Access-Accept, id = 1, length = 38, attributes = Login-IP-Host = 196.168.1.9[...]
-
Pagina 66
4-14 Installing and Configuring Cisc o Access Registrar, 4.2 OL-17221-02 Chapter 4 Configuring Cisco Access Registrar 4.2 Configuring SNMP After you sa ve and reload the CAR server conf iguration, the CAR server writes accounting messages to the accounting.log f ile in th e /opt/CSCOar/log s directory . The CAR server stores information i n the acc[...]
-
Pagina 67
4-15 Installing and Configuring Cisco A ccess Registrar, 4.2 OL-17221-02 Chapter 4 Configuring Cisco Ac cess Registrar 4.2 Configuring SNMP /opt/CSCOar/bin/arser ver stop Modifying the snmpd.conf File The path to the snmpd.conf file is /cisco-ar/ucd -snmp/share/snmp . Use vi (or another te xt editor) to edit the snmpd.conf fil e. There are three pa[...]
-
Pagina 68
4-16 Installing and Configuring Cisc o Access Registrar, 4.2 OL-17221-02 Chapter 4 Configuring Cisco Access Registrar 4.2 Configuring Dynamic DNS Trap Recipient The follo wing e xample sho ws the default co nfigu ration that sets up trap recipients for SNMP v ersions v1 and v2c. Note Most sites use a single NMS, not two as shown belo w . # --------[...]
-
Pagina 69
4-17 Installing and Configuring Cisco A ccess Registrar, 4.2 OL-17221-02 Chapter 4 Configuring Cisco Ac cess Registrar 4.2 Configuring Dynamic DNS Y ou enable dynamic DNS updates b y creating and conf iguring ne w Resource Managers and ne w RemoteServer s, both of type dynami c-dns. The d ynamic-dns Reso urce Managers specify which zones to use for[...]
-
Pagina 70
4-18 Installing and Configuring Cisc o Access Registrar, 4.2 OL-17221-02 Chapter 4 Configuring Cisco Access Registrar 4.2 Configuring Dynamic DNS set IP Address 10.10.10.1 (ip address of primary dns server f or zone) set ForwardZoneTSIGK ey f oo.com set Rev erseZoneTSIGKey f oo.com If the re verse zone wil l be updated and if the primary serv er fo[...]
-
Pagina 71
4-19 Installing and Configuring Cisco A ccess Registrar, 4.2 OL-17221-02 Chapter 4 Configuring Cisco Ac cess Registrar 4.2 Configuring Dynamic DNS Step 1 Launch aregcmd and log in to the Cisco AR server . cd /opt/CSCOar/bin aregcmd Step 2 Us e the trace command to set the trace to lev el 4. trace 4 Step 3 Launch radclient . cd /opt/CSCOar/bin radcl[...]
-
Pagina 72
4-20 Installing and Configuring Cisc o Access Registrar, 4.2 OL-17221-02 Chapter 4 Configuring Cisco Access Registrar 4.2 Configuring Dynamic DNS[...]
-
Pagina 73
CH A P T E R 5-1 Installing and Configuring Cisco A ccess Registrar, 4.2 OL-17221-02 5 Customizing Your Configuration After you ha ve conf igured and tested a basic site, yo u can begin to make changes to better address you r o wn sites’ s needs. This chapter prov ides information th at describes ho w to: • Use groups to s elect the appro priat[...]
-
Pagina 74
5-2 Installing and Configuring Cisc o Access Registrar, 4.2 OL-17221-02 Chapter 5 Customizing Yo ur Configuration Configuring Grou ps Creating and Setting Group Membership Step 1 Run the aregcmd command: aregcmd Step 2 Use the cd command to change to the UserGr oups object. cd /Radius/UserGr oups Step 3 Use the add command to create a user group, s[...]
-
Pagina 75
5-3 Installing and Configuring Cisco A ccess Registrar, 4.2 OL-17221-02 Chapter 5 Custom izing Your Configuration Configuring Group s Configuring a Default Group If you allo w users to request dif ferent Services ba sed on ho w they specify thei r username, you c an use a script to determine th e type of Service to pro vide. F or example, the u ser[...]
-
Pagina 76
5-4 Installing and Configuring Cisc o Access Registrar, 4.2 OL-17221-02 Chapter 5 Customizing Yo ur Configuration Configuring Multiple UserLists Step 6 Use the set command to set the user’ s group membership to the name of that group . The follo wing exa mp le set s beth ’ s group membership to th e Default group. set Group Def ault Step 7 Use [...]
-
Pagina 77
5-5 Installing and Configuring Cisco A ccess Registrar, 4.2 OL-17221-02 Chapter 5 Custom izing Your Configuration Configuring Mu ltiple UserLists Configuring Separate UserLists Di vide your site along organizat ional or compan y lines, and create a UserList fo r each unit. Creating Separate UserLists Step 1 Run the aregcmd command. aregcmd Step 2 U[...]
-
Pagina 78
5-6 Installing and Configuring Cisc o Access Registrar, 4.2 OL-17221-02 Chapter 5 Customizing Yo ur Configuration Configuring Multiple UserLists add beth telemarketing 123 TR UE PPP-users Step 3 Repeat for the other users yo u want to add. Y ou can use the script, add-100-users , which is located in the /opt/CSCOar/ examples/cli director y to autom[...]
-
Pagina 79
5-7 Installing and Configuring Cisco A ccess Registrar, 4.2 OL-17221-02 Chapter 5 Custom izing Your Configuration Configuring Mu ltiple UserLists In this situati on, when beth@North.QuickExample.com makes an Access-Request, the script will strip of f the word North and use it to set the v alue of the en vironment v ariable A uthentication-Service a[...]
-
Pagina 80
5-8 Installing and Configuring Cisc o Access Registrar, 4.2 OL-17221-02 Chapter 5 Customizing Yo ur Configuration Configuring a Remote Server for AA Step 3 Use the cd command to change to Scripts . cd /Radius/Scripts Step 4 Use the add command t o add the new script, specifying the name, descriptio n, language , filename and an optional entry point[...]
-
Pagina 81
5-9 Installing and Configuring Cisco A ccess Registrar, 4.2 OL-17221-02 Chapter 5 Custom izing Your Configuration Configuring a Re mote Server for AA Note Although these services dif fer in the way they handle authentication and au thorization, the procedure for conf iguring a remote serv er is the same independent of its type. F or more informatio[...]
-
Pagina 82
5-10 Installing and Configuring Cisc o Access Registrar, 4.2 OL-17221-02 Chapter 5 Customizing Yo ur Configuration Configuring a Remote Server for AA Step 5 Use the set command to specify the protocol ldap : set protocol ldap Step 6 Use the set command to specify the re quired LD AP properties. At the very least you must specify: • IP Address—t[...]
-
Pagina 83
5-11 Installing and Configuring Cisco A ccess Registrar, 4.2 OL-17221-02 Chapter 5 Custom izing Your Configuration Configuring a Re mote Server for AA Creating Services Step 1 Run the aregcmd command: aregcmd Step 2 Use the cd command to change to the Ser vices lev el: cd /Radius/Services Step 3 Use the add command to add the appropriate LD AP se r[...]
-
Pagina 84
5-12 Installing and Configuring Cisc o Access Registrar, 4.2 OL-17221-02 Chapter 5 Customizing Yo ur Configuration Configuring a Remote Server for AA T o hav e Cisco AR perform authentication and authori zation against inf ormation from the LD AP server , you must change the Def aultAuthenticationSer vice and DefaultAuth orizationService at the Rad[...]
-
Pagina 85
5-13 Installing and Configuring Cisco A ccess Registrar, 4.2 OL-17221-02 Chapter 5 Custom izing Your Configuration Configuring a Re mote Server for AA Figur e 5-2 Using a Scr ipt to Choose a Remote Serv er Ta b l e 5-5 provides an ov erview of the process. The foll o wing sections describe th e process in more detail. Repe at for each Rem oteServer[...]
-
Pagina 86
5-14 Installing and Configuring Cisc o Access Registrar, 4.2 OL-17221-02 Chapter 5 Customizing Yo ur Configuration Configuring a Remote Server for AA Step 4 Use the cd command to change to the North RemoteServ ers lev el: cd /Radius/RemoteServ ers/North Step 5 Use the set command to specify the protocol radius : set protocol radius Step 6 Use the s[...]
-
Pagina 87
5-15 Installing and Configuring Cisco A ccess Registrar, 4.2 OL-17221-02 Chapter 5 Custom izing Your Configuration Configuring a Re mote Server for AA Step 7 Create another Service (SouthUse rs-ra dius) for the South remote server . Configuring the Script When you hav e multiple RemoteServers, you need a script that dete rmines the authentication a[...]
-
Pagina 88
5-16 Installing and Configuring Cisc o Access Registrar, 4.2 OL-17221-02 Chapter 5 Customizing Yo ur Configuration Configuring Sessio n Management Configuring Session Management Y ou can use session management to track user ses sions, and/or alloca te dynamic resources to users for the lifetime of their sessions. Y ou can define one or more Session[...]
-
Pagina 89
5-17 Installing and Configuring Cisco A ccess Registrar, 4.2 OL-17221-02 Chapter 5 Custom izing Your Configuration Configuring Session Managemen t Step 1 Run the aregcmd command: aregcmd Step 2 Use the cd command to change to the Resour ceManagers lev el: cd /Radius/ResourceManagers Step 3 Use the add command to add a ne w ResourceManager . The fol[...]
-
Pagina 90
5-18 Installing and Configuring Cisc o Access Registrar, 4.2 OL-17221-02 Chapter 5 Customizing Yo ur Configuration Configuring Sessio n Management Step 5 Use the set command to specify the ResourceManagers yo u want tracked per user session. Specify a number and the name of the Reso urceManager . N ote, you can list th e ResourceManager objects in [...]
-
Pagina 91
IN-1 Installing and Configuring Cisc o Access Registrar, 4.2 OL-17221-02 INDEX Symbols %PPP 5-3 %Telnet 5-3 /localhost 4-3 /opt/AICar1/usrb in 4-3 A Access control 4-15 Access Registrar add command 5-2 configuration valid ation 4-11 health 4-5 saving changes 5-2 system defaults 4-5 Access Registrar User’s Guide 5-1 Accounting setting up 4-13 add [...]
-
Pagina 92
Index IN-2 Installing and Configuring Ci sco Access Registrar, 4.2 OL-17221-02 Configuring cl ients 4-9 Configuring UserGrou ps 5-1 count-sessions command 4-2 D DefaultAccountingSer vice 4-4 DefaultAu thenticat ionService 4-4, 5-12 DefaultAuthorization Service 4-4, 5-12 Default ports 4-6 default-PPP-users 4-9, 4-10 DefaultS essionManagm ent 4-5 Def[...]
-
Pagina 93
Index IN-3 Installing and Configuring Cisc o Access Registrar, 4.2 OL-17221-02 L Launching ar egcmd 1-7 LDAP properties 5-10 server configuration 5-10 service 5-11 License file 2-1 location 1-2 local serv ice 4-6, 5-6 local-user s 4-7 login command 4-2 Login conve ntions 5-3 logout command 4-2 ls command 4-2 M Master agent stopping 4-14, 4-16 Multi[...]
-
Pagina 94
Index IN-4 Installing and Configuring Ci sco Access Registrar, 4.2 OL-17221-02 S Sample users 4-7 save command 4-2, 4-11, 5-2, 5-4, 5-8, 5-12, 5-15, 5-18 Saving 4-11 Saving changes 5-2 Scripting Point 5-7 Scripts choosing loc ation 5-7 handling multipl e 5-8 send command 4-12 Server commands 4-2 Server health 4-5 Server virtualization 2-6 Service t[...]