ACS 4.2 Support function

Similar Questions

• Error message: "an internal support function returned an error" trying to attach files in emails.

  Original title: Error message-not invited

  Trying to electronic. Error message: 'an internal support function returned an error.'

  Hello

  Which email client you are using?

  If you are facing the issue in Microsoft Office, you can post your question in the Microsoft Office community & get help support professionals.

  Hope the helps of information.

  Please post back and we do know.

• 5.1 ACS is not supported ODBC and Oracle

  Hi Netpro

  Train my familiar and careless with the old version of the ACS, ACS unit I bought two 5.1 device to work in the HA function. After installation and did ' t tried configured for use with the external database with ORACLE, I see nothing. I tried to read the paper and I saw no keyword that said this support the ODBC or Oracle version. If anyone can help me what is the workaround for ACS work with ODBC and Oracle.

  Thank you

  Pitcher

  This pitcher,

  4.2 the CSA can be installed on the CSACS-1120-K9 unit simply re-Imaging it (so not really a downgrade) with a dedicated DVD.

  You can get such a DVD through an official TAC case:

  http://Tools.Cisco.com/ServiceRequestTool/create/launch.do

  Kind regards

  Fede

  --

  If this helps you or answers to your question if it you please mark it as 'responded' or write it down, if other users can easily find it.

• Cisco Ise 1.3 with Flex to connect wireless supported function

  Hello

  My environment is formed ROUND of flex-mode connection wireless and cisco Ise 1.3, these features are supported?
  Basic functions of the AAA
  profiling
  posturing
  Substitution VLAN
  Substitution of the ACL
  Comments commissioning

  TrustSec 2.0 this MDC is not supported? someone try this feature?

  These all work with ISE 1.3 and FlexConnect WLAN.

  You need the right license ISE - the type of mobility (wireless) license will cover everything. If you have wired and wireless, then you must have basic (for most features) + more (for profiling) + Apex (for Posturing).

• ACS 4.1 supported with Windows Server 2012 domain controller

  I put to level my domain controller / Active Directory from Windows Server 2003 to Windows Server 2012.

  In my environment, I use Cisco ACS 4.1 that is built into Windows Server 2003 Active Directory.

  ACS4.1 will be working perfectly with my new domain controller (Windows server 2012) or I need to improve my ACS too?

  Kind regards

  Junaid

  ACS 4.1 does not support the 2012 server that you should update

• ACS 5.2 - Support for RADIUS attributes per user

  Hi all

  Does anyone know if it is possible to configure the RADIUS attributes on a per user in GBA 5.2 basis?

  That was possible under ACS 4.x, however, that I can't seem to find reference if ACS5.2 supports.

  Thank you

  Leon

  You can do this by setting by using attributes and then by substution attribute.

  You can see an example of it to set an internal user attribute to use as the value for the field address-IP-box

  This is just an example and can be applied also to any attribute RADIUS in which set an attribute of the user of the same type. Values can also be taken from an external identity as AD store

• Cisco ACS 5.4 Support Wildcard SSL certificates?

  Greetings,

  Is getting ready to order a SSL certificate for my ACS 5.4 newly installed, and before I did that I want to check if 5.4 ACS supports Wildcard SSL.

  Someone help me with this?

  Thank you!!!

  Chris B.

  Hi Chris,

  ACS 5.4 still does not support wildcard certificates.

  Regrads

  Anubhav Gupta

• Large file support function

  I have a SP (code below) that creates a new data file or added to an existing file if a threshold is reached.

  So as you can see, I can close with more than 1 data file.

  A few examples:

  maximum size = 30G, size of the data file is 28G, I add 1 G if the data file should be 29G

  maximum size = 30G, size of the data file is 28 g, I add 2G if the datafuke should be 30 g

  maximum size = 30G, size of the data file is 28 g, I add 3G so I should now have 2 data files 1 of them being of 30G and the other 1 G

  Basically, the code will be go through each data file and make 30G (file_max_m) until all the space is exhausted

  I can use some help create and integrate a function that can tell me if TBS supports large files. If it does not support

  such features as described above should be left alone (may have multiple data files) if she does not support, I just want to keep

  resize the file.

  Any help with this change of function and the code will be greatly appreciated

  01.intro create or replace
  02.Markus (add_space) procedure of
  03. p_tablespace varchar2,
  04 p_gibabytes number
  05.) is
  06 add_m number: = 1024 * p_gibabytes;
  07 required_m number: = 0;
  08 created_m number: = 0;
  09 file_max_m number: = 1024 * 30; -30G
  10 ts_size number: = 0;
  11 start
  (12 for ts in)
  13. Select
  14 nom_tablespace,
  (15 round)
  (16 total)
  17 case when CanGrow = "YES" and bytes, maxbytes then
  18 maxbytes / 1024 / 1024
  19. other
  20 bytes / 1024 / 1024
  21 end
  22.) over (partition by tablespace_name)
  23.) tablespace_m,.
  24 file_name,
  (25. round)
  (26 total)
  27 case when CanGrow = "YES" and bytes, maxbytes then
  28 maxbytes / 1024 / 1024
  29. on the other
  30 bytes / 1024 / 1024
  31 end
  32.) over (partition by filename)
  file_m 33).
  34. of dba_data_files
  "35. where nom_tablespace = upper (p_tablespace) and online_status = 'ONLINE' and status =" AVAILABLE "
  36 and p_gibabytes between 1 and 999
  37 order by desc - last file_id firstly the file
  loop 38).
  39 ts_size: = ts.tablespace_m; -for report
  40 required_m: = ts.tablespace_m + add_m;
  41 -
  42 - resize datafile (s)
  43 -
  44 created_m: = created_m + ts.file_m;
  45 if (created_m < required_m and ts.file_m < file_max_m) then
  46 report
  47 number size_m: = ts.file_m + required_m - created_m; -current size + difference is new size
  48 start
  49 if (size_m > file_max_m) then
  50 size_m: = file_max_m;
  51 end if;
  52 dbms_output.put_line('alter database datafile ''' || ts.file_name ||) "' resize '. size_m | AM; -' | TS.file_m | Am to ' | round (size_m/1024, 3) | 'G');
  53 created_m: = created_m + size_m;
  54 end;
  55 end if;
  56 end loop;
  57 -
  58 - Add data files
  59. -
  60 while (required_m > 0 and created_m < required_m)
  61 loop
  62 report
  63 size_m number: = required_m - created_m;
  64 start
  65 if (size_m > file_max_m) then
  66 size_m: = file_max_m;
  67 end if;
  68 dbms_output.put_line('alter tablespace ' || p_tablespace || q'"add datafile '+DATA01' size"' || size_m ||) AM; -- ' || round (size_m/1024, 3) | 'G');
  69 created_m: = created_m + size_m;
  70 end;
  71 end loop;
  72 - report
  73 dbms_output.put_line ('-tablespace ': upper (p_tablespace) |) "resize" | p_gibabytes | "G of |  ts_size | Am to ' | required_m | 'M');
  74.end;
  75 /
  76.la sho err
  77.
  78.
  79.Le ADD_SPACE compiled PROCEDURE
  80.
  81.
  82 - bug fixed and tested here
  83.Stentor set serveroutput size unlimited
  84 create tablespace testts datafile ' C:\ORACLEXE\APP\ORACLE\ORADATA\XE\TESTTS01. DBF' size 9G Online;
  85.Le exec add_space ('testts', 1);
  86 drop tablespace testts including content and data files;
  87.
  88.
  89. tablespace created TESTTS.
  90.l anonymous block finished
  91.Les alter database datafile ' C:\ORACLEXE\APP\ORACLE\ORADATA\XE\TESTTS01. DBF' resize 10240M; -from 9216M to 10G
  92 - tablespace TESTTS resized 1 G of M 9216 10240 m
  93.Le tablespace TESTTS dropped.
  94.
  95.
  96 - another test
  97 - add 1 G of users
  98 add_space exec ('users', 1);
  99.
  100.
  101 - script is created
  102. anonymous block finished
  103.Le alter database datafile ' C:\ORACLEXE\APP\ORACLE\ORADATA\XE\USERS03. DBF' resize 2499M; -from 1255M to 2, 44G
  104 - tablespace USERS resized 1 G from 1475 to 2499 M
  105.
  106.
  107 - I did run this script and file is resized
  108.INO database datafile ' C:\ORACLEXE\APP\ORACLE\ORADATA\XE\USERS03. DBF' altered.
  109.
  110.
  111 - Add another 1 G users
  112 add_space exec ('users', 1);
  113.
  114.
  115 - script is created
  116.Le anonymous block finished
  117.avant alter database datafile ' C:\ORACLEXE\APP\ORACLE\ORADATA\XE\USERS03. DBF' resize 3743M; -of 2499M 3 655 G
  118 - tablespace USERS resized 1 G of 2719 M 3743 M

  /

  Hello

  Try this. I didn't test it. Just remember that the command can be a bit difgferent for bigfiles. I'll check that. Now, he must be able to manage the resizing of bigfile tablespace.

  create or replace
  procedure add_space(
    p_tablespace varchar2,
    p_gibabytes number,
    p_diskgroup varchar2 default '+DATA01'
  ) is
    add_m       number := 1024 * p_gibabytes;
    required_m  number := 0;
    created_m   number := 0;
    file_max_m  number := 1024 * 30; -- 30G
    ts_size     number := 0;
  begin
    for ts in (
      select
        tablespace_name,
        (select bigfile from dba_tablespaces where tablespace_name = dba_data_files.tablespace_name) bigfile,
        round(
          sum(
            case when autoextensible = 'YES' and bytes < maxbytes then
              maxbytes / 1024 / 1024
            else
              bytes / 1024 / 1024
            end
          ) over (partition by tablespace_name)
        ) tablespace_m,
        file_name,
        round(
          case when autoextensible = 'YES' and bytes < maxbytes then
            maxbytes / 1024 / 1024
          else
            bytes / 1024 / 1024
          end
        ) file_m
      from dba_data_files
      where tablespace_name = upper(p_tablespace) and online_status = 'ONLINE' and status = 'AVAILABLE'
      and p_gibabytes between 1 and 999
      order by file_id desc -- last file first
    ) loop
      ts_size := ts.tablespace_m; -- for report
      required_m := ts.tablespace_m + add_m;
      if (ts.bigfile = 'YES') then
        file_max_m := 1024 * 1024 * 32; -- 32TB
      end if;
      --
      -- resize datafile(s)
      --
      created_m := created_m + ts.file_m;
      if (created_m < required_m and ts.file_m < file_max_m) then
        declare
          size_m    number := ts.file_m + required_m - created_m; -- current size + difference is new size
          sql_text  varchar2(2000) := q'"ALTER DATABASE DATAFILE '{file_name}' RESIZE {size}M;"';
        begin
          if (ts.bigfile = 'YES') then
            sql_text  := q'"ALTER TABLESPACE '{tablespace_name}' RESIZE {size}M;"';
          end if;
          if (size_m > file_max_m) then
            size_m := file_max_m;
          end if;
          sql_text := replace(replace(replace(sql_text,
            '{tablespace_name}', ts.tablespace_name),
            '{file_name}', ts.file_name),
            '{size}',size_m
          );
          dbms_output.put_line(sql_text || '; -- from ' || ts.file_m || 'M to ' || round(size_m / 1024, 3) || 'G');
          created_m := created_m + size_m;
        end;
      end if;
    end loop;
    --
    -- add datafiles
    --
    while (required_m > 0 and created_m < required_m)
    loop
      declare
        size_m    number := required_m - created_m;
        sql_text  varchar2(2000) := q'"ALTER TABLESPACE {tablespace_name} ADD DATAFILE '{diskgroup}' SIZE {size}M;"';
      begin
        if (size_m > file_max_m) then
          size_m := file_max_m;
        end if;
        sql_text := replace(replace(replace(sql_text,
          '{tablespace_name}', p_tablespace),
          '{diskgroup}', p_diskgroup),
          '{size}',size_m
        );
        dbms_output.put_line(sql_text || '; --' || round(size_m / 1024, 3) || 'G');
        created_m := created_m + size_m;
      end;
    end loop;
    -- report
    dbms_output.put_line('-- tablespace ' || upper(p_tablespace) || ' resized ' || p_gibabytes || 'G from ' ||  ts_size  || 'M to ' || required_m || 'M');
  end;
  /
  sho err
  

• 'Search Mozilla Support' function on this page does not work.

  I had typed in "All bookmarks" during a previous visit, so it appears in the drop-down list, but when I type the first letter: 'A' onus with 1000s of the instances of the letter "A". I can't search for complete words 2.

  There is the advanced search page:

  • https://support.Mozilla.org/en-us/search/advanced

  This forum also supports the search for phrases by adding the words in quotes.

  • https://support.Mozilla.org/KB/using-advanced-search

• Tecra M9: Where to find the function keys drivers/software for Win XP

  HI :)

  What kind of drivers (where can I find it?) supported function keys in Toshiba Tecra M9 - 12R?
  I'm interesting in screen brightness control keys. Thanks in advance for any helpp :)

  concerning
  Wojtek

  All drivers and utilities, you'll find the European driver Toshiba page:
  http://EU.computers.Toshiba-Europe.com/cgi-bin/ToshibaCSG/download_drivers_bios.jsp?service=EU

  Please note that you will need to install drivers in the correct order.
  On the Toshiba driver page, you will find the installation instructions txt file.
  Follow this order! This is important.

  Good luck

• Windows in Help and Support does not

  My Windows Help and Support function has stopped working.  When I try to launch Help and Support in the start menu (under Vista), I have the message

  "Not found in the help topic, this content under construction, we have couldn't recover the reqested topic."

  To anyone who has this same problem, I have found a solution!  I created a new user account, and when I registered under this new account, I was able to access my Windows Help and Support finally!  To create a new user account, follow these steps:

  1. click on the Start button and then click Control Panel.
  2. click on classic view in the left panel.
  3. double click on user accounts.
  4. click on Manager another account.
  Note: Click 'Continue' if the window (UCA) user account control prompts.
  5. click on "create a new account".
  6 type the account name and select an account type, the administrator or Standard user (I used administrator, do not know if it works with a Standard user account).  Then, click on create an account.
  7 restart the computer, and then sign in using the new user account.  Your help and Support Windows should now be available.

  PS Thank Sabrina Shen to Microsoft Support for this solution (* address email is removed from the privacy *).  She was helping me with another question (I was unable to access the Microsoft Update site), and I found that the solution worked for this problem, also.  Thank you, Sabrina!

• ACS database does not not after having changed the secondary ip of acs.

  Hello.. Im having 2 ACS 3.1 server. ACS01 (primary) & ACS02 (secondary). We recently moved ACS02 to another site and has changed its ip address.

  When we of database replication from ACS01, we received the error message saying ACS02 has refused the request of replication.

  Any idea what can be the problem?

  Consider these elements when you implement the database replication feature Cisco Secure:

  (1) ACS supports only supported replication of database to other ACS servers. All ACS servers participating in the Cisco Secure database replication must run the same version and patch to FAC level.

  (2) the principal server copy compressed and encrypted the database on the secondary server components. This transmission is done via a connection TCP, Port 2000. The TCP session is authenticated and using an encrypted protocol, Cisco-owners.

  (3) only hosts properly configured, valid ACS can be secondary servers. To add a secondary server, configure it in the AAA servers table in the section of this document Network Configuration. When a server is added to the AAA servers table, the server is displayed for selection as a secondary server in the list of AAA servers as replication partners, on the Cisco Secure database replication page.

  (4) the principal server must be configured as an AAA server and must have a key. The secondary server must have a primary server configured as an AAA server and its key for the primary server must match the key primary servers.

  (5) secondary servers replication takes place sequentially in the order listed in the replication list under replication partners, on the Cisco Secure database replication page. (6) the secondary server that receives the replicated components must be configured to accept replication of database from the primary server. To configure a secondary server for database replication, refer to configuring a secondary Cisco Secure ACS Server of this document section.

  (7) ACS does not support two-way replication of database. The secondary server, which receives the replicated components, check that the primary server is not on its list of replication. If this is not the case, the secondary server accepts replicated components. If so, it rejects the components.

  (8) to replicate the seller of RADIUS defined by the user and the configurations of the specific attribute (VSA) provider successfully, definitions have to be replicated must be identical on the primary and secondary servers. This includes seller RADIUS slots occupy sellers RADIUS defined by the user. For more information on the sellers of the RADIUS and the VSA attributes defined by the user, see section User-Defined RADIUS vendors and VSA sets the document Cisco Secure ACS database command-line Utility.

• ACS appliance upgrade: 3, 0000-11 to 5.0

  We are running 2 ACS 1110 (?) devices with version 3, 0000-11 code. They are due to be upgraded to 2 new 1120 ACS ACS 5.0 devices. I looked around Cisco.com but can't find a guide step by step to such a way of upgrading.

  My questions are:

  1. ACS 5.0 support direct upgrade to 3.3.3? By that I mean, is - it possible to take a backup of the old device file and restore it to the new?
  2. If not, what are the intermediate steps? I have to take the file from backup and restore to an intermediate version of ACS?

  Thank you!

  --

  Wei

  Hi Wei,

  No, it does not support direct upgrade to 5.x. You need to upgrade to 4.1 or 4.2 and 5.1.  I would say to work with TAC to get all the software needed to get the DB up to the version required for migration to 5.x.

  Data can also be migrated.

  Kind regards

  ~ JG

  Note the useful messages

• ACS-GANYMEDE 4.2 to 5.2 upgrade

  Hello everyone, see us run the Services ACS on a stand-alone server from IBM 346 runnig Windows 2008 32-bit server and I would like to 5.2 we have another box of IBM identical spare and would like to if it can be used. Anyone had problems ranging from 4.2 to 5.2 with an intermediate upgrade?

  5.2 is my best bet?

  Thank you!

  5.4 ACS does not support automatic installation of the evaluation license.  Therefore, if you need an evaluation of GBA 5.4 version, then you must get the Cisco.com evaluation license and manually install the ACS 5.4.

  If you don't have a valid contract of SAS with all products of the ACS, you will not be able to download the image ISO of Cisco.com. In this case, you must contact your local partner or cisco representative for the ISO image.

  http://www.Cisco.com/en/us/docs/net_mgmt/cisco_secure_access_control_system/5.4/release/notes/acs_54_rn.html

  Jatin kone
  -Does the rate of useful messages-

• User in several Windows/ACS group. Deny a permit

  I have several groups on ACS each tied to a group of AD windows.

  I have a VPN concentrator and a wireless Lan controller.

  I use ACS to authenticate access to the time, but I would like some VPN users have wireless users too, not all.

  If I use NAR to limit the "VPN users" to access WLC device all users with access to the VPN is not wireless, even those who are in the wireless group.

  Is - it there anyway to operate?

  This is how it works.

  Lets say you have three different groups on ad for NetworkAdmin, RouterAdmin,.

  Wireless.

  Go to the external user database == database group mappings == Windows NT/2000 == select the field

  to which you log == Add mapping.

  Select the ad NetworkAdmin group and ciscosecure Group 1 card select the ad RouterAdmin group and map it to ciscosecure Group 2

  Select the ad wireless Group and map it to ciscosecure Group 3

  Mappings of working groups in the order in which they are defined, first set up mapping is

  considered first and then second, third and so on. If a user is in AD Group NetworkAdmin and

  which is mapped to the ACS 1 group and it's the first configured mapping is

  First of ALL (if there is a user in the Group NetworkAdmin, it is always mapped to ciscosecure

  1 and NO further mappings for this user group is enabled and the user is authenticated or

  rejected)

  Scenario: If you have a user called cisco, group NetworkAdmin, cisco1 in RouterAdmin

  Group and cisco2 wireless. They will be always dynamically mapped to group 1, 2 ACS

  and 3 respectively as above mappings.

  You can see the mappings on authentication passed to users as to which group are

  they are mapped to.

  SCENARIO:

  Now if you want a NetworkAdmin user to authenticate to the NetworkAdmin devices and not

  devices or wireless RouterAdmin you should apply NARs for Group 1 because

  NetworkAdmin users connect to this group. Which will allow you access on the Group

  basis for a particular NetworkAdmin NDG or NetworkAdmin individual NAS device.

  NOTE:

  If you are applying NARs for VPN or wireless devices, you must configure two IP

  Base AND CLI/DNIS founded together as NARs were originally designed for cisco IOS for

  routers and switches.

  IMPORTANT: If a user authenticates successfully to the database AD once, his user name is cached on the database of ACS (NOT password) the only way to remove the previously cached user name is to go to usersetup find this user and manually remove it.

  ACS will not support the following configuration:

  * A user active directory which is a member of the 3 AD groups (groups A, B and C) * 3 people

  groups are mapped within FAC as follows-> A Group1, Group2-> B and group 3-> C.

  * The user is in the 3 groups, however it will be always authenticated by Group 1 because

  This is the first group, it appears in, even if there is a configured NAR summons

  the group-specific AAA clients.

  However there are if your maps are below order...

  Groups NT groups ACS

  A, B, C ===> Group 1

  A ===> group 2

  B ===> group 3

  C ===> Group 4.

  You can create a rule DIFFERENT for users a, B, C by configuring the NARS in Group1.

  This rule applies for use ONLY if it is present in ALL three groups (A, B and C).

  You can create a rule for users in Group A (Group 2)

  You can create a rule for users in Group B (Group 3)

  You can create a rule for users in Group C (Group 4)

  Here I am also attaching links related to the group mapping in the user guide:

  Order of group mapping:

  http://www.Cisco.com/univercd/CC/TD/doc/product/access/acs_soft/csacs4nt/acs33/user/QG.htm

  #wp940485

  Kind regards

  ~ JG

  Note the useful messages