ACS 5.1 facilities
Hi guys,.
I just installed ACS 5.1 using the ISO file in my VM Ware Player.
Facilities seems good from the beginning... and so far, I think that the installation process is finished.
But I still not able to use https://
What is the problem? I ping my VMware Player success. Totardo: I think I got your problem. What OS u chose when you created the virtual machine? Create you a virtual machine and choose (I have install the operating system later). Choose any other options because the other options detects the operating system automatically and capture information on your part for the unattended installation. This does not work with the installation of the ACS. Try again, manually set the parameters of the virtual machine and you will get the wizard successfully this time. HTH Amjad Sent by Cisco Support technique iPad App Tags: Cisco Wireless Hello I am struggling to find numbers on how ACS will scale in the documentation of the OCC. The solution of the ACS are supposed to support the following: An environment of 802. 1 x which will include up to 1000 users (80% MD5, 20% EAP). The intention is to use the external RADIUS with a DB of Active Directory In addition to the environment of 802. 1 x, I would intend to use the same solution of the ACS to provide GANYMEDE + for a small network (80 device) with 10 concurrent users to support max. Can anyone provide a link with the scale factors or give me an example of GBA in a similar environment? Thanks in advance. Try the following document. It is mainly for the Aironet facilities, but the overall concept and authentication applies to switches as well: http://www.Cisco.com/en/us/products/sw/secursw/ps2086/products_white_paper09186a00801495a1.shtml 4.1 of the ACS and 802. 1 x dynamic assignment of VLANS Hi guys,. a customer wants to implement assignment of VLANs with 802 dynamics. 1 x. The customer has the following facilities, Cisco ACS 4.1 for Windows, Cisco ASA 5540, CSA 5.2 with CSA MC, several routers and Cisco switches. Now, the questations are, we can implement assignment of vlan dynamic without a unit of the ANC and the customer also wants to decide between customers with real antivirus signatures and the old signatures. Older clients are denied access to the anti-virus server and the update of the signature and if everything is ok, to have access to the internal network. How could implement us this without a new hardware or software? Any ideas? Thanks for help. René You can have a look on the frame of the NAC system. If you want only the posture validate cable customers then there no extra components to buy. If you want to go wireless, you will likely need to buy a Cisco client that supports wireless. You can get the configuration from here guide: http://www.Cisco.com/application/PDF/en/us/guest/NetSol/ns617/c649/cdccont_0900aecd8040bbd8.PDF I suggest you prototype and see what you think, the good thing is that you can deploy on a per switchport basis so you can make the installer on ACS without disturbing what is there already and apply it by configuring the switch. AAA / adding additional ACS server Hello guys,. You need to install AAA proposed plan as attaché. We used the current configuration for a very long time for our facilities and data centre devices. Now we want to add a more updated ACS apart from the existing two and need to point out all the data center on the new ACS server devices. Is it possible to set up groups of many materials and separate ACS server for defined groups? If possible please let me know the commands, and if not, please let me know the two ways. Hope you could understand my needs and the current configuration. PFA... Thanks in advance! Best regards Anurag.K Hi Anurag, You can add the new ACS/Ganymede server and have this server in the upper part of the sequence. 10.16.2.10 RADIUS server host 10.16.2.8 RADIUS server host 10.16.2.9 RADIUS server host GANYMEDE server key xxxxx If you really want to create a separate group for the new ACS/Ganymede server then you must have under configuration shown. AAA server Ganymede group + Group1 Server 10.16.2.8 Server 10.16.2.9 AAA server Ganymede group + group2 Server 10.16.2.10 AAA authentication login default group GROUP1 GROUP2 line I want to knoiw if you have doubts. ~ BR * Does the rate of useful messages *. ACS 5.1 user password expire does not work Hi, I set up under policies of Administration password on the password length, the elements being rolled as number, letters and so on. on the second tab is the password expire for users, and I configured to expire after 90 days. I even tried to create a new user and change a password for a user existing Apache TOMCAT WAR I checked the GBA unit's CLOCK and NTP high on our internal NTP servers Likewise, I create a new user or change the password of Admin user interface, or I change the password for the user via Apache TOMCAT WAR, I the user being disabled in a few minutes, half an hour. Last, with CISCO AnyConnect is possible to warn the user about the password is expireing and if yes, change could be led through AnyConnect or that it is absolutely necessary a hand of the user task on the portal from Apache TOMCAT upward with the application of GBA WAR? Last last, I can't disable the logon on the ASA 5510 8.3 IOS AVOIDING user to connect through the AnyConnect application download (on the portal of the ASA)?. This is to avoid people to connect from Internet Cafe' and other facilities puglic not having the AnyConnect application installed from a USB device or local DISK? I think you hit a known issue with ACS 5.1: CSCtf06311: all internal users automatically disabled after you be connected to a single user This is fixed in a hotfix for ACS 5.1. Hotfix Rollup 5.1.0.44.3 which can be downloaded from CCO If you decide to download a version of patch, it may be useful to take the latest cumulative hotfix for ACS 5.1: 5.1.0.44.6 ACS 5.3 view-logprocessor unguarded Hi all After an upgrade of ACS 5.1 to 5.3 the logprocessor view are not more. I also installed the latest patch 5.3.0.40.1. Facilities are successful, but steal it view-logprocessor do not work. Anyone have any suggestions to solve this problem. Thanks a lot for your comments René Hi Rene just for the others in the forum, the solution is to back up your real configuration of 5.x ACS and rebuild image the ACS unit with the ACS 5.3 ISO file. After that you can restore the previous backup and this will solve your problem. Best regards Dominic Cisco ACS 5.3 patch 8 Volume OPT Hello We currently have 12 ACS unit with one of them being a dedicated newspaper collector. We have authentication of 802. 1 x configured for network and Wi - Fi ports. We are authenticating desktop, laptops, smart phones, etc. on our network. The problem we have is the volume of the OPT exceeding 30% volume size recommended by Cisco TAC after a few months. We have recently added more resources on our network (fusion). We are now on the size of 30% in about 1 month. In the past, we called Cisco TAC when we had problems with performance Log Collector. It's time was also authenticate clients 802.1 x. We have added a new device and is a dedicated Log Collector. They would check the volume of the OPT and to find that it was about 70% use the size. They launch the Console Root patch and delete the DB and then re-create. We did about 2 times before starting to monitor the size of the volume OPT. This last time, we ran in the 30% the size of volume more rapid then we had previously. I got a Cisco TAC volume of the OPT to delete and recreate it. Cisco TAC recommended that we reduce the amount of logs that are sent to the collector of the newspaper. We are currently investigating this option. The questions I have is: What percentage of size for the volume of the OPT should be concerned until it starts impacting on the performance of the Log Collector? Is there another thing we can do to reduce the amount of logs that are sent to the Log Collector? We have data purge set to 30 days. We are complete and incremental database backups. We also have local send logs to a Syslog server. We test them make changes to send only AAA Audit logs and statistics system of Log Collector. Thank you In the distributed configuration, its recommended to set up a secondary server dedicated as a collector of newspaper. However you have a large deployment, so I'm sure that authentication rate would be too high causing Dungeon size view-basic data on the increase. In order to avoid running out of disk space, we need to manage. This means identifying the files that are created and written by processes on the system, allocate a budget to space them as if the files remain in their budget all the services can be supported without interruption, then define and implement the necessary facilities so that these files in their budget. There are two mechanisms to reduce this size and prevent it from exceeding the maximum limit. 1. air scan: this mechanism the data will be purged based on the retention period of data configured or arriving at the upper limit of the database. In Patch 6 new provided option to demand purging as well. 2. compress: this mechanism frees up unused space in the database without deleting all records. Before the compress option can only be performed manually. GBA 5.3 Patch 6 there are improvements so it will automatically work every day at a preset time, when specific criteria are met. What percentage of size for the volume of the OPT should be concerned until it starts impacting on the performance of the Log Collector? The TAC recommendations are right. You will be able to use all the ACS function if / opt is less than 30%. Is there another thing we can do to reduce the amount of logs that are sent to the Log Collector? It seems that you use most of the features/mechanisms to have / low opt. However, you may be interested to read more about scrub data and data compression improvements http://www.cisco.com/en/US/docs/net_mgmt/cisco_secure_access_control_system/5.4/release/notes/acs_54_rn.html S ' Please use System Administration > Configuration > journal Configuration > Logging categories > Global to configure only the logs required the sending to the ACS View log-collector.
-Provide the cool screenshot of the page Configuration Monitoring > System Operations > Data Management > removal and backup. -With the below listed command you can check real and physical terrain database size ACS-config Username: acsadmin Password: *. acsview show-dbsize There are some known defects on the same subject. However, the version you use improves database management process. CSCto47203: ACS 5 runs out of disk space CSCua51804: see backup fails even when there is disk space
Jatin kone -Does the rate of useful messages- MS Security essentials is coming with "your pc could not be analyzed" error code 0x800703eb. This occurs the day after the installation of Firefox 41 with no other facilities important program or activity for some time. We had no other software security for several years, which doesn't seem like a cause as possible. Any ideas or suggestions? Others noticed and reported similar problems? Thanks for any help Hello So far, 41 Firefox installation is clean. Because your question is related to Microsoft here certain Threads are related to your problem. At the same time you can contact Microsoft Support I hope this helps. Thank you! Where to find unfinished facilities? I looked in the folder downloads and applications and cannot find an unfinished facilities. When the closing of a box in the background appears and tells continue installation choose Cancel if you want to cancel the installation. Give up Yes Do not use any type of product, "anti-virus" or "anti-malware" on a Mac. It is never necessary for her, and relying on it for protection makes you more vulnerable to attacks, not less. You may have installed one or more variants of the Trojan 'InstallMac '. Please take the following steps to disable. The criminal behind this attack tries to make the malware difficult to remove by varying names of the files it installs. This procedure works now, I know. It will not work in the future. Anyone finding this comment a couple of days or more after it was published should look for a more recent discussion, or start a new one. Back up all data before proceeding. 1 triple - click on the line below on this page to select, then copy the text to the Clipboard by pressing Control-C key combination: In the Finder, select Go ▹ go to the folder... from the menu bar and paste it into the box that opens by pressing command + V. You won't see what you pasted a newline being included. Press return. A folder named "LaunchAgents" opens. Press command-2 key combination to select the display of the list, if it is not already selected. There should be a column in the update Finder window. Click on this title to sort the content by date. This will make the related files easy to identify regardless of their names, because they will have the same modification date. 2A inside of the folder that you just opened, there may be files with the name of all these forms: something. AppRemoval.plist Something.download.plist Something.ltvbit.plist Something.notification.plist Something.Update.plist Here, something is usually an empty string of sense, for example one of the following: Epolife InstallMac Javeview Kuklorest Manroling Otwexplain Here are examples, not a comprehensive list. The chain could be anything, and there might be more value of something. Looking for a group of files with the same date of change who match the description. Lately, the striker of "InstallMac" a were quick strings 'AppRemoval', 'download', 'ltvbit' and 'update' in the names of its records. For example, you might see file names such as these, instead of the above: something. AppVemoral.plist Something.dolnwoad.plist Something.btvlit.plist Something.uadpte.plist You may have more than one copy of the malware, with different values of something. Place all of these in the trash. If there are other files whose name begins with something, those in the trash also move. You can get a caveat that some files are locked; Delete them anyway. Once you've done that, we may not have anything left in the LaunchAgents folder; in this case, you can remove the folder, but otherwise does not delete it. Other files in the folder are not necessarily malicious (though they may be, if you have also installed another type of malware). Log off or restart the computer. The Trojan horse should now be inactive. 3. This step is optional. Open the folder as in step 1: and move it to the trash of the subfolders with the name, something you found in step 2. Do not move the Application Support folder or anything else inside. 4. open the Applications folder. If there is an element named something, or "Hell Zip", or with any of the other names listed in step 2, then drag it to the trash.
If in doubt, press option-command-4 key combination to get the apps by date added. Look at the apps that have been added since you first noticed the problem. If there is one, that you don't recognize, drag it to the trash. You can get an alert that the item is locked. Confirm that you want to move to the trash. Empty the trash. If you receive an alert that the application is running, force it to quit. 5. from the Safari menu bar, select ▹ Safari preferences... ▹ Extensions Uninstall all extensions, you don't know that you need. When in doubt, remove all of them. None is required for normal operation. Do the equivalent with Chrome and Firefox browsers, if you use one of the people. If the window does not open, restart the computer in safe mode. Some caches maintained by the system will be rebuilt.
6. replace the search engine and home page in each of your browsers, if either has been changed. In Safari, first load the desired home page, then select ▹ Safari preferences... ▹ General and click on Set on the current Page The problem with the more recent blacklist of the East, it is that the health care industry is behind in technology. Many medical systems is old and need older versions of Java to work. The blacklist because of countless facilities to lose the ability to water rescue medication order. Even my tech support office was bombarded with phone calls about this for the last 2 days. What can be done to allow these older versions of Java work in Firefox and restore the facilities to full operation? Hi JRChadwick, If the Enable button is not available, the block lists should have been updated before that Mozilla has changed to a softblock instead of a hardblock. In this case, follow these steps: At some point after that, you should then get prompt blocklist, but this time the ability to not disable it should be there. But I can't really emphasise this point: these versions of Java are actively used and the latest version is not vulnerable. If there is no chance, you can use the latest version of Java with the medical systems, this is the way to go. Satellite A660-1DW - video editing facilities My 14 year old son wants a Dell Studio 17. Its call for video editing facilities. I wish he had a Toshiba Satellite - possibly the A660-1DW - but I don't know if this device or any other laptop Satellite A has these capabilities and, if so, what they are. Can someone help / tell me, please? Hello I just checked the specs A660 and figured out which is powerful enough for your laptop. I mean, if you install video editing programs can easily process them. But you must decide which laptop to buy Dell or Toshiba Satellite M40-300: is it possible to make a CD or a DVD for all facilities? Hello I bought a Satellite M40-300, it's a very good laptop For Linux I want to install Red Hat Fedora Core 4 all devices are compatible or not? and where I can get driver for this? Thank you very much PS: Sorry for my English I'm French. Hello First of all there is no drivers for Linux because Toshiba doesn t supports the Linux operating system. All Toshiba units are shipped with the Microsoft Windows operating system. On a CD/DVD creation: do you know that Symantec Ghost? Hoppe these tips will help you make a decision. Good bye Restrict the color for some facilities Hello We have a new color HP LaserJet 500 M551. It is on a network, of course. We have no area and have rather a working group. We are a public library and I would like to restrict this machine to print in color on some computers of boss. I want to just disable printing color for some facilities, then, of course, prevent users from changing this setting in the printer preferences. Thoughts? Thank you! Manny That's what I did. Web Jetadmin allows you to import, pre-configure, then export the driver. The first pilot exported, transformed has not worked for me. I did a comparison of files between the exported files and those who came with the CD. I found that the CFG file was, in fact, different. Great! A change has been made! Always exported driver would not work. I copied the contents of the CD complete installation to USB, just traded the CFG file, and the installation went well with the color being disabled. Don't know why the exported files driver did not work, but, at least, the config arrived when I needed. I hope this helps someone else... Manny Problem with Windows Update on XP - 5 update facilities in the meantime I get a message that I have 5 facilities update pending. I run the Setup. As soon as I swith back on the laptop, I get the same message again. It seems that updates installing, even if every time I get a message saying it's done. Hello 1. What is the description which are impossible to install updates? I suggest you to follow the steps from the link below and check if it helps: Troubleshooting Windows Update or Microsoft Update when you are repeatedly offered an update http://support.Microsoft.com/kb/910339 Hope this information is useful. KB 2633880 mutiple facilities HAVE OCCURRED 2633880 KB security update has been installed 29 times. The computer says its there on the Control Panel, update history has 29 facilities updated, but all the time, that she strives to update because it is not recognized somewhere along the line, it's XP with Service pack 3. I uninstalled it but it continues to help Is Security Update for Microsoft .NET Framework 2.0 Service Pack 2... (KB2633880) listed in Add/Remove programs after making sure the box SHOW UPDATES at the top is checked? Update 3.4.5 to 3.6 for opening purchased as retail package Upgrades to El Capitan and I wanted update 3.4.5 to 3.6, but that seems possible only with App Store, while I bought opening as a retail software and App Store won't let me download the update for that reason. Is there a work around for this problem? Satellite L300 - error recovery disc creator - disk is scratced or dirty Hi all I tried to create recovery disks for my L300, but after a 1-2 minutes, the program stops and says: 'Please check if the disc is scratced or dirty, if so, try again with a new disc' error code 0E01B5-26-2A030C00. I tried this many times with ma Windows Media Center must be running to record programs I have planned to record? TV recording Do I need to have Windows Media Center actually run programs Records I have planned to record - for example, a series? It seems not to be a virus of security essential, ran full scan got rid of average threats 2. Tried to turn on the firewall, but can not. Is there a Security program I can run to see if I have a virus which does not let me turn on my firewall. I have Xbox 360 atomatic does not detect the investigation period while I use WRT54G While I have the xbox 360 plugged since the WRT54G just does not detect, man I even use the modem and still does not detect it so I removed the cable from the modem to the xbox 360... I'm confused, I played the xbox 360 before using the xbox 360 of tSimilar Questions
Jatin kone
Hans~/Library/LaunchAgents
~/Library/Application Support
Sorry to hear about lag in technology of the health industry. There are older versions of Java Active. Oracle has released a update in February that resolves the security issue. What does Mozilla has been a softblock on it, which means that users get a notice this plugin it will be disabled and give them the option to activate it. To enable:
Thank you, David
I just have two questions:
is it possible to make a CD or DVD for all facilities
because I have two partitions. One for the window
and the other for a linux?
I also work with Linux, but I use a different distribution. I use Knoppix because I n t need to install anything whatsoever on the HARD drive and I can use this Linux as other Linux distributions.
This tool allows to create an image file or a CD/DVD image you OS. I don't know if it works with Linux, but as I suggested, you can use a Knoppix ;) mMaybe you are looking for