Upgrade the NAC of 4.5 to 4.8

Similar Questions

• Profiler in the NAC 2.1 to 3.1 upgrade

  Hi guys,.

  I'm setting up a Profiler from the NAC that accompanies 2.1 installed. I upgraded to 3.1, prayed and installed the license without any problems, but I always get this message: "ERROR: [2010-12-08 09:25:01 (main: 668)] valid no key not found [no such file or directory]" "

  The license file exists, and on the interface Web Profiler from the NAC, the State of the license is OK.

  A single line in the license file gives me this information: 'cisco 2.1 INCREMENT CCA-MANAGER countless Permanent '.

  Does anyone know if the license is linked with the version of Profiler?

  The upgrade from 2.1 to 3.1 is allowed or it is necessary to purchase a new license 3.1?

  Best regards

  Hello

  So I guess you spotted the problem here...

  You have a collector's license?

  You need 2 licenses: 1 to the server profile, and one for the collector.

  Basically, the mac address you provide is the same (eth0 ot Server Profiler), but you need a PAK Server Profiler to generate the license Server Profiler (the one you already have) and a PAK for license collector (which is missing).

  You have the collector PAK?

  If Yes, then just go to the license page and submit this PAK and the mac address.

  HTH,
  Tiago

  --

  If this helps you or answers to your question if it you please mark it as 'responded' or write it down, if other users can easily find it.

• Help the NAC OOB Windows SSO

  We have just upgraded to Windows 2003 AD to Win2k8 R2 and Single Sign it has stopped working. Authentication works very well, but the NAC agent does not use the Windows credentails. Users must enter their user name and password manually.

  The AD server is a new server but has the same IP addresses as the old man. I'm running the CAM/CASE 4.7.2.

  Gregg

  Gregg,

  2 k 8 does not by default, so I suspect that is where it's a failure. Please look at the following sections and rerun ktpass (on a new user preference) as shown in the link:

  http://www.Cisco.com/en/us/docs/security/NAC/appliance/configuration_guide/47/CAs/s_adsso.html#wp1257882

  HTH,

  Faisal

  --

  If you find this article useful, please note so that others can easily find the answer

• Reuse the material of the NAC

  Is is possible to reuse our equipment of the NAC Server and Manager 3310 with ISE?

  Hello

  You cannot reuse the NAC 3310, the 33 x 5 and 1121 ACS are the platforms supported for ISE. However existing customers have benefits for the upgrade to ISE. Please join your Cisco partner and if you don't practice you can reach for me and I can help you.

  Thank you

  Tarik Admani
  * Please note the useful messages *.

• Problem of the NAC - Agent is a disconnect

  Hello

  We have a problem with the NAC in mode virtual outofband.

  AD SSO, sanitation, everything is working, but the strange things happening: after awhile, when downloading large files, Agent connects to the formula of network users, and the registration process is restarted.

  I disabled the pulsation clocks and timers, session, but we still have a problem.

  Also, while sniffing traffic on the switch port, I noticed that after have correctly connected you to the own Cisco Agent network always send traffic to UDP Port 8905. Is this a normal behavior?

  I noticed problems with this version of the agent causing connections to give up intermittently. I would upgrade to agent v4.1.3.1.

• The NAC replacement procedure

  Hi Experts,

  Our 3315 NAC does not work because of a hardware failure. So let's replace that. Therefore kindly confirm the steps to take the backup and the procedure to install it?

  Thank you

  Kind regards

  Vijay.

  Since there seems to be no method to perform a backup of the CLI on the appliance 3315, we go the route of the workaround. This may seem a little out there, but the only way I can see a backup being created without using the WebGUI interface.

  First of all, you have IP access to the device of the ANC?

  If this isn't the case, quit reading and contact TAC.

  If you have backups of configuration in the past, they are stored in the/guest/bakcups directory and can be transferred via FTP, SFTP, etc...

  If not, then download a upgrade file that is newer than the version you are running (if you are running the latest version, download the upgrade file for this version). In this case, v2.1.  Transfer the file to your repository and run the upgrade on the comment of the NAC server.

  Note Before the 2.1 update, a snapshot backup of the existing 1.x or 2.0.x database is automatically created and stored in the guest.bak directory. In the case of an upgrade failure, Cisco recommends to make a local backup of this directory.

  http://www.Cisco.com/en/us/docs/security/NAC/guestserver/Release_notes/21/gsrn21.html#wp111257

  Otherwise, I am at a loss on this issue.

  Please rate useful messages and mark this question as answered if, in fact, does that answer your question.  Otherwise, feel free to post additional questions.

  Charles Moreton

• Verification of the Configuration of the NAC/CCA: OOB + virtual gateway (L2)

  Hello

  I'm currently setting up a deployment of NAC from out-of-Bound OOB with virtual gateway. Can someone please check my configs below:

  Central office switch:

  ------------------------------------

  DB OF VLAN:

  ----------------

  !

  VLAN 10

  name VLAN_DEPT1

  !

  VLAN 11

  name VLAN_DEPT2

  !

  VLAN 20

  name VLAN_DEPT3

  !

  VLAN 26

  name VLAN_DEPT4

  !

  VLAN 27

  name VLAN_DEPT5

  !

  VLAN 28

  name VLAN_DEPT6

  !

  VLAN 29

  name VLAN_DEPT7

  !

  VLAN 30

  name VLAN_DEPT8

  !

  VLAN 32

  name VLAN_DEPT9

  !

  VLAN 50

  name VLAN_NetMGT

  !

  VLAN 51

  name VLAN_CAS_MGT

  !

  VLAN 52

  name VLAN_CAM_MGT

  !

  VLAN 210

  name VLAN_DEPT1_Auth

  !

  VLAN 211

  name VLAN_DEPT2_Auth

  !

  VLAN 220

  name VLAN_DEPT3_Auth

  !

  VLAN 226

  name VLAN_DEPT4_Auth

  !

  VLAN 227

  name VLAN_DEPT5_Auth

  !

  VLAN 228

  name VLAN_DEPT6_Auth

  !

  VLAN 229

  name VLAN_DEPT7_Auth

  !

  VLAN 230

  name VLAN_DEPT8_Auth

  !

  VLAN 232

  name VLAN_DEPT9_Auth

  !

  !

  Interface Configs

  --------------------

  interface GigabitEthernet3/41

  Description "Link on eth0 Cisco CAM - PRI"

  switchport access vlan 52

  switchport mode access

  spanning tree portfast

  spanning tree guard root

  No cdp enable

  no ip address

  !

  interface GigabitEthernet3/42

  Description "Link to Cisco CAM - FO eth0"

  switchport access vlan 52

  switchport mode access

  spanning tree portfast

  spanning tree guard root

  No cdp enable

  no ip address

  !

  interface GigabitEthernet3/43

  Description "Trunk to eth1 Cisco CASE - PRI / no reliable network.

  switchport

  switchport trunk encapsulation dot1q

  switchport trunk vlan native 777

  switchport mode trunk

  switchport trunk allowed vlan 210,211,220,226-230 232

  !

  interface GigabitEthernet3/44

  Description "Trunk to eth1 Cisco CASE - FO / no reliable network.

  switchport

  switchport trunk encapsulation dot1q

  switchport trunk vlan native 777

  switchport mode trunk

  switchport trunk allowed vlan 210,211,220,226-230 232

  !

  interface GigabitEthernet3/46

  Description ' box Cisco CASE - PRI eth0 / Trusted Network. "

  switchport

  switchport trunk encapsulation dot1q

  switchport trunk vlan native 700

  switchport mode trunk

  switchport trunk allowed vlan 10,11,20,26-30,32,50-51

  !

  interface GigabitEthernet3/48

  Description ' box Cisco CASE - FO eth0 / Trusted Network. "

  switchport

  switchport trunk encapsulation dot1q

  switchport trunk vlan native 700

  switchport mode trunk

  switchport trunk allowed vlan 10,11,20,26-30,32,50-51

  !

  !

  interface GigabitEthernet1/1

  Description 'Link Trunk DEPT1 access SW'

  switchport

  switchport trunk encapsulation dot1q

  switchport trunk vlan native 700

  switchport mode trunk

  !

  ! - Example of Interface VLAN.

  interface Vlan10

  Description "DEPT1 VLAN.

  IP address x.x.10.1 255.255.255.0

  IP helper-address x.x.50.5

  no ip redirection

  no ip unreachable

  no ip proxy-arp

  no ip route cache

  no ip mroute-cache

  ! - No Interface VLAN for AUTH VLAN 210 -.

  *

  *

  *

  Access switch configuration

  -----------------------------------

  interface GigabitEthernet0/1

  Description 'Link to central office switch Trunk'

  switchport

  switchport trunk encapsulation dot1q

  switchport trunk vlan native 700

  switchport mode trunk

  no ip address

  !

  !

  interface GigabitEthernet0/6

  switchport access vlan 30

  switchport mode access

  spanning tree portfast

  spanning tree guard root

  No cdp enable

  no ip address

  !

  =========================================

  The above configuration is correct?

  Thank you

  The config looks ok, but we recommend the use of false VLAN native to be used on the trunk ports approved and unapproved.

  When you upgrade the client computer on concert 0/6, make sure that moving him vlan 30--> 230.

  Thank you

  Syed

• The NAC Agent autoUpgrade ISE possible?

  Hi all

  I have this:

  802.1 x-window with the NacAgent version (say 1) <---->802. 1 x switch active (RADIUS aaa OK) <------>ISE and AD on the same LAN

  ISE is configured for client provisioning with hardware (NacAgent version 2) downloaded from Cisco's Web site (as described in the documentation)

  I have a basic plan of authentication and authorization that allow me to well but I expect the NACAgent to be upgraded.

  No profiling is configured at the moment.

  Is that someone can help?

  Best regards?

  Hello

  In the ISE settings provisioning client, activate you the option where the NAC upgrade agent is required. However, it is to you to run updates perioidic and map the most recent agent in the configuration of the parameters of the client.

  Thank you

  Tarik Admani
  * Please note the useful messages *.

• My bank site refused my log in because of 'old' browser, but I don't want to upgrade the next operating system (Yosemite) because he ruined my computer before. How can I upgrade only from Safari?

  My bank site refused my log in because of 'old' browser, but I don't want to upgrade the next operating system (Yosemite) because he ruined my computer before. How can I upgrade only from Safari?

  Safari cannot be updated past 6.2.8 on Mountain Lion. If you want to, switch browsers.

  (144681)

• Upgrade the OS on Mac Pro 2009 OS 10.5.8 to a newer version without Apple Store

  Hello Mac Fans,

  I need upgrade OS on a Mac Pro 2009 with current OS 10.5.8 to the latest possible version for this model. I don't have app from Apple Store in this version of the operating system.

  Data sheet:

  Model name: Mac OS X 10.5.8 (9L31a)

  Processor: Dual-Core Intel Xeon

  Model name: Mac Pro

  Model identifier: MacPro1, 1

  Processor: Dual-Core Intel Xeon

  Processor speed: 2.66 GHz

  Processors: 2

  Total number of cores: 4

  L2 Cache: 4 MB

  Memory: 4 GB

  Bus speed: 1.33 GHz

  I should be grateful if you would help with the following two questions:

  • Do I need to purchase the snow leopard for $19.99 on their Web site and then move into the new OS version / new? Is there a way to avoid spending money on a platform that will only fill to the latest operating system for this iMac?
  • Settle El Capitan on this model of iMac result in slower operation of the operating system? My computer is too old for the El Capitan? If so which version should I update and where can I get if go?

  In addition, it's Mac was having once belonged to one of my friends. Do I need from the previous apple associated with this MAC ID for purchases in apple store?

  It seems to pay to use a vintage OS on an iMac vintage not knowing if it will work even ridiculous. I also own a MacBook Pro3, 1 (intel Core 2 Duo 2. 4 GHz, 4 GB) and I upgraded from the same version of the operating system: 10.5.8 directly in El Capitan and I didn't have to pay. I had however Apple Store that seems to make the software easier to access, but the operating system should be available for free download directly from Apple. I got the ElCapitan installer disk external and transferred to the Mac Pro, but the pop-up message advised that it was impossible to install this version. The difficulty in upgrading the operating system more old iMac is not just for Apple users.

  If you can, let me know what I can do to make the use of this machine.

  Peace

  pecatoribus

  1. unless you have another Mac, you do. This step can be skipped using target disk mode, installation thumbdrive or NetInstall (Mac OS X Server only), but doing so will probably need scrub or repartitioning the internal drive.

  2. the most recent OS because it is 10.7.5.

  (144443)

• Is it possible to run Safari7 on 10.7.5 OSX? I can't upgrade the software of other system on my Mac.

  Is it possible to run Safari7 on 10.7.5 OSX? I can't upgrade the software of other system on my Mac.

  N °

  (143905)

• Can someone tell me how to upgrade the operating system on the MacPro?

  I have a MacPro1.1 which works fine, but now I can't use LightroomCC on that because the OS is no longer supported. Can someone tell me how to upgrade the operating system on the MacPro?

  Your Mac Pro 2006 supports only as high as Lion unless you use a hack.

  If you want Lion then order a code to download here:

  http://store.Apple.com/us/product/D6106Z/A/OS-x-lion

  and then use the code in the Mac App Store.

  If you need higher that the Lion then Google for the hack

• Main problems to upgrade the graphics card in my Mac Pro in 2006.

  I am trying to upgrade the graphics card OEM in my Mac Pro 2006 to a Radeon HD 4870 1 GB graphics card.  I have big problems.  The previous owner recommended that my BONES 10.7.5 uninstalling and reinstalling.  I don't know how to do this.  The Apple website was no help with this issue.  The previous owner gave me a lot of procedures I've ever done before, including removing and re-creation of my RAM and using a Kext troubleshooting application.  Any suggestions you can offer would be greatly appreciated.

  a 4870 with 1 GB of VRAM is not a real Mac card (who had only 512 MB of VRAM). Unlikely to show an image until the login screen, if ever. Unless the seller has a 100% guaranteed working procedure to get this working, I recommend you return for a refund - it is not likely to work in your Mac.

  A true 5770 Mac or 5870 is the best approach for a 2006 or 2007 Mac Pro, because they are known to work with everything except movies under copyright, and your Mac is stuck in the 32-bit kernel and pre - 10.7.5 MacOS.

• If I upgrade the ICloud storage all my devices share this cloud (same user)

  It seems that I am running out of storage according to all the emails from Apple. I use three apple devices. If I upgrade the cloud storage is shared by all devices? (Same user name and ID

  Thank you

  Yes.

• I did a reset on my iPad 2 and now it has an error with iTunes saying that it requires a newer version of iTunes. How to upgrade the iPad I have tunes version?

  I did a reset on my iPad 2 and now it has an error message when I connect to my computer to access the backup. bed the error message, this iPad cannot be used because it requires a newer version of iTunes. How to upgrade the version of the ipad?

  Take a look at the article, download the latest version of iTunes - Apple Support