ACS Evo

Unanswered Question
Jul 30th, 2009

guys i can download ACS v4.2.0.124 90-Days Evaluation Software from cisco.com. Guys its only 54Mb is that it.......if i download it so the the next step is to purchase the licence from cisco.....is that it.....guys all i can do is to put the licence into the softeare or the original software would be different??? i am bit confuse.....is evo software is complete one or do we have to purchased the full version???

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 4 (2 ratings)
Loading.
Jagdeep Gambhir Thu, 07/30/2009 - 06:28

Hi Guro,

ACS eval is a full software (for 90 days) and there is no license required for ACS windows. Once the 90 days period expires you need to reinstall full version of acs(need to purchase full version)

Regards,

~JG

Do rate helpful posts

Lucien Avramov Thu, 07/30/2009 - 11:14

After you used the eval, you can backup your config and restore it on the full version so you dont loose any data

The_guroo_2 Sat, 08/01/2009 - 08:26

Thanks guys for your kind reply.....i need one more help.....the ACS server will b einstalled on windows 2003 server.....now the ACS will be doing AAA for wireless access points.....now all the wirless access points uses windows AD to get authenticated......now we already have one ACS install this is a backup one which we are intalling in the scenario do i have to ask the server team to clone the AD strcutre on backup or the backup will use th eprimary one??? secondly in ACS how we sysnc the windows AD authentication.....to make it short ACS will not do internal authn .....in which tab in ACS we tell the ACS to do the windows AD authentoication.....guys plz help m eout thanks.....its my very first time with ACS......and i get so confuse as there are tens of doco's thanks again

Lucien Avramov Sat, 08/01/2009 - 12:16

You have to configure replication of ACS.

There was a defect CSCsk64715 in 4.1 where manual replication worked for the AD group mapping but not auto replication. This is fixed in 4.2

AD group mapping can be replicated.

Documentation for configuring replication:

http://www.cisco.com/en/US/docs/net_mgmt/cisco_secure_access_control_server_for_windows/4.2/user/guide/SCAdv.html#wp756330

Make sure to read this section:

Replication of Network Access Profiles contradicts the replication of Network Configuration Device tables; therefore, do not check both of these components at the same time. NAP settings will override all other settings. Dynamically mapped users are not replicated, only statically added users are replicated.

The_guroo_2 Sun, 08/02/2009 - 06:54

Thanks for your reply....now i have read the doco now what i have understand is as follow:

secondry server will replicate username and passwords from primary server

primary server has windows ad where all the user is authenticated (current scenario).

now what if the server dies the primary one physical how secondry will get the info....all i am trying to get my head around as i am v new to this.....

Lucien Avramov Sun, 08/02/2009 - 10:39

the authenticated users remain authenticated, the failover will handle the new users that try to login.

The_guroo_2 Sun, 08/02/2009 - 22:57

Hi thanks again for your kind reply now one last question.......the current version on main ACS is 4.0....now the client is no financing for the upgrade.....but they need backup.....so what i have in mind is (please correct the steps if i am wrong) i will do the follwoing

take backup of ACS primary

instal secondry ACS and will restore the file on backup taken from primary

in primary i will add aditional AAA server and will put the ip of secondry

in secondry i will put the AAA server primary ACS IP.

on wirless contoller i will add IP of secondry ACS.

is it right or wrong or do you want to add few things in it......do still have to syn it with primary and yes how i will do that.....secondly while installing ACS it ask abt that will ACS use internal database or external.....in this scenario what shd i choose.....i have been told that primary uses windows AD....thanks again for your kind time and reply again...waiting for your response.

The_guroo_2 Tue, 08/04/2009 - 17:53

Hi again.....can you please help me out as i am abt to install th ebackup ACS

i need folllowing info

how primary and backup is identified in ACS group....i have primary installed but it has a secondry AAA config which was decommisoned long time back when i try to remov eit it gives error saying that its areplicating partner cant delete....what is the way to delete that.....secondly what parameters do i have to set so that secondry get all info from primary....i have installed the sofeware on secondry no wi thinking to add AAA server Ip of the primary what shd be the second step.....plz help m eout

Actions

This Discussion