I am installing SecureACS 4.1 from scratch on a new Server. Is there a way for me to migrate the user and groups from a previous 2.4 and 3.0 vs install? there has to be an easier way to create all those groups and users?
Someone at Cisco decided that from 4.0 onwards they wouldnt upgrade from every previous version any more.
I think this means you'd have to upgrade the existing server to 3.1 then create a backup.
NExt install 3.1 on the new server and restore the backup.
Lastly upgrade the new server to 4.1 and cross your fingers it upgrades smoothly!
An easier (but less complete) method is simply to run csutil -d on the first server, copy the dump file to the new one and then use csutil -l. HOWEVER... this can cause problems if you're group/user config uses NDGs (eg NDG->DCS command authorisation) because only NDG indexes are in the dump file.
When you re-create the NDGs on the new server the indexes are likely all be different.
So in summary only use the csutil route if your just moving very simple groups or users.
BTW there is an option for csutil to load just the users from a dump file leaving groups untouched (run csutil -x to find out more)
ps we're seeing more people installing ACS (and aaa-reports!) under VMWare - which then makes hardware upgrades a non-issue.
DocumentationCode download linksGoalRequirementLimitationsSupported ISR
and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and
UCS-E Blades:Step by Step ConfigurationConfigure one of the connectivity
options to access the Cisco IMC from the n...
Firepower Threat Defense (NGFWv) on UCS E-series - Transparent Mode in
HA DocumentationCode download linksGoalRequirementLimitationsSupported
ISR and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and
UCS-E Blades:Step by Step ConfigurationCo...
Question I am currently unable to specify "crypto keyring" command when
configuring VPN connection on my cisco 2901 router. The following
licenses have been activated on my router :