Cisco Systems NME-16ES-1G manual TACACS+ and Radius in Clusters

Page 33

Cisco EtherSwitch Service Modules Feature Guide

How to Configure the Cisco EtherSwitch Service Module

If the cluster command switch is a switch stack and new stack masters are simultaneously elected in the cluster command switch stack and in cluster member switch stacks, connectivity between the switch stacks is lost if there are no redundant connections between the switch stack and the cluster command switch. You must add the switch stacks to the cluster, including the cluster command switch stack.

All stack members should have redundant connectivity to all VLANs in the switch cluster. Otherwise, if a new stack master is elected, stack members connected to any VLANs not configured on the new stack master lose their connectivity to the switch cluster. You must change the VLAN configuration of the stack master or the stack members and add the stack members back to the switch cluster.

If a cluster member switch stack reloads and a new stack master is elected, the switch stack loses connectivity with the cluster command switch. You must add the switch stack back to the switch cluster.

If a cluster command switch stack reloads and the original stack master is not re-elected, you must rebuild the entire switch cluster.

For more information about switch stacks, see the Catalyst 3750 Switch Software Configuration Guide, Cisco IOS Release 12.2 at http://www.cisco.com/univercd/cc/td/doc/product/lan/cat3750/index.htm.

TACACS+ and RADIUS in Clusters

Inconsistent authentication configurations in switch clusters cause Network Assistant to continually prompt for a username and password. If TACACS+ is configured on a cluster member, it must be configured on all cluster members. Similarly, if RADIUS is configured on a cluster member, it must be configured on all cluster members. Furthermore, the same switch cluster cannot have some members configured to use TACACS+ and other members configured to use RADIUS.

For more information about TACACS+ and RADIUS, see the Catalyst 3750 Switch Software

Configuration Guide, Cisco IOS Release 12.2 at

http://www.cisco.com/univercd/cc/td/doc/product/lan/cat3750/index.htm.

Availability of Switch-Specific Features in Switch Clusters

The menu bar on the cluster command switch displays all options available from the switch cluster. Therefore, features specific to a cluster member switch are available from the command-switch menu bar.

How to Configure the Cisco EtherSwitch Service Module

This section contains the following procedures:

Configuring the Cisco EtherSwitch Service Module in the Router, page 36 (required)

Configuring the Cisco EtherSwitch Service Module Using the Switch Setup Program, page 44 (optional)

Shutting Down, Resetting, and Reloading the Cisco EtherSwitch Service Module, page 48

Before installing, configuring, or upgrading the switch, see these Catalyst 3750 switch documents:

For initial configuration information, see the “Using Express Setup” chapter in the getting started guide or to the “Configuring the Switch with the CLI-Based Setup Program” appendix in the hardware installation guide.

Cisco IOS Release 12.2(25)SEC

33

Page 32 Page 34
Image 33
Page 32 Page 34
Contents Release Modification GuideContents Hardware Overview Network Modules Hardware Installation GuideSoftware Features and Benefits Performance Features Ease-of-Use and Ease-of-Deployment FeaturesManagement Options Availability Features Manageability FeaturesVlan Features Security Features QoS and CoS Features Monitoring Features Power-over-Ethernet FeaturesCisco StackWise Concepts Overview of Switch StacksSwitch Stack Membership Stack Master Election and Re-Election Stack Member Numbers Switch Stack Bridge ID and Router MAC AddressStack Member Priority Values Stack Protocol Version Compatibility Switch Stack Software Compatibility RecommendationsSwitch Stack Configuration Files Switch Stack Management Connectivity Accessing the CLI of a Specific Stack Member Clustering ConceptsManagement Connectivity to Specific Stack Members Command Device Characteristics Standby Command Device CharacteristicsCluster Compatibility Candidate and Member Characteristics Automatic Discovery of Candidates and MembersDiscovery of Candidates and Members Through CDP Hops Vlan Discovery of Candidates and Members Through Different VLANs Discovery of Candidates and Members Through Routed Ports SwitchNew out-of-box Discovery of Newly Installed Switches in ClustersHsrp and Standby Cluster Command Switches Other Considerations for Cluster Standby Groups Virtual IP Addresses in ClustersAutomatic Recovery of Cluster Configuration Hostnames in Clusters IP Addresses in ClustersSwitch Clusters and Switch Stacks Passwords in ClustersSwitch Stack Switch Cluster Snmp Community Strings in ClustersSwitch Stack Switch Cluster TACACS+ and Radius in Clusters Availability of Switch-Specific Features in Switch ClustersCisco IOS Release 12.225SEC Using Interface Configuration Mode Boot flash image-name Command or Action PurposeExample Dir flashShow running configuration EnableConfigure terminal Service-module interface slot/port sessionOutput of the show service-module status command Show power inlineShow ip interface brief Control+shift+6Sample Output for the boot flash Command on the Router Sample Output for the dir flash Command on the RouterRouter boot flashc2800-adventerprisek9-mz ExamplesRouter# configure terminal Router# show running config interface gigabitethernet2/0Router# service-module gigabitethernet2/0 session Switch dir flashSwitch# ctrl+shift+6 Switch# show ip interface briefSwitch# show power inline Sample Output for Pressing Ctrl+Shift+6 Followed byDhcp Feature Default SettingSTP Prerequisites Clustering Concepts section on Return Sample Output for Assigning the IP Address and Subnet Mask Sample Output for Entering an Interface NameCommand or Action Purpose Sample Output for Saving the Configuration to NvramRouter# service-module gigabitethernet1/0 shutdown Router# service-module gigabitethernet1/0 resetRouter# service-module gigabitethernet1/0 reload Cisco IOS Release 12.225SEC Restrictions Default Switch Stack ConfigurationAssigning a Stack Member Number Sample Output for the reload slot Command Sample Output for the switch renumber CommandShow switch Switchconfig# switch 6 renumberSample Output for the show switch Command Setting the Stack Member Priority ValueSample Output for the switch priority Command Verifying Information About the Switch StackSwitchconfig# switch 2 priority Switch show switchSwitch# show platform stack-manager all Show switch stack-ports Switchconfig# show switch neighborsUsing the CLI to Manage Switch Clusters RcommandShow version Sample Output for the show cluster members Command Sample Output for the rcommand and show version CommandsChoose View Refresh Choose Cluster Add to Cluster or Cluster member PasswordDetailed Steps from the CLI Creating a Cluster Standby GroupRouting-redundancy Cluster standby-group HSRP-group-nameNo switchport Sample Output for the ping tftpserver Command Sample Output for the copy tftp flash Command Sample Output for the show flash CommandSwitch# show flash Switch# copy tftp flashService-module interface slot/port password-reset Flashinit Recovering from a Corrupted Software Image Using XmodemPassword-reset Service-module interface slot/portFlashinit Control+6Troubleshooting Sample Output for the copy flash xmodem CommandRouter# copy flash xmodem Router# copy tftp xmodem Sample Output for the copy tftp xmodem CommandRouter# service-module gigabitethernet2/0 password-reset Router# service-module gigabitethernet1/0 sessionRecovering from a Lost or Forgotten Password Optional loadhelper filesystem/file-url Enable secret password Boot -x -v deviceimagenameRename Copy flashReload Copy running-configuration startup-configurationOptional set Boot Service-module password-reset commandSample Output for the set Command ExampleSet Scenario Action Result Current-stack-member-number Renumber new-stack-member-number Network Configuration Examples Network Demands Suggested Design Methods Cost-Effective Wiring Closet Redundant Gigabit Backbone Cisco SoftPhone Software Gigabit servers POP Technical Assistance Related DocumentsRelated Topic Document Title Description Link
Top Page Image Contents