Cisco Systems 4.2 manual Configuring a Basic Site, Aregcmd Commands, Running aregcmd

Page 54

Chapter 4 Configuring Cisco Access Registrar 4.2

Configuring a Basic Site

You can use CAR’s command completion feature to see what commands are possible from your current directory location in the CAR server hierarchy by pressing the Tab key. You can also press the Tab key after entering a command to see which objects you might want to manage.

The aregcmd commands are command-line order dependent; that is, the arguments are interpreted based on their position on the command line. To indicate an empty string as a place holder on the command line, use either two single quotes ('') or two double quotes (""). In addition, if you use any arguments that contain spaces, make sure to quote the arguments.

aregcmd Commands

The aregcmd commands can be grouped into the following categories:

Navigation commands—navigates within the Cisco AR hierarchy; commands include cd, ls, pwd, next, prev, filter, and find.

Object commands—adds or deletes objects; commands include add and delete.

Property commands—changes the value of properties; commands include set, unset, and insert.

Server commands—manages the server; commands include save, validate, start, stop, reload, status, stats, and trace.

Application commands—allows user access to the application; commands include login, logout, exit, quit, and help.

Session management commands—queries the server about sessions, release active sessions, or count the number of sessions; commands include query-sessions, release-sessions,and count-sessions..

This chapter uses only a few of the above commands to configure the Cisco AR RADIUS server. For more information about all the aregcmd commands, see Chapter 2, Using the aregcmd Commands, in the Cisco Access Registrar User Guide.

Configuring a Basic Site

The simplest RADIUS server configuration is a site that uses a single user list for all its users, writes its accounting information to a file, and does not use session management to allocate dynamic resources.

To configure such a site, do the following:

1.Run the aregcmd command on your Cisco AR machine.

2.Configure the Cisco AR RADIUS server settings, such as the server name and the server defaults.

3.Add users by copying the sample users.

4.Configure the Network Access Server(NAS) clients and proxies that communicate with Cisco AR.

5.Change profile attributes as needed.

6.Save your changes and reload your Cisco AR RADIUS server.

Running aregcmd

aregcmd is the command-line interface program used to configure the Cisco AR server. The aregcmd program is located in $INSTALL/usrbin.

Installing and Configuring Cisco Access Registrar, 4.2

4-2

OL-17221-02

 

 

Image 54
Contents Installing and Configuring Cisco Access Registrar Installing and Configuring Cisco Access Registrar N T E N T S Upgrading Cisco Access Registrar Software Installing Cisco Access Registrar Software from CD-ROM3-14 Creating and Setting Group Membership Configuring Session Management Viii Obtaining Documentation Cisco.comDocumentation Feedback Reporting Security Problems in Cisco ProductsYou can access international Cisco websites at this URL Cisco Product Security OverviewObtaining Technical Assistance Cisco Technical Support & Documentation WebsiteSubmitting a Service Request Definitions of Service Request SeverityObtaining Additional Publications and Information XiiiXiv Installation Dialog Overview Installation TypeJava 2 Runtime Environment Installation LocationLicense File Location Open Database ConnectivityContinue with Installation Downloading Cisco Access Registrar SoftwareExample Configuration Base DirectoryCisco Access Registrar 4.2 Licensing CSCOar-4.2.1-sol10-k9.tar.gz for SolarisLicense slabs available in CAR 4.2 are listed in Table Getting Cisco Access Registrar 4.2 LicenseLicense Slabs Or stand-bySample License File Installing Cisco Access Registrar 4.2 LicensesAdding Additional Cisco Access Registrar 4.2 Licenses Opt/CSCOar/bin/arserver restartLaunching aregcmd Aregcmd Command-Line OptionDisplaying License Information Aregcmd -l directorynameOL-17221-02 Installing the Cisco Access Registrar 4.2 License File This chapter contains the following sectionsDeciding Where to Install Installing Cisco Access Registrar Software from CD-ROMInstalling Downloaded Software For a full install, press Enter Common Solaris Installation StepsEnter the following command to begin the installation Zcat CSCOar-4.2.1-sol9-K9.tar.gz tar xvfInstalling and Configuring Cisco Access Registrar Enter Y to install the setuid/setgid files Configuring Snmp Installing Cisco Access Registrar 4.2 Software on LinuxInstalling Cisco Access Registrar on LDoms RPC Bind ServicesChmod 777 CSCOar-4.2.1-lnx26-install-K9.sh Common Linux Installation StepsCp CSCOar-4.2.1-lnx26-install-K9.sh /tmp Cd /cdrom/cdrom0/kit/linux-2.4Enter the name of the script file to begin the installation CSCOar-4.2.1-lnx26-install-k9.shPreparing OL-17221-02 Upgrading Cisco Access Registrar Software Solaris Software Upgrade OverviewLinux Software Upgrade Overview Cd /opt Mv AICar1 CSCOarEtc/init.d/arserver restart Software Upgrade Tasks Disabling ReplicationCd /radius/replication Removing the AICar1 Package Pkgrm AICar1Enter y or yes to continue removing the AICar1 package Removing the CSCOar Package Pkgrm CSCOarEnter y or yes to continue removing the CSCOar package Using uninstall-ar to Remove Linux Software Cd /opt/CSCOar/bin Uninstall-arEnter Yes or Y to continue removing the Linux software Installing the Cisco Access Registrar License File Upgrading Cisco Access Registrar Solaris SoftwareZcat CSCOar-4.2.1-sol9-k9.tar.gz tar xf Http//java.sun.com Where is the J2RE installed? ?,q Enter the administrator userID and password Enter Y to preserve the local databaseBack-up Copy of Original Configuration VSA Update Script Removing Old VSA NamesUpgrading Cisco Access Registrar Linux Software Opt/CSCOar/dataServer Run the uninstall-ar program as shown below Cd /opt/CSCOar/bin arserver stopCd /cdrom/cdrom0/kit/linux-2.6 Build Date Fri Nov 07 235551 Enter Y to remove old sessions or N to retain old sessions Backup Copy of Original Configuration OraclehomeRemoving Old VSA Names Configuring Snmp Restarting ReplicationOL-17221-02 Using aregcmd General Command SyntaxConfiguring a Basic Site Aregcmd CommandsRunning aregcmd Cd admin Changing the Administrator’s PasswordCd //localhost/Administrators Set PasswordCd /Administrators Configuring the Radius ServerCreating Additional Administrators Add jane testadminSelecting Ports to Use Checking the System-Level DefaultsSet DefaultSessionManager Checking the Server’s HealthSave Displaying the UserListsAdd ReloadLs -R Displaying the Default UserListAdding Users to UserLists Add janeCd /Radius/UserLists/Default Delete beth Use the set command to provide a password for user janeSet password jane Displaying UserGroupsCd /Radius/Clients Configuring ClientsAdding a NAS Add QuickExampleNASCd /Radius/Profiles/Default-PPP-users/Attributes Configuring ProfilesSetting Radius Attributes Set Service-Type FramedSaving and Reloading Validating and Using Your ChangesAdding Multiple Cisco AV Pairs Set Framed-Routing 192.168.1.0/24Radclient -s Testing Your ConfigurationUsing radclient Simple john johnSetting the Trace Level Configuring AccountingTroubleshooting Your Configuration P001 sendStopping the Master Agent Enabling Snmp in the Cisco Access Registrar ServerSet Enabled True Aregcmd Cd /Radius/Advanced/SNMPModifying the snmpd.conf File Access ControlCreate a view to enable the groups to have rights Opt/CSCOar/bin/arserver stopTrap Recipient Configuring Dynamic DNSRestarting the Master Agent System Contact InformationCd /Radius/RemoteServers Add ddns Cd /Radius/Advanced/DDNS/TSIGKeys Add foo.comCd foo.com Set Secret base64-encoded string Cd ddns Set Protocol dynamic-dnsTesting Dynamic DNS with radclient Cd /Radius/ResourceManagers Add ddnsSave the changes you have made Acctrequest Start username Cd /opt/CSCOar/bin AregcmdTrace Launch radclient Cd /opt/CSCOar/bin Radclient Set p acctrequest Start bobOL-17221-02 Configuring Groups Configuring Specific GroupsCreating and Setting Group Membership Cd /Radius/UserLists/Default/jeanCd /Radius/UserGroups Configuring a Default Group Using a Script to Determine ServiceConfiguring Multiple UserLists Set Group DefaultCreating Separate UserLists Configuring Separate UserListsConfiguring Users Populating UserListsConfiguring Services Creating Separate ServicesCreating the Script Choosing the Scripting Point Configuring the ScriptClient Scripting Cd /RadiusConfiguring a Remote Server for AA Handling Multiple ScriptsAdd ParseUserName Rex libParseUserName.so ParseUserName Cd /Radius/RemoteServers Configuring the Remote ServerCreating a RemoteServer Add QuickExampleUse the set command to specify the protocol ldap Set protocol ldapCreating Services Add remote-ldap Remote Ldap ServiceSet type ldap Set DefaultAuthentication remote-ldap Configuring Multiple Remote ServersChanging the Authentication and Authorization Defaults Use the set command to change the DefaultAuthorizationConfiguring Two Remote Servers Creating RemoteServersAdd North Creating the Services Use the cd command to change to the Scripts object Set IncomingScript ParseRemoteServersConfiguring Session Management Configuring a Resource ManagerCreating a Resource Manager Configuring a Session Manager Creating a Session ManagerEnabling Session Management Configuring Session ManagementUse the reload command to reload the Cisco AR server Set 1 rm-100Symbols PPPInstalling CAR on LDoms DefaultAuthorizationServiceDefault ports Default-PPP-users Overview SolarisRoundRobin policy RPC services MultipleServersPolicy 5-6,5-11,5-14Reloading Reloading server Remote Servers Sample users Save command Transactions per secondDefinition Well-known ports
Related manuals
Manual 214 pages 55.15 Kb Manual 34 pages 46.13 Kb

4.2 specifications

Cisco Systems, a global leader in IT and networking solutions, has consistently evolved to meet the demands of modern enterprises. One of its noteworthy offerings is Cisco Systems 4.2, a version that embodies a significant leap in networking technology and capability. With its rich set of features, Cisco Systems 4.2 caters to a wide range of industries, facilitating enhanced performance and security.

One of the main features of Cisco Systems 4.2 is its improved scalability. The architecture has been designed to support an ever-increasing number of devices and users, making it ideal for growing enterprises. The enhanced scalability allows organizations to expand their network capacities without compromising performance, ensuring seamless integration of new technologies and devices.

Another critical aspect of Cisco Systems 4.2 is its advanced security protocols. With cyber threats constantly evolving, Cisco prioritizes security in this version by offering robust features such as end-to-end encryption, improved firewall capabilities, and enhanced intrusion detection systems. These security enhancements provide organizations with peace of mind, knowing that their sensitive data and networks are well-protected from unauthorized access and potential threats.

Cisco Systems 4.2 also introduces intelligent automation features, which significantly streamline network management. Through the use of artificial intelligence and machine learning, Cisco enables organizations to automate routine tasks, reduce human error, and optimize performance. This automation not only enhances efficiency but also allows IT teams to focus on strategic initiatives rather than day-to-day maintenance.

Moreover, Cisco Systems 4.2 emphasizes infrastructure flexibility. The new architecture supports various deployment models, including on-premises, cloud, and hybrid environments. This flexibility enables organizations to adapt their networking strategies according to their specific needs and operational requirements, facilitating a more tailored approach to IT infrastructure.

Collaboration tools have also been enhanced in this version. Cisco Systems 4.2 integrates advanced communication solutions that empower teams to collaborate in real time, regardless of their geographical location. Features such as high-definition video conferencing, secure messaging, and file sharing enhance productivity and foster innovation across teams.

In summary, Cisco Systems 4.2 stands out as a forward-thinking networking solution with key features such as scalability, advanced security, intelligent automation, flexible infrastructure, and enhanced collaboration tools. These characteristics position Cisco Systems 4.2 as an invaluable asset for enterprises striving for digital transformation in an increasingly interconnected world. The ongoing innovation reflects Cisco's commitment to delivering cutting-edge technology solutions that drive business success and resilience.