Manuals / Cisco Systems / Computer Equipment / Network Card

Cisco Systems 4.2 manual 2-10, Installing Cisco Access Registrar, OL-17221-02

Models: 4.2

1 94

Download 94 pages 10.59 Kb

Page 32

Image 32

Chapter 2 Installing Cisco Access Registrar 4.2

Installing Cisco Access Registrar 4.2 Software on Linux

	Installing and Configuring Cisco Access Registrar, 4.2
2-10	OL-17221-02

Page 32

Image 32

Cisco Systems manual 2-10, Installing Cisco Access Registrar 4.2 Software on Linux, OL-17221-02

Contents

Americas Headquarters Installing and Configuring Cisco Access RegistrarNovember Cisco Systems, Inc 170 West Tasman Drive San Jose, CAInstalling and Configuring Cisco Access Registrar Copyright 2007 Cisco Systems, Inc. All rights reservedC O N T E N T S OverviewCisco.com License SlabsUsing pkgrm to Remove Cisco Access Registrar Solaris Software 3-113-12 3-12Installing Cisco Access Registrar Software from CD-ROM Using aregcmdCreating a RemoteServer Creating and Setting Group MembershipUsing a Script to Determine Service Configuring Session Management Configuring Session ManagementContents Installing and Configuring Cisco Access RegistrarOL-17221-02 viiiContents Installing and Configuring Cisco Access Registrar Cisco.com About This GuideObtaining Documentation Reporting Security Problems in Cisco Products Documentation FeedbackCisco Product Security Overview For Emergencies only - security-alert@cisco.comhttp//tools.cisco.com/RPF/register/register.do Obtaining Technical AssistanceCisco Technical Support & Documentation Website Submitting a Service Request Definitions of Service Request SeverityObtaining Additional Publications and Information xiiiOL-17221-02 Installing and Configuring Cisco Access RegistrarAbout This Guide Installation Dialog Overview Installation TypeOverview C H A P T E RInstallation Location License File LocationJava 2 Runtime Environment Open Database ConnectivityDownloading Cisco Access Registrar Software Example ConfigurationContinue with Installation Base DirectoryCisco Access Registrar 4.2 Licensing CSCOar-4.2.1-sol10-k9.tar.gz for SolarisGetting Cisco Access Registrar 4.2 License License SlabsProduct DescriptionInstalling Cisco Access Registrar 4.2 Licenses Adding Additional Cisco Access Registrar 4.2 LicensesSample License File opt/CSCOar/bin/arserver restartaregcmd Command-Line Option Displaying License InformationLaunching aregcmd aregcmd -l directorynameOL-17221-02 Chapter 1 Overview Cisco Access Registrar 4.2 LicensingInstalling and Configuring Cisco Access Registrar Installing Cisco Access Registrar Installing the Cisco Access Registrar 4.2 License FileInstalling the Cisco Access Registrar 4.2 License File, page Installing Cisco Access Registrar 4.2 Software on Solaris, pageDeciding Where to Install Installing Cisco Access Registrar Software from CD-ROMInstalling Downloaded Software Deciding Where to InstallCommon Solaris Installation Steps Step 5 Proceed to Common Solaris Installation Stepszcat CSCOar-4.2.1-sol9-K9.tar.gz tar xvf pkgadd -d /tmp CSCOarStep 9 Enter the directory or mount point where the J2RE is installed Step 13 Enter Y to install the setuid/setgid files Step 14 Enter Y to continue with the software installationChapter 2 Installing Cisco Access Registrar Installing Cisco Access Registrar 4.2 Software on SolarisInstalling Cisco Access Registrar 4.2 Software on Linux Installing Cisco Access Registrar on LDomsConfiguring SNMP RPC Bind ServicesCommon Linux Installation Steps cp CSCOar-4.2.1-lnx26-install-K9.sh /tmpchmod 777 CSCOar-4.2.1-lnx26-install-K9.sh cd /cdrom/cdrom0/kit/linux-2.4CSCOar-4.2.1-lnx26-install-k9.sh Build Date Mon Nov 03 235551Build Host spencer.cnslab.cisco.com Copyright CConfiguring SNMP Chapter 2 Installing Cisco Access RegistrarInstalling Cisco Access Registrar 4.2 Software on Linux Installing and Configuring Cisco Access Registrar2-10 Chapter 2 Installing Cisco Access RegistrarInstalling Cisco Access Registrar 4.2 Software on Linux Installing and Configuring Cisco Access RegistrarSolaris Software Upgrade Overview Solaris Software Upgrade Overview, pageLinux Software Upgrade Overview, page Software Upgrade Tasks, page Installing the Cisco Access Registrar License File, pageLinux Software Upgrade Overview See Using pkgrm to Remove Cisco Access Registrar Solaris Softwarecd /opt mv AICar1 CSCOar etc/init.d/arserver restartSoftware Upgrade Tasks Disabling Replicationcd /radius/replication etc/init.d/arserver restartpkgrm AICar1 Using pkgrm to Remove Cisco Access Registrar Solaris SoftwareRemoving the AICar1 Package Removing the CSCOar Package pkgrm CSCOarChapter 3 Upgrading Cisco Access Registrar Software Software Upgrade TasksUsing uninstall-ar to Remove Linux Software cd /opt/CSCOar/bin uninstall-arInstalling the Cisco Access Registrar License File Upgrading Cisco Access Registrar Solaris SoftwareDeciding Where to Install, page Installing Cisco Access Registrar Software from CD-ROM, pagezcat CSCOar-4.2.1-sol9-k9.tar.gz tar xf Installing Cisco Access Registrar Software from CD-ROMInstalling Downloaded Software Common Solaris Installation StepsStep 1 For a full install, press Enter 3-10 Step 7 Enter the administrator userID and passwordStep 9 Enter Y to install the setuid/setgid files Step 10 Enter Y to continue with the software installationBack-up Copy of Original Configuration 3-11Configuring SNMP If you choose not to use the SNMP features of CAR, the installation process is completed. To use SNMP features, complete the configuration procedure described in Configuring SNMP3-12 VSA Update ScriptRemoving Old VSA Names Upgrading Cisco Access Registrar Linux Software Using uninstall-ar to Remove Linux Software, pageCommon Linux Installation Steps, page opt/CSCOar/datauninstall-ar cp CSCOar-4.2.1-lnx26-install-k9.sh /tmpcd /opt/CSCOar/bin arserver stop cd /cdrom/cdrom0/kit/linux-2.6chmod 777 CSCOar-4.2.1-lnx26-install-k9.sh CSCOar-4.2.1-lnx26-install-K9.sh3-15 Common Linux Installation Steps3-16 directory where it is installedBackup Copy of Original Configuration 3-17opt/CSCOar/jakarta-tomcat-4.0.6/webapps/tomcat-docs/ssl-howto.html Preparing3-18 VSA Update ScriptChapter 3 Upgrading Cisco Access Registrar Software Upgrading Cisco Access Registrar Linux SoftwareConfiguring SNMP Restarting Replication3-19 Configuring SNMP3-20 Chapter 3 Upgrading Cisco Access Registrar SoftwareInstalling and Configuring Cisco Access Registrar Restarting ReplicationConfiguring Cisco Access Registrar Using aregcmdGeneral Command Syntax Using aregcmd, page Configuring a Basic Site, pageRunning aregcmd Configuring a Basic Sitearegcmd Commands Changing the Administrator’s Password cd //localhost/Administratorscd admin set PasswordConfiguring the RADIUS Server Creating Additional Administratorscd /Administrators add jane testadminChecking the System-Level Defaults set DefaultSessionManagerSelecting Ports to Use Checking the Server’s HealthDisplaying the UserLists Step 1 Change directory to /Radius/Advanced/Portscd /Radius/Advanced/Ports add add lsDisplaying the Default UserList Adding Users to UserListsls -R add janeset password jane cd /Radius/UserLists/Default delete bethDisplaying UserGroups Deleting UsersConfiguring Clients Adding a NAScd /Radius/Clients add QuickExampleNASConfiguring Profiles Setting RADIUS Attributesset IncomingScript ParseServiceHints EnableDynamicAuthorization TRUE EnableNotifications TRUEValidating and Using Your Changes Adding Multiple Cisco AV PairsSaving and Reloading set Framed-Routing 192.168.1.0/24Testing Your Configuration Using radclientradclient -s simple john johnConfiguring Accounting Troubleshooting Your ConfigurationSetting the Trace Level p001 sendEnabling SNMP in the Cisco Access Registrar Server set Enabled TRUEStopping the Master Agent aregcmd cd /Radius/Advanced/SNMPAccess Control Modifying the snmpd.conf Fileopt/CSCOar/bin/arserver stop 4-15Configuring Dynamic DNS Restarting the Master AgentTrap Recipient System Contact Informationcd /Radius/Advanced/DDNS/TSIGKeys add foo.com cd foo.com set Secret base64-encoded stringcd /Radius/RemoteServers add ddns cd ddns set Protocol dynamic-dnsTesting Dynamic DNS with radclient set IPAddress 10.10.10.1 ip address of primary dns server for zoneset ForwardZoneTSIGKey foo.com set ReverseZoneTSIGKey foo.com cd /Radius/ResourceManagers add ddnscd /opt/CSCOar/bin aregcmd trace Step 3 Launch radclient cd /opt/CSCOar/bin radclientacctrequest Start username set p acctrequest Start bob4-20 Chapter 4 Configuring Cisco Access Registrar Configuring Dynamic DNSInstalling and Configuring Cisco Access Registrar OL-17221-02Customizing Your Configuration Configuring GroupsConfiguring Specific Groups C H A P T E RCreating and Setting Group Membership add PPP-users Users who always connect using PPP default-PPP-userscd /Radius/UserLists/Default/jean ObjectConfiguring a Default Group Using a Script to Determine Servicecd /Radius/UserGroups/Default set AuthorizationScript AuthorizeServiceConfiguring Multiple UserLists set Group Defaultsave reloadConfiguring Separate UserLists Configuring UsersCreating Separate UserLists Populating UserListsConfiguring Services Creating Separate Servicescd /Radius/Services cd /Radius/Services/North-usersConfiguring the Script Client ScriptingChoosing the Scripting Point cd /RadiusConfiguring a Remote Server for AA Handling Multiple Scriptsadd ParseUserName Rex libParseUserName.so ParseUserName Save tcl scripts in the directory /opt/CSCOar/scripts/radius/tclConfiguring the Remote Server Creating a RemoteServercd /Radius/RemoteServers add QuickExampleset UserPasswordAttribute password set protocol ldapset Port 5-10Creating Services add remote-ldap Remote LDAP Serviceset type ldap 5-11Configuring Multiple Remote Servers Changing the Authentication and Authorization Defaultsset DefaultAuthentication remote-ldap set DefaultAuthorization remote-ldapConfiguring Two Remote Servers Creating RemoteServersadd North 5-13Creating the Services cd /Radius/RemoteServers/Northset protocol radius set SharedSecretset IncomingScript ParseRemoteServers 5-15Configuring the Script Choosing the Scripting PointConfiguring Session Management Configuring a Resource ManagerCreating a Resource Manager 5-16Configuring a Session Manager Creating a Session Managercd /Radius/ResourceManagers add rm-100Configuring Session Management Enabling Session Managementset 1 rm-100 5-18IN-1 SymbolsI N D E Java 2 Platform IN-2Failover policy IN-3 IN-4