Chapter 2 Migrating from ACS 4.x to ACS 5.3

Migrating from ACS 4.x to ACS 5.3

User-Defined Fields (from the Interface Configuration section)

User Groups

Shared Shell Command Authorization Sets

User TACACS+ Shell Exec Attributes (migrated to user attributes)

Group TACACS+ Shell Exec Attributes (migrated to shell profiles)

User TACACS+ Command Authorization Sets

Group TACACS+ Command Authorization Sets

Shared, Downloadable ACLs

EAP-FAST Master Keys

Shared RADIUS Authorization Components (RACs)

RADIUS VSAs

Note The Migration utility does not migrate public key infrastructure (PKI) configuration data and does not support certificate migration.

To migrate data from ACS 4.x to ACS 5.3:

Step 1 Upgrade the ACS 4.x version to a migration-supported version if your ACS 4.x server currently does not run one of the migration-supported versions.

For a list of migration-supported ACS versions, see Supported Migration Versions, page 2-2.

Step 2 Install the same migration-supported version of ACS on the migration machine, which is a Windows server.

Step 3 Back up the ACS 4.x data and restore it on the migration machine.

Step 4 Place the Migration utility on the migration machine.

You can get the Migration utility from the Installation and Recovery DVD.

Step 5 Run the Analyze and Export phase of the Migration utility on the migration machine. Step 6 Resolve any issues in the Analyze and Export phase.

Step 7 Run the Import phase of the Migration utility on the migration machine.

The import phase imports data into the 5.3 server.

Note If you have a large internal database, then we recommend that you import the data into a standalone 5.x primary server and not to a server that is connected to several secondary servers. After data migration is complete, you can register the secondary servers to the standalone 5.x primary server.

For detailed information about using the migration utility, refer to

http://www.cisco.com/en/US/docs/net_mgmt/cisco_secure_access_control_system/5.3/migration/ guide/migration_guide.html.

After you migrate the data, you can reconstruct your policies with the migrated objects.

User Guide for Cisco Secure Access Control System 5.3

2-4

OL-24201-01

 

 

Page 36
Image 36
Cisco Systems OL-24201-01 manual Migrating from ACS 4.x to ACS