Chapter 16 Managing System Administrators

Resetting the Administrator Password

Step 3 Click Create in the IP Range(s) area.

A new window appears. Enter the IP address of the machine from which you want to allow remote access to ACS. Enter a subnet mask for an entire IP address range.

Step 4 Click OK.

The IP Range(s) area is populated with the IP addresses. Repeat Step 3 to add other IP addresses or ranges for which you want to provide remote access.

Step 5 Click Submit.

Reject Remote Administration from a Select List of IP Addresses

To reject administrators from accessing ACS remotely:

Step 1 Choose System Administration > Administrators > Settings > Access.

The IP Addresses Filtering page appears.

Step 2 Click Reject connections from listed IP addresses radio button.

The IP Range(s) area appears.

Step 3 Click Create in the IP Range(s) area.

A new window appears.

Step 4 Enter the IP address of the machine that you do not want to access ACS remotely. Enter a subnet mask for an entire IP address range.

Step 5 Click OK.

The IP Range(s) area is populated with the IP addresses. Repeat Step 3 to add other IP addresses or ranges that you want to reject.

Step 6 Click Submit.

Note It is possible to reject connection from all IP addresses. You cannot reset this condition through the ACS web interface. However, you can use the following CLI command:

acs reset-password

Refer to the CLI Reference Guide for Cisco Secure Access Control System 5.3 for more information.

Resetting the Administrator Password

While configuring administrator access settings, it is possible for all administrator accounts to get locked out, with none of the administrators able to access ACS from any IP address in your enterprise. If this happens, you must reset the administrator password from the ACS Config CLI. You must use the following command to reset all administrator passwords:

access-setting accept-all

For more information on this command, refer to

 

User Guide for Cisco Secure Access Control System 5.3

16-12

OL-24201-01

Page 487 Page 489
Page 488
Image 488
Cisco Systems OL-24201-01 manual Resetting the Administrator Password, Access-setting accept-all, 16-12
Page 487 Page 489
Top Page Image Contents