CiscoSecure Access Control Server

Previous page
Table of content
Next page

The CS ACS (as it is usually known) is a software package for Windows 2000 Server or Unix (Solaris) servers. System requirements are as follows :

  • Windows 2000 CS ACS 3.2 is supported on Windows 2000 Server with SP3 installed. Previous releases of CS ACS for Windows (2.5 and 2.6 for instance) were also supported on Windows 2000 Advanced Server and Datacenter Server (without Microsoft Clustering Services); those releases are now at End of Life.

  • Unix CS ACS 2.3(6) is supported on an Ultra 1 or compatible workstation running Solaris 2.51, 2.6, 7, or 8. CS ACS for Unix is being discontinued in 2003.

The CS ACS supports both RADIUS and TACACS+ for AAA (and it supports their simultaneous use). It is a key element of the Cisco Identity-Based Networking Services (IBNS). With release 3.2, Cisco began offering the CiscoSecure Solution Engine, a 1-Rack Unit security- hardened appliance with CS ACS installed. (Think of it the same way as you think of a PIX versus a router with a firewallremember to make your choice based on performance of the dedicated appliance versus your needs, and then compare to the advantages of a software-only solution integrated on another device.)

graphics/alert_icon.gif

Actually configuring the CS ACS is not in the list cited at the beginningremember, you might be asked about configuration for "IOS routers, PIX Firewalls, VPN Concentrators, Cisco IDS Sensors, Cisco Host IDS, and the Cisco VPN Client." However, you should understand how the supporting devices, such as the CS ACS, work, even though you might not have to know their configuration commands.


The CS ACS runs as several modules, all of which can be started or stopped individually:

  • CSAdmin Provides the HTML management interface

  • CSAuth Provides the authentication service

  • CSDBSynch Provides synchronization of the CS ACS database with an external RDBMS database

  • CSLog Provides logging services (accounting and system activity logging)

  • CSMon Provides monitoring, recording, and notification of the CS ACS's performance, and includes automatic responses in some scenarios

  • CSTacacs Provides communication between TACACS+ AAA clients and the CSAuth service

  • CSRadius Provides communication between RADIUS AAA clients and the CSAuth service


Previous page
Table of content
Next page
CSI Exam Cram 2 (Exam 642-541)
CCSP CSI Exam Cram 2 (Exam Cram 642-541)
ISBN: 0789730243
EAN: 2147483647
Year: 2002
Pages: 177
Authors: Annlee Hines
BUY ON AMAZON
High-Speed Signal Propagation[c] Advanced Black Magic
Programming Microsoft ASP.NET 3.5
Microsoft VBScript Professional Projects
InDesign Type: Professional Typography with Adobe InDesign CS2
Junos Cookbook (Cookbooks (OReilly))
Programming .Net Windows Applications
flylib.com © 2008-2017.
If you may any questions please contact us: flylib@qtcs.net
Privacy policy