Configuring Network Device Groups

Previous page
Table of content
Next page

As you can see in Figure 9-5, the Distributed System Settings check box and the Network Device Groups (NDG) check box have been selected in Interface Configuration. When they are selected, a NDG, which is a grouping of AAA servers and AAA clients, is formed. This simply allows you to group AAA clients and AAA servers into groups that might have something in common; for example, you might have a Network Device Group called Routers and another called Firewalls. Of course, you can tell by the name of the group what type of AAA devices is in the group.

Figure 9-5. Selecting NDGs


Refer to Figure 9-3, and you don't see any NDGs enabled. You can clearly see an entry for an AAA client named router and an entry for an AAA server.

After you have enabled NDGs in Interface Configuration, this view changes in Network Configuration. Figure 9-6 shows this new view.

Figure 9-6. New View of Network Configuration After Enabling NDGs


When you create a new network device group, initially no users are assigned to it. Likewise, before you configure any NDGs, all users are members of the unassigned group. You can clearly see the Not Assigned group in Figure 9-6. To configure a new network device group, other than the Not Assigned group, follow these steps:

Step 1.

Select the Network Configuration button on the left menu bar of ACS. This opens the Network Configuration page.

Step 2.

Under the Network Device Group's table, click Add Entry.

Step 3.

Select Add.

Step 4.

Next enter a name for the NDG.

Step 5.

Click Submit.

The new NDG that you have just created is now displayed in the Network Device Group table along with the Not Assigned group. Figure 9-7 displays the NDG labeled Perimeter Routers. Note that currently no AAA clients and no AAA servers are in this NDG.

Figure 9-7. Adding a New NDG


After you have added this new group, you have the ability to assign AAA servers and AAA clients to it as you add them to your configuration.

To add a device to your newly formed NDG, perform the following in ACS:

Step 1.

Select Network Configuration.

Step 2.

Click the NDG you want to add devices to.

Step 3.

Select the Add Entry button.

Step 4.

Enter the AAA client information.

Step 5.

Click the Submit + Restart button.

To move an existing AAA client from the Not Assigned NDG to the one you have created, follow these steps:

Step 1.

Select the (Not Assigned) group.

Step 2.

Select the AAA client you want to move.

Step 3.

Using the drop-down list, select the NDG you want this AAA client to be placed into.

Step 4.

Select Submit + Restart.

When you become familiar with NDGs, they can assist you in managing your configurations and making them easier to read, troubleshoot, and keep organized.



Previous page
Table of content
Next page
Cisco Access Control Security(c) AAA Administrative Services
Cisco Access Control Security: AAA Administration Services
ISBN: 1587051249
EAN: 2147483647
Year: 2006
Pages: 173
Authors: Brandon James Carroll
BUY ON AMAZON
Beginners Guide to DarkBASIC Game Programming (Premier Press Game Development)
C & Data Structures (Charles River Media Computer Engineering)
Making Sense of Change Management: A Complete Guide to the Models, Tools and Techniques of Organizational Change
Oracle SQL*Plus: The Definitive Guide (Definitive Guides)
Quantitative Methods in Project Management
.NET-A Complete Development Cycle
flylib.com © 2008-2017.
If you may any questions please contact us: flylib@qtcs.net
Privacy policy