Cisco Systems 4.2 Server User Manual


  Open as PDF
of 214
 
1-3
Configuration Guide for Cisco Secure ACS 4.2
OL-14390-02
Chapter 1 Overview of ACS Configuration
Summary of Configuration Steps
By using database synchronization
By using database replication
For detailed instructions, see “Displaying RADIUS Configuration Options” in Chapter 2 of the User
Guide for Cisco Secure ACS 4.2, “Using the Web Interface.”
Step 7 Configure Certificates.
This step is required if you are using EAP-TLS, Secure Sockets Layer (SSL), or Cisco Network
Admission Control (NAC).
For detailed instructions, see Step 3: Install and Set Up an ACS Security Certificate, page 6-6.
Step 8 Configure Global Authentication Settings.
Configure the security protocols that ACS uses to authenticate users. You can configure the following
global authentication methods:
PEAP
EAP-FAST
EAP-TLS
LEAP
EAP-MD5
Legacy authentication protocols, such as MS-CHAP Version 1 and Version 2
For detailed instructions, see “Global Authentication Setup” in Chapter 8 of the User Guide for Cisco
Secure ACS 4.2, “System Configuration: Authentication and Certificates.”
Step 9 Configure Shared Profile Components.
You can configure the following shared profile components:
Downloadable IP ACLs
Network Access Filtering
RADIUS Authorization Components
Network Access Restrictions
Command Authorization Sets
For detailed instructions, see Chapter 3 of the User Guide for Cisco Secure ACS 4.2, “Shared Profile
Components.”
Step 10 Set Up Network Device Groups.
You can set up network device groups to simplify configuration of common devices. For detailed
information, see the User Guide for Cisco Secure ACS 4.2.
Step 11 Add AAA clients.
You can add RADIUS clients or TACACS+ clients. For detailed instructions, see Step 2: Configure a
RADIUS AAA Client, page 6-5.
Step 12 Set Up User Groups.
Set up user groups to apply common configuration settings to groups of users. For detailed instructions,
see Chapter 2 of the User Guide for Cisco Secure ACS 4.2, “User Group Management.”
Step 13 Configure Posture Validation.
If you are using ACS with NAC, configure posture validation.
 previous next