Cisco Systems 4.2 Server User Manual


  Open as PDF
of 214
 
4-8
Configuration Guide for Cisco Secure ACS 4.2
OL-14390-02
Chapter 4 Using RDBMS Synchronization to Create dACLs and Specify Network Configuration
Using RDBMS Synchronization to Configure dACLs
Step 7 For each ACS that you want this ACS to update with data from the accountActions table, click the ACS
in the AAA Servers list, and then click the right arrow button (-->) on the interface.
The ACS that you chose appears in the Synchronize list.
Step 8 To remove ACSs from the Synchronize list, click the ACS in the Synchronize list, and then click the left
arrow button (<--).
The ACS that you chose is removed from the Synchronize list.
Step 9 At the bottom of the browser window, click Synchronize Now.
ACS immediately begins a synchronization event. To check the status of the synchronization, view the
RDBMS Synchronization report in Reports and Activity.
Step 5: Perform RDBMS Synchronization
You can perform the RDBMS Synchronization and create the dACLs in two ways. By running:
RDBMS Synchronization from the ACS GUI.
CSDBSync manually to create the dACLs.
Running RDBMS Synchronization from the ACS GUI
When you click Synchronize Now on the RDBMS Synchronization page for ACS for Windows or for
the ACS SE, ACS begins a synchronization event and creates the dACLs specified in the accountActions
CSV file.
Running CSDBSync Manually to Create the dACLs
You can run CSDBSync manually to create the dACLs.
ACS for Windows
In Windows, use the command line interface to invoke the csdbsync -run command.
The CSDBSync service reads each statement from the accountActions CSV file and updates the ACS
internal database as the action codes in the file specify. In a distributed environment, a single ACS,
known as the senior synchronization partner, accesses the accountActions table and sends
synchronization commands to its synchronization partners.
Step 1 Open a command prompt window.
Step 2 Enter the following commands:
a. To stop the CSDBSync service, enter net stop csdbsync.
b. Enter net start csdbsync.
c. Enter one of the following commands:
csdbsync -run
csdbsync -syncnow
 previous next