Filter
Top Products
5-12
Configuration Guide for Cisco Secure ACS 4.2
OL-14390-02
Chapter 5 Password Policy Configuration Scenario
Viewing Administrator Entitlement Reports
Step 4 Type the appropriate IP address ranges in accordance with the IP Address Filtering option.
Step 5 Click the appropriate HTTP Port Allocation option to allow all ports or restrict access to certain ports.
If you restrict access, type the range of the restricted ports.
Step 6 Check this option if you want ACS to use the SSL.
Step 7 Click Submit.
ACS saves and begins enforcing the access policy settings.
Viewing Administrator Entitlement Reports
To assist in SOX compliance, ACS produces entitlement report, which contain data extracted from the
ACS configuration and formatted into text based files.
ACS produces entitlement reports for administrators and users. The reports that you can generate are:
• Privilege—The privileges granted to a selected administrator.
• Combined Privilege—The privileges granted to all administrators.
• Users to Groups Mapping—The group membership of every user.
Secure Socket Layer Setup
Use HTTPS Transport for
Administration Access
Enables ACS to use the secure socket layer (SSL) protocol to
encrypt HTTP traffic between the CSAdmin service and the web
browser that accesses the web interface. This option enables
encryption of all HTTP traffic between the browser and ACS, as
reflected by the URLs, that begin with HTTPS. Most browsers
include an indicator for SSL-encrypted connections.
To enable SSL, first install an a server certificate and a
certification authority certificate. Choose System
Configuration > ACS Certificate Setup to access the
installation process. With SSL enabled, ACS begins using
HTTPS at the next administrator login. Current administrator
sessions are unaffected. In the absence of a certificate, ACS
displays an error.
Table 5-1 Access Policy Options (continued)
Option Description