Cisco ACS 5.4 Eval on Vmware Workstation demo

Similar Messages

• ACS 5.4 installation on vmware workstation

  Hi all ,
  is it possible to install  cisco acs 5.4 on vmware 8  workstation ??
  thanks
  Pandian

  Yes it is.
  Check this:
  https://supportforums.cisco.com/message/3714114
  Rating useful replies is more useful than saying "Thank you"

• ACS 5.1 install on VMWare Workstation

  Trying to install ACS 5.1 on VMWare Workstation 6.5 getting acs traceback kickstart error, originally setup a SCSI 650GB drive which CentOS didn't recognize, changed drive to IDE but getting different error now.
  speciified disk sda in partition command which does not exist
  http://www.cisco.com/en/US/docs/net_mgmt/cisco_secure_access_control_system/5.1/installation/guide/csacs_vmware.html

  Jason,
  I just ran into the same issue you're experiencing. After playing around, i found out that when creating the VM, if you choose the SCSI disk (with > 60GB capacity, no need to allocate space) and the LSI Logic adaptor (not Buslogic!) it works perfectly.
  Regards,
  Cristian Venegas
  Channel Systems Engineer
  Cisco Chile

• Cisco unity connection 8.6.1 / VMware workstation 10.0

  Hi 
  Downloaded the iso file UCSInstall_UCOS_8.6.1.20000-1.sgn.iso to install Cisco unity connection.
  Downloads Home
  Products
  Unified Communications
  Unified Communications Applications
  Messaging
  Cisco Unity Connection
  Cisco Unity Connection Version 8.6
  Unified Communications Manager / Cisco Unity Connection Updates-8.6(1a)
  Installing the same in VM Ware workstation 10.0, but not getting the selection for unity connection. Its automatically installs CUCM 8.6.1.
  Please let me know any specific vmware settings to install unity connection 8.6.1.

  You are not getting UCxN option because your VMware configuration is not complying with the minimum requirement to install Unity connection.
  If you are not installing through OVA template then look at the VM configuration minimum requirement section of that particular version from the link shared by Aman.
  Thanks
  Manish

• Cisco ACS 5.0 on VMware workstation 7

  Hi,
  I am trying to install ACS 5.0 on workstation, however once the install finsihes it reboots and I enter the Linux bash command line rather than the Cisco CLI.
  Can anyone help?
  Thanks,
  Ash
  Note - this is now fixed. I followed the steps here to install ACS 5.0 on VMware Workstation 7:
  http://blog.sudonetworks.com/2010/10/installing-cisco-acs-52-on-a-laptop.html

  To log in to ACS server and access the CLI, use an SSH secure shell client or the console port.
  Accessing the ACS CLI
  http://www.cisco.com/en/US/docs/net_mgmt/cisco_secure_access_control_system/5.0/command/reference/CLIuse.html#wp1096003
  Regards,
  Jatin

• Cisco ISE installation on VMware Workstation ?

  I am trying to install Cisco ISE image through Vmaware Workstation , but after starting VM getting redhat console but not the same console required for setup of actual ISE . Would like to know whether VMware workstation supported for ISE installation as all the cisco docs specifies the image to be mounted on ESX server, then login to client to run setup.. Please help...

  Cisco "Officially" supports VMWare's ESXi/vSphere platform.  Yes, ISE works in VMWare Workstation, but is not tested on every hardware platform available, therefore, not supported.  The the case mentioned above,
  I've started installing ISE 1.2 (redhat linux 5 64 bit)  , looking at the posts above.. on VMware workstation 9..
  1stly I gave 6gb ram ( my laptop has 6 gb ram & 290gb free space ) and started the installation process..
  then  after the starting stage of checking the requirements of my laptop  started and the formatting of the disk began , my lap became very slow  & it got hanged there..all my pc processes moved like snails..!! got  frustated..
  then I restarted my lap and this time I gave 4gb ram .. and it worked fine from then on..
  can  anyone tell me , if this has to do anthing with the physical memory we  give over there in the ise installtion process..does it actually use the  entire ram we mention over there..??
  Niklas
  All possible System RAM was allocated to the ISE VM, and the ISE VM used ALL of the RAM leaving none for the host OS, thereby slowing the machine to a crawl.  Once this Virtual RAM was sized to the ISE minimum of 4GB (leaving 2GB dedicated to the host OS), the machine worked correctly.  Yes, the ISE VM will happily use ALL the RAM allocated to it.
  This is also the reason that Virtual Box and other "Desktop" class virtualization environments cannot be supported across the board.  Nearly every machine hosting VMWare Workstation, Virtual Box, etc... has a different chipset, video card, HD controller, and on, and on...
  The best thing to do for your situation is to try to install it.  If it works, document your EXACT system configuration and the EXACT virtual configuration so that you may look back to it for future installs.  You can also use this information to "tweak" the virtual settings until you get a combination that works for you.  This will help to document the configurations that do not work on YOUR desktop environment.
  Please Rate Helpful posts and mark this question as answered if, in fact, this does answer your question.  Otherwise, feel free to post follow-up questions.
  Charles Moreton

• CUPS 8.6.1 on VMware Workstation 7.1.2 - After reboot of host, CUPS is unreachable

  Hi,
  after installing CUPS 8.6.1.10000-34 in VMware Workstation 7.1.2 build-301548 and eventually rebooting the host, CUPS is not reachable via IP anymore, i.e. ping from physical NIC of the host to virtual NIC of the CUPS VM fails (Destination Host Unreachable). This also applies vice versa, as well as to HTTP/HTTPS, SSH traffic, etc.
  Before the reboot of the host, there were no issues. The reboot had to be done, due to system updates.
  The suprising fact is, that the CUPS can ping the CUCM (8.6.2.20000-2, also running on the same host and VMware Workstation), but no other machine.
  In order to disqualify firewall issues, I turned off the host's firewall, as well as the iptables firewall of the CUPS. However the issue still persisted.
  Did anyone run in the same problem? So far the only solution was to reinstall CUPS and not to turn off the host...which is not really acceptable, even in a test environment.
  Thanks a lot in advance for your help!
  Kind regards
  Igor Lukic

  The usual problem is that the Cisco OS comes with the WMware drivers for ESXi and not Workstation. As a result the NIC does not come up correctly. Anything that takes down the NIC and brings it up again (such as changing the gateway address) will work until the next time you reboot.
  Update the WMware driver in your CUPS
  With the CUPS running in WMware use VM/Install WMware tools.
  Then on the CLI of CUPS enter: utils vmtools upgrade
  You can also check which versions of the WMware driver is installed with: utils vmtools status
  Graham

• Cisco ACS 5.4 problem

  Hello
  Did anyone experience problem with Service Selection Rules in Cisco ACS. When I click this tab ( it only works for me in google Chrome), configuration is normally opened. But when I want to edit one of two default rules (rules that match radius and tacacs) nothing happens. If I want to add new rule, popup window in normally opened but I am not able to add any conditions or results. It is just nothing to choose from. I have some attributtues under "customize window". It looks like some gui problems.
  I am using
  acs/admin# sh application version acs
  Cisco ACS VERSION INFORMATION
  Version : 5.4.0.46.0a
  Internal Build ID : B.221
  with trial license. I am running ACS on vmware player  (1 GB of RAM and 1 proc).
  Thanks in advance
  General
  Name:
     Status:
  Enabled Disabled Monitor Only 
  The Customize button in the lower right area of the policy rules screen controls which policy conditions and results are available here for use in policy rules.
  Conditions
  Results

  When dealing with Cisco ACS and Cisco ISE you have to be very careful with your web browsers. For example there's a major bug when using Cisco ISE 1.1.x and Chrome.
  Back to ACS, please refer to the release notes to see the validated web browsers.
  http://www.cisco.com/en/US/docs/net_mgmt/cisco_secure_access_control_system/5.4/release/notes/acs_54_rn.html#wp222016
  I have used ACS and ISE a lot, and we had many problems when using Internet Explorer and Chrome. That's why I prefer Firefox, but even with firefox we had little problems once in a while.
  Please rate if this helps

• Cisco LMS 4.2 Appliance on VMware vSphere 4.0

  Hi all,
  I'm currently trying to install the Cisco LMS 4.2 Appliance on a VMware vSphere 4.0 environment.
  I'm following the http://www.cisco.com/en/US/docs/net_mgmt/ciscoworks_lan_management_solution/4.2/install/guide/instl.html#wp1689675
  guide.
  I downloaded the Cisco_Prime_LAN_Management_Solution_4_2.iso and I started the server.
  I get this screen and I choose option 1:
  A Welcome message appears:
  Welcome to Cisco Prime LAN Management Solution 4.2
  To boot from hard disk, press <Enter>
  The following options appears:
  •[1] Cisco Prime LAN Management Solution 4.2 Installation
  This option allows you to perform installation of LMS 4.2.
  •[2] Recover administrator password
  This option allows you to recover the administration password. Follow Step 3 to Step 17 of Recovering Admin Password on Soft Appliance Installed on VMware, to recover the administration password.
  •<Enter> Boot existing OS from Hard Disk
  This allows you to boot up the existing OS available in the hard disk.
  However, unlike the installation on my laptop (using VMware Workstation) I cannot get to this part:
  Enter the following configuration details of the server:
  •Hostname
  •IP Address
  •Subnetmask
  •Gateway
  •DNS Domain
  et cetera
  What follows looks like an installation to me.
  When this stops I get a
  localhost login:
  I cannot enter Setup as I get a password statement afterwards.
  Can somebody please help me as I'm having no idea what went wrong..
  Many thanks in advance.

  Thanks for your help, Marvin.
  We went ahead with the .ova file and it worked alright.
  We also did a little test and it seems that the .iso file does work on some VMware platforms. Our test environment had a VMware vSphere 4.1. When we started a VM with the same specs and the ISO file mounted, the installation did succeed.

• Migrating a Cisco ACS Database

  Hi,
  Can there be any potential problems, if we want to migrate an existing Cisco ACS Database to a different physical Server (Keeping the same IP information etc) ?
  We were running Cisco ACS evaluation version for Cisco NAC (CTA) and now want to make it production while moving it to a different server.
  Regards \\ Naman

  Hi,
  I'm not an expert for the ACS but when you look into System configuration you will find the feature 'Database Replication'. With an eval version you should be able to test this feature.
  Cheers,

• CUCM8.5 VMware Workstation Installation Failed - No Deployments Provided

  Dear Sir,
  When I tried to install CUCM8.5 into VMware workstation 7.01, the attached error came out. Could you please help to check how to fix this problem? Thanks a lot.
  Regards,
  Alan

  OVA Template Details for  Unified CM Release 8.5
  http://docwiki.cisco.com/wiki/OVA_Template_Details_for_Unifed_CM_Release_8.5
  HTH
  java
  If this helps, please rate
  www.cisco.com/go/pdihelpdesk

• Cisco ACS 5.2 (esx 4 vm) and Monitoring and Reports failure

  I am evaling the Cisco ACS 5.2 Virtual Appliance on ESX4 and everything is working fine except for the "Monitoring and Reports" no matter what browser I try, it just keeps loading new tabs of the welcome screen, in the case of some browser versions it does this and does not stop.
  I have tried the following browsers on Win7 Pro: IE 8, Firefox 4, Firefox 3, Chrome 12.
  I have tried the following browsers on MacOS 10.6: FireFox 4, Safari 5.0.5
  In Safari 5.0.5 it calls up one new window, but doesn't load anything in the right hand frame.
  This is a fresh install, with an eval license. I am rather annoyed that it doesn't work out of the box, especially when there was not documentation that mentioned that anything needed to be setup for this to work after initial install, unless I missed something.
  I installed the VM with the base 5.0.26 ISO and then applied patches 5.0.26-1 through 5.0.26-5.
  Can anyone provide any help on this?

  I am evaling the Cisco ACS 5.2 Virtual Appliance on ESX4 and everything is working fine except for the "Monitoring and Reports" no matter what browser I try, it just keeps loading new tabs of the welcome screen, in the case of some browser versions it does this and does not stop.
  I have tried the following browsers on Win7 Pro: IE 8, Firefox 4, Firefox 3, Chrome 12.
  I have tried the following browsers on MacOS 10.6: FireFox 4, Safari 5.0.5
  In Safari 5.0.5 it calls up one new window, but doesn't load anything in the right hand frame.
  This is a fresh install, with an eval license. I am rather annoyed that it doesn't work out of the box, especially when there was not documentation that mentioned that anything needed to be setup for this to work after initial install, unless I missed something.
  I installed the VM with the base 5.0.26 ISO and then applied patches 5.0.26-1 through 5.0.26-5.
  Can anyone provide any help on this?

• Issue with cisco acs 4.2.Users unable to login aaa client but after restarting group policy able to login

  issue with cisco acs 4.2.Users unable to login aaa client but after restarting group policy able to login

  issue with cisco acs 4.2.Users unable to login aaa client but after restarting group policy able to login

• Issues with Arch 2009.02 in VMware Workstation [SOLVED]

  I installed Arch Linux 2009.02 i686 as a guest in VMware Workstation 6.5.1, my host is Vista x64. The installation of Arch itself and Xorg wasn't a problem although from this point I've had several issues.
  I was unable to 'startx' or 'xinit' without getting crashes, however adding hal to the daemons fixed that problem - some wiki entries state to add dbus, but dbus is already started. A lot of content on the wiki is outdated, telling users to use hwd; I did install hwd separately (from sourceforge) although it gave me hundreds? of errors related to PCI and eventually failure to parse some x configuration binary in /usr/bin.
  Multimedia Issues
  I then installed xfce4 and gstreamer-plugins. All video and audio play back too quickly, i.e. it seems to play the streams as fast as they can decode. This also happens with flash content such as youtube after I'd installed the appropriate programs. Thinking this may be a timing issue, I editted the vmware config file on my Windows host although it did not help; the timing in the VM seemed to be correct anyway.
  Display Issues
  When I run 'startxfce4' from a terminal, Xfce will start as 800x600 - if I go to change this resolution all options show 0Hz as the refresh rate and many options my monitor cannot display are shown even though I have VMware set to allow a maximum size of 1680x1050. I was unable to generate a 'good' xorg.conf file using 'X -configure' and as mentioned earlier, hwd would not work for me. I installed xf86-video-vmware and xf86-video-vesa as well as both open-vm-tools and normal vmware-tools (not at the same time or together) but can't seem to sort this issue. vmware-tools was able to generate a valid xorg.conf file but it only included a handful of 4:3 resolutions and some of these still showed 0hz. For some strange reason 'startx' and 'xinit' now do not work having failed to find /dev/fb0.
  VMware Tools
  When I did try to install vmware-tools, it had many difficulties trying to build the modules - mostly regarding to not recognising __FREEBSD__, I cannot remember the complete error. I also tried to build open-vm-tools but that gave an error about not being able to find libproc even though I had procps installed. Stopping open-vm-tools on shutdown also always fails and occurs twice.
  I'm going to try reinstalling now that I know a little more about what I did to get things working but if anyone could give me a hand it'd be much appreciated.
  Last edited by andyxl987 (2009-08-04 00:17:29)

  After a lot of experimentation I've got a satisfactory installation although a few minor problems remain:
  Adjustments required to correctly run Alsa+Xorg in Arch Linux 2009.02 using VMware Workstation
  The current kernel does not play nicely with alsa, downgrade to kernel26-2.6.29.4-1:
  wget http://www.schlunix.org/archlinux/core/ … pkg.tar.gz
  pacman -U kernel26-2.6.29.4-1-i686.pkg.tar.gz
  Install/Upgrade dbus:
  pacman -Sy dbus
  Add hal (if it's not installed then make sure to do so) to your daemons located in /etc/rc.conf, e.g.
  DAEMONS=(syslog-ng network netfs crond hal)
  The current open-vm-tools-modules is not compatible with the older kernel, instead use open-vm-tools-modules-2009.04.23-1:
  wget http://www.schlunix.org/archlinux/commu … pkg.tar.gz
  pacman -U open-vm-tools-modules-2009.04.23-1
  The installation will prompt you with an error that /etc/modprobe.conf could not be found (as does the current version), add the following to /etc/modprobe.d/modprobe.conf:
  install pcnet32 /sbin/modprobe -q --ignore-install vmxnet; /sbin/modprobe -q --ignore-install pcnet 32 ; /bin/true;
  You can now install open-vm-tools:
  pacman -S open-vm-tools
  To autoload open-vm-tools on start up you need to add it to your daemons located in /etc/rc.conf, e.g.
  DAEMONS=(syslog-ng network netfs crond hal open-vm-tools)
  Add vmware-user to your /etc/X11/xinit/xinitrc file if you desire (for seamless mouse and display switching), e.g. my xinitrc with xfce4 ends with:
  vmware-user &
  exec startxfce4
  Install the following components: xf86-video-vmware xf86-video-vesa xf86-input-vmmouse xf86-input-mouse:
  (You will not be able to start x if you have installed xf86-video-fbdev and do not have a valid xorg.conf file, this is addressed later)
  pacman -S xf86-video-vmware xf86-video-vesa xf86-input-vmmouse xf86-input-mouse
  Lastly we need to edit/create the /etc/X11/xorg.conf file to use our vmware drivers, this will enable automatic resolution switching and seamless mouse functionality:
  (All of the following is necessary otherwise X will ignore our vmware drivers)
  Section "ServerFlags"
      Option "AllowEmptyInput" "false"
  EndSection
  Section "InputDevice"
      Identifier  "VMware Mouse"
      Driver      "vmmouse"
      Option "Protocol"         "ps/2"
      Option "Device"           "/dev/input/mice"
      Option "ZAxisMapping"     "4 5"
      Option "Emulate3Buttons"  "true"
  EndSection
  Section "Device"
      Identifier  "VMware SVGA"
      Driver      "vmware"
  EndSection
  Section "ServerLayout"
      Identifier  "VMware Config"
      InputDevice "VMware Mouse" "CorePointer"
  EndSection
  Issues
  * open-vm-tools fails to stop during a shutdown or /etc/rc.d/open-vm-tools stop/restart
  * most screen resolutions show 0Hz (although everything works correctly) and adding VertRefresh to xorg.conf produces a major error
  * playback of flash video produces a sound artefact when starting - although I think this may be to do with the decoder rather than system
  I've marked this as solved although I welcome any suggestions regarding these minor issues. The open-vm-tools one I can probably sort out but it's too late now to look into tonight
  Last edited by andyxl987 (2009-08-04 00:21:03)

• VPN client and Cisco ACS

  hi,
  I'm trying to setup a VPN solution, connecting to a 800 series router and authenticating off a Cisco ACS tacacs server.
  I've basically followed the suggested config at http://www.cisco.com/en/US/customer/tech/tk59/technologies_configuration_example09186a00800a393b.shtml and the setup works fine if I use local authentication, but as soon as I switch to using TACACS the client authentication fails.
  Debugging tacacs on the router i can see the requests being sent to the server, and the replies coming back - the login detail are definitely correct so I'm guessing that TACACS isn't authorising me to use VPN or IPSEC or something. But there is nothing in the ACS logs to suggest why I'm not getting through - no failed attempts are shown.
  Any ideas?

  here is some debug from the router:
  Feb 24 12:28:58.973 UTC: TPLUS: processing authentication start request id 129
  Feb 24 12:28:58.973 UTC: TPLUS: Authentication start packet created for 129(vpngroup)
  Feb 24 12:28:58.973 UTC: TPLUS: Using server 10.10.10.10
  Feb 24 12:28:58.973 UTC: TPLUS(00000081)/0/NB_WAIT/823A9F04: Started 5 sec timeout
  Feb 24 12:28:58.989 UTC: TPLUS(00000081)/0/NB_WAIT: socket event 2
  Feb 24 12:28:58.989 UTC: T+: Version 192 (0xC0), type 1, seq 1, encryption 1
  Feb 24 12:28:58.989 UTC: T+: session_id 1729330768 (0x67137E50), dlen 16 (0x10)
  Feb 24 12:28:58.989 UTC: T+: type:AUTHEN/START, priv_lvl:1 action:LOGIN ascii
  Feb 24 12:28:58.989 UTC: T+: svc:LOGIN user_len:8 port_len:0 (0x0) raddr_len:0 (0x0) data_len:0
  Feb 24 12:28:58.989 UTC: T+: user: vpntest
  Feb 24 12:28:58.989 UTC: T+: port:
  Feb 24 12:28:58.989 UTC: T+: rem_addr:
  Feb 24 12:28:58.989 UTC: T+: data:
  Feb 24 12:28:58.989 UTC: T+: End Packet
  Feb 24 12:28:58.989 UTC: TPLUS(00000081)/0/NB_WAIT: wrote entire 28 bytes request
  Feb 24 12:28:58.993 UTC: TPLUS(00000081)/0/READ: socket event 1
  Feb 24 12:28:58.993 UTC: TPLUS(00000081)/0/READ: Would block while reading
  Feb 24 12:28:59.009 UTC: TPLUS(00000081)/0/READ: socket event 1
  Feb 24 12:28:59.009 UTC: TPLUS(00000081)/0/READ: read entire 12 header bytes (expect 16 bytes data)
  Feb 24 12:28:59.009 UTC: TPLUS(00000081)/0/READ: socket event 1
  Feb 24 12:28:59.009 UTC: TPLUS(00000081)/0/READ: read entire 28 bytes response
  Feb 24 12:28:59.009 UTC: T+: Version 192 (0xC0), type 1, seq 2, encryption 1
  Feb 24 12:28:59.009 UTC: T+: session_id 1729330768 (0x67137E50), dlen 16 (0x10)
  Feb 24 12:28:59.009 UTC: T+: AUTHEN/REPLY status:5 flags:0x1 msg_len:10, data_len:0
  Feb 24 12:28:59.009 UTC: T+: msg: Password:
  Feb 24 12:28:59.009 UTC: T+: data:
  Feb 24 12:28:59.009 UTC: T+: End Packet
  s9990-cr#
  Feb 24 12:28:59.009 UTC: TPLUS(00000081)/0/823A9F04: Processing the reply packet
  Feb 24 12:28:59.009 UTC: TPLUS: Received authen response status GET_PASSWORD (8)
  "AUTHEN/REPLY status:5" is a permanent fail according to the TACACS RFC
  In the VPN Client log it say "User does not provide any authentication data"
  So to summarise:
  -Same ACS server\router\username combination works fine for telnet access.
  -VPN works fine with local authentication.
  -No login failures showing in the ACS logs.