ACS + 802.1x + AAA + AD + Ca detailed configuration tutorial (2)
ACS installation and configuration process:
Thanks to zhanko for providing the ACS installation process, which saves me a lot of effort! The Installation Process of acs4.1 is the same as that of acs3.3.
1. installation:
650) This. width = 650; "src =" http://s3.51cto.com/wyfs02/M02/54/18/wKioL1R4A7WzKz5UAAHvfu0rjLs312.jpg "Title =" 1-1.png "alt =" wkiol1r4a7wzkz5uaahvfu0425ls312.jpg "/>
650) This. width = 650; "src =" http://s3.51cto.com/wyfs02/M02/54/19/wKiom1R4A2LgwH8VAAISFL0pffQ197.jpg "Title =" 1-2.png "alt =" wkiom1r4a2lgwh8vaaisfl0pffq197.jpg "/>
650) This. width = 650; "src =" http://s3.51cto.com/wyfs02/M00/54/18/wKioL1R4A_DTKGhtAAGuDZu9j1M745.jpg "Title =" 1-3.png "alt =" wkiol1r4a_dtkghtaagudzu9j1m745.jpg "/>
650) This. width = 650; "src =" http://s3.51cto.com/wyfs02/M00/54/19/wKiom1R4A3bA9GPNAAEk8DrmueQ995.jpg "Title =" 1-4.png "alt =" wkiom1r4a3ba9gpnaaek8drmueq995.jpg "/>
650) This. width = 650; "src =" http://s3.51cto.com/wyfs02/M02/54/19/wKiom1R4A4CQp4PcAAIFOrnNdi8813.jpg "Title =" 1-5.png "alt =" wkiom1r4a4cqp4pcaaifornndi8813.jpg "/>
Click 650) This. width = 650; "src =" http://s3.51cto.com/wyfs02/M01/54/19/wKiom1R4A4qwc9_2AAAMcX476-A246.jpg "Title =" 1-6.png "alt =" wKiom1R4A4qwc9_2AAAMcX476-A246.jpg "/> finish Installation
650) This. width = 650; "src =" http://s3.51cto.com/wyfs02/M00/54/18/wKioL1R4BBbRAVblAAJkAWGws_0857.jpg "Title =" 1-7.png "alt =" wkiol1r4bbbravblajkawgws_0857.jpg "/>
2. Configuration
After the installation is complete, the ACS is automatically run, and an ACS admin icon is automatically generated on the desktop. In the following description, the configuration integrated with the ad is emphasized, I will not talk about the use of ACS here. If necessary, please refer to zhanko's detailed ACS user manual Haha, which is very well written!
650) This. width = 650; "src =" http://s3.51cto.com/wyfs02/M02/54/19/wKiom1R4A6CSE1RfAALszeY_mc8001.jpg "Title =" 1-8.png "alt =" wkiom1r4a6cse1rfaalszey_mc8001.jpg "/>
After the installation, click the networkconfiguration page, specify the switch (AAA client) and ACS (AAA Server) according to the topology structure, set the Shared Password between ACS and the switch to Cisco, and then select radius (IETF) authentication, log update/watchdog packets fromthis AAA Client
650) This. width = 650; "src =" http://s3.51cto.com/wyfs02/M00/54/18/wKioL1R4BC-ibOXlAAJth_-CZ4s770.jpg "Title =" 1-9.png "alt =" wKioL1R4BC-ibOXlAAJth_-CZ4s770.jpg "/>
ACS address, password Cisco, service type radius
650) This. width = 650; "src =" http://s3.51cto.com/wyfs02/M01/54/18/wKioL1R4BDuBhRV0AAHjqNy7uHo308.jpg "Title =" 1-10.png "alt =" wkiol1r4bdubhrv0aahjqny7uho308.jpg "/>
In proxy, remove ACS From AAA Server à forward.
650) This. width = 650; "src =" http://s3.51cto.com/wyfs02/M00/54/19/wKiom1R4BBLAs937AAHiGC79awc826.jpg "Title =" 1-11.png "alt =" wkiom1r4bblas937aahigc79awc826.jpg "/>650) This. width = 650; "src =" http://s3.51cto.com/wyfs02/M01/54/19/wKiom1R4BC-A7Xe-AAHjqNy7uHo215.jpg "Title =" 1-10.png "alt =" wKiom1R4BC-A7Xe-AAHjqNy7uHo215.jpg "/>
After the establishment, the system prompts you to restart the ACS Service. On the system configuration page, the first service control
There is a restart service in the lower part. (In the future, you will be prompted to restart the service multiple times. Follow this method to restart the service)
650) This. width = 650; "src =" http://s3.51cto.com/wyfs02/M00/54/1A/wKiom1R4DAHwoPOHAAJPXjH4qn0529.jpg "Title =" 1-13.png "alt =" wkiom1r4dahwopohaajpxjh4qn0529.jpg "/>
After restarting the service, the proxy is set by default. After the service is established, it is shown as follows:
650) This. width = 650; "src =" http://s3.51cto.com/wyfs02/M02/54/1A/wKiom1R4CtugXzMSAALsa-CukqM239.jpg "Title =" 1-14.png "alt =" wKiom1R4CtugXzMSAALsa-CukqM239.jpg "/>
Video tutorial sharing: http://www.dwz.cn/lij9D
ACS + 802.1x + AAA + AD + Ca detailed configuration tutorial (2)