Cisco CSACS-1121-K9 Reference Guide - Page 132

ACS Configuration Commands Appendix A ACS Command Reference Syntax Description No arguments or keywords. Defaults None. Command Modes ACS Configuration Usage Guidelines Use the access-setting accept-all command when all system administrators' access to an ACS node through the GUI is blocked. This problem occurs when an administrator defines an access list that includes all IP addresses and blocks access to the GUI. When you issue this command, IP address filtering is set to allow all IP addresses to connect the management pages, but the IP addresses defined in the IP Ranges table to allow or reject the IP addresses to access the management pages are not reset; therefore, you can reuse this table to set IP address filtering. Examples acs/admin(config-acs)# access-setting accept-all access setting allows all IP addresses to connect acs/admin(config-acs)# debug-adclient To enable debug logging for an Active Directory client, use the debug-adclient command in the ACS Configuration mode. To disable debug logging for an Active Directory client, use the no form of this command. Only the network-device admin can enable or disable debug logging for an Active Directory client. debug-adclient enable Syntax Description No arguments or keywords. Defaults Disabled. Command Modes ACS Configuration Usage Guidelines When you set the log level of debug logs to DEBUG for the following components, the active directory client logs are automatically enabled. Similarly, when you disable the DEBUG log level on one of these components, the active directory logs are disabled: • all • mgmt A-94 CLI Reference Guide for the Cisco Secure Access Control System 5.1 OL-18996-01