Home » Cisco Manuals » Servers » Cisco CSACS-1121-K9 » Manual Viewer

Cisco CSACS-1121-K9 Reference Guide - Page 23

CLI Audit

View all Cisco CSACS-1121-K9 manuals

Add to My Manuals
Save this manual to your list of manuals

Page 23 highlights

Chapter 1 Overview of the ACS Command Line Interface CLI Audit Table 1-5 Summary of Configuration Commands (continued) Command kron occurrence kron policy-list logging logging loglevel no ntp password-policy repository service snmp-server community snmp-server contact snmp-server host snmp-server location username Description Schedule one or more Command Scheduler commands to run at a specific date and time or a recurring level. Specifies a name for a Command Scheduler policy. Enables the system to forward logs to a remote system. Configures the log level for the logging command. Disables or removes the function associated with the command. Synchronizes the software clock through the NTP server for the system. Enables and configures the password policy. Enters the repository submode. Specifies the type of service to manage. Sets up the community access string to permit access to the Simple Network Management Protocol (SNMP). Configures the SNMP contact MIB value on the system. Sends SNMP traps to a remote system. Configures the SNMP location MIB value on the system. Adds a user to the system with a password and a privilege level. For detailed information on Configuration mode and submode commands, see Understanding Command Modes, page 2-6. CLI Audit You must have administrator access to execute ACS configuration commands. Whenever an administrator logs in to the configuration mode and executes a command that causes configurational changes in the ACS server, the information related to those changes is logged in the ACS operational logs. Table 1-7 lists the configuration mode commands that, when executed, generate operational logs. Table 1-6 Configuration Mode Commands for the Operation Log Command clock ip name-server hostname ip address ntp server Description Sets the system clock on the ACS server. Sets the DNS servers for use during a DNS query. Sets the hostname of the system. Sets the IP address and netmask for the Ethernet interface. Allows synchronization of the software clock by the NTP server for the system. You can view these logs, using the show acs-logs command. For more information on log file types and the information stored in each log file, see show acs-logs, page A-61. OL-18996-01 CLI Reference Guide for the Cisco Secure Access Control System 5.1 1-11

Section	Page
CLI Reference Guide for the Cisco Secure Access Control System 5.1	1
Preface	9
Who Should Read This Guide	9
How to Use This Guide	9
How This Guide Is Organized	10
Document Conventions	10
Documentation Updates	11
Related Documentation	11
Obtaining Documentation and Submitting a Service Request	12
Overview of the ACS Command Line Interface	13
Accessing the ACS Command Environment	13
User Accounts and Modes in ACS	13
Types of Command Modes in ACS	17
EXEC Commands	17
EXEC or System-Level Commands	17
Show Commands	19
ACS Configuration Commands	20
Configuration Commands	22
CLI Audit	23
Using the ACS Command Line Interface	25
Before Accessing the ACS CLI	25
Starting the CSACS-1121	26
Running Setup to Configure ACS	26
Accessing the ACS CLI	27
Supported Hardware and Software Platforms	28
Opening the CLI with Secure Shell	29
Opening the CLI Using a Local PC	29
Understanding Command Modes	30
EXEC Mode	30
ACS Configuration Mode	31
Configuration Mode	32
Configuration Submodes	32
Navigating the CLI Commands	34
Getting Help	34
Using the No and Default Forms of Commands	35
Command-Line Conventions	35
Command-Line Editing Key Conventions	35
Command-Line Completion	36
Continuing Output at the --More-- Prompt	37
Where to Go Next	37
ACS Command Reference	39
EXEC Commands	42
acs (instance)	42
acs (process)	44
acs backup	45
acs-config	47
acs config-web-interface	51
acs delete core	51
acs delete log	52
acs patch	53
acs reset-config	54
acs reset-password	55
acs restore	56
acs support	58
application install	61
application remove	62
application reset-config	63
application start	63
application stop	64
application upgrade	65
backup	66
backup-logs	68
clock	69
configure	70
copy	70
debug	74
delete	76
dir	77
exit	79
forceout	79
halt	80
help	81
mkdir	81
nslookup	82
ping	83
reload	84
restore	85
rmdir	86
show	87
ssh	89
tech	90
telnet	90
terminal length	91
terminal session-timeout	92
terminal session-welcome	92
terminal terminal-type	93
traceroute	93
undebug	94
write	96
Show Commands	97
show acs-config-web-interface	98
show acs-cores	98
show acs-logs	99
show application	102
show backup history	105
show cdp	106
show clock	107
show cpu	107
show disks	109
show icmp-status	110
show interface	112
show inventory	113
show logging	114
show logins	116
show memory	116
show ntp	117
show ports	118
show process	119
show repository	120
show restore	121
show running-configuration	122
show startup-configuration	123
show tech-support	124
show terminal	126
show timezone	126
show timezones	127
show udi	128
show uptime	129
show users	130
show version	130
ACS Configuration Commands	131
access-setting accept-all	131
debug-adclient	132
debug-log	133
decrypt-support-bundle	136
export-data	136
import-data	138
import-export-abort	139
import-export-status	141
no debug-adclient	142
no debug-log	143
replication force-sync	145
reset-management-interface-certificate	146
show debug-adclient	147
show debug-log	148
Configuration Commands	150
backup-staging-url	151
cdp holdtime	152
cdp run	152
cdp timer	153
clock timezone	154
do	156
end	158
exit	159
hostname	160
icmp echo	160
interface	161
ip address	162
ip default-gateway	163
ip domain-name	163
ip name-server	164
ip route	165
kron occurrence	166
kron policy-list	167
logging	169
ntp server	170
password-policy	171
repository	172
service	174
shutdown	174
snmp-server community	175
snmp-server contact	176
snmp-server host	176
snmp-server location	177
username	178
Glossary	181

Match case Limit results 1 per page

1-11

CLI Reference Guide for the Cisco Secure Access Control System 5.1

OL-18996-01

Chapter 1

Overview of the ACS Command Line Interface

CLI Audit

For detailed information on Configuration mode and submode commands, see

Understanding Command

Modes, page 2-6

CLI Audit

You must have administrator access to execute ACS configuration commands. Whenever an

administrator logs in to the configuration mode and executes a command that causes configurational

changes in the ACS server, the information related to those changes is logged in the ACS operational

logs.

Table 1-7

lists the configuration mode commands that, when executed, generate operational logs.

You can view these logs, using the

show acs-logs

command. For more information on log file types and

the information stored in each log file, see

show acs-logs, page A-61

kron occurrence

Schedule one or more Command Scheduler commands to run at a specific date

and time or a recurring level.

kron policy-list

Specifies a name for a Command Scheduler policy.

logging

Enables the system to forward logs to a remote system.

logging loglevel

Configures the log level for the

logging

command.

Disables or removes the function associated with the command.

ntp

Synchronizes the software clock through the NTP server for the system.

password-policy

Enables and configures the password policy.

repository

Enters the repository submode.

service

Specifies the type of service to manage.

snmp-server

community

Sets up the community access string to permit access to the Simple Network

Management Protocol (SNMP).

snmp-server contact

Configures the SNMP contact MIB value on the system.

snmp-server host

Sends SNMP traps to a remote system.

snmp-server location

Configures the SNMP location MIB value on the system.

username

Adds a user to the system with a password and a privilege level.

Table 1-5

Summary of Configuration Commands (continued)

Command

Description

Table 1-6

Configuration Mode Commands for the Operation Log

Command

Description

clock

Sets the system clock on the ACS server.

ip name-server

Sets the DNS servers for use during a DNS query.

hostname

Sets the hostname of the system.

ip address

Sets the IP address and netmask for the Ethernet interface.

ntp server

Allows synchronization of the software clock by the NTP server for the

system.