Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
5782
Views
10
Helpful
3
Replies

Patch application procedure ACS 5.2

Go to solution
Alejandro Ruiz
Level 1
Level 1

‎05-05-2011 07:14 PM - edited ‎03-10-2019 06:03 PM

Hi Everyone

I am very new to the ACS world.

Could  you please point me to the procedure to apply the  5-2-0-26-4.tar.gpg  patch. I don't know how to get the patch file into the ACS server.

The procedure in the "Read me" for the patch does not indicate anything about how to this:

1. open CLI console
2. define new repository in which the 5-2-0-26-4.tar.gpg resides
3. issue: 'acs patch install 5-2-0-26-4.tar.gpg repository YOUR_REPOSITORY'
4. verify installation by getting the following version information via CLI by issuing:
#show application version acs

I  don't know how to put the patch file from my local machine to the  repository created in the GUI (if there is where the actual place to creat the repository).

I have looked everywhere and all I can find is the above procedure.

Thanks in advance,

Alejandro

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Brian M
Level 1
Level 1

‎05-05-2011 07:43 PM

Alejandro,

You can define a repository in the web admin page as well as the CLI. It might be easier for you to create it in the web first if you are unfamiliar with ACS.

To create a repository, navigate to System Administraton > Operations > Software Repositories. At the bottom of the page will be a button for 'Create'

I’ve never had a lot of luck trying to patch ACS using TFTP or SCP, but it seems to work when I use FTP so I would recommend using FTP as the protocol for the repository.

The procedure is pretty simple:

  • Download your patch.
    • Usually it will download as {patchname}.tar.tar so you will have to rename it to {patchname}.tar.gpg
  • Place the patch on your FTP server.
  • Create a repository in ACS that points to the FTP server.
    • For instance, if your FTP server has the IP address of 192.168.1.130 and you copied the patch to the root of the FTP directory you would create a repository as follows:
        • Name: patches
        • Protocol: FTP
        • Server Name: 192.168.1.130
        • Path:/
        • Username: {Your FTP username}
        • Password: {Your FTP password}
  • Log in to the ACS CLI with SSH.
  • Issue the command: acs patch install 5-2-0-26-4.tar.gpg repository patches.

This should start the FTP download and once it’s complete it will start installing the patch. Make sure you keep an eye on the command line because it will likely be asking you if it’s ok to stop the ACS service.

More information on repositories can be found here:

http://www.cisco.com/en/US/docs/net_mgmt/cisco_secure_access_control_system/5.2/user/guide/admin_operations.html#wp1053302

Good luck!!

View solution in original post

3 Replies 3

Go to solution
Brian M
Level 1
Level 1

‎05-05-2011 07:43 PM

Alejandro,

You can define a repository in the web admin page as well as the CLI. It might be easier for you to create it in the web first if you are unfamiliar with ACS.

To create a repository, navigate to System Administraton > Operations > Software Repositories. At the bottom of the page will be a button for 'Create'

I’ve never had a lot of luck trying to patch ACS using TFTP or SCP, but it seems to work when I use FTP so I would recommend using FTP as the protocol for the repository.

The procedure is pretty simple:

  • Download your patch.
    • Usually it will download as {patchname}.tar.tar so you will have to rename it to {patchname}.tar.gpg
  • Place the patch on your FTP server.
  • Create a repository in ACS that points to the FTP server.
    • For instance, if your FTP server has the IP address of 192.168.1.130 and you copied the patch to the root of the FTP directory you would create a repository as follows:
        • Name: patches
        • Protocol: FTP
        • Server Name: 192.168.1.130
        • Path:/
        • Username: {Your FTP username}
        • Password: {Your FTP password}
  • Log in to the ACS CLI with SSH.
  • Issue the command: acs patch install 5-2-0-26-4.tar.gpg repository patches.

This should start the FTP download and once it’s complete it will start installing the patch. Make sure you keep an eye on the command line because it will likely be asking you if it’s ok to stop the ACS service.

More information on repositories can be found here:

http://www.cisco.com/en/US/docs/net_mgmt/cisco_secure_access_control_system/5.2/user/guide/admin_operations.html#wp1053302

Good luck!!

Go to solution
Alejandro Ruiz
Level 1
Level 1
In response to Brian M

‎05-05-2011 08:22 PM

Thank you so much for your reply, it's been really helpful.

However, I am not being to access to the file in my FTP server.

How do you specify the path in the "repository" window?

I got my FTP server running on a windows machine and my file is located in the E drive, on the FTP_ROOT folder.

I am specifying my path as:

/E/FTP_ROOT/

I tried to use "colon" character:

/E:/FTP_ROOT/

But this is not allowed.

Sorry for this very silly question, the lack of documentation about this product is driving me crazy. That's a very odd situation coming from Cisco, which it is usually very good at that.

Thanks again.

Alejandro

0 Helpful

Go to solution
Alejandro Ruiz
Level 1
Level 1
In response to Alejandro Ruiz

‎05-05-2011 08:57 PM

Hi Brian,

Please ignore my previous question, all I had to do was just put the "/" as you said in your answer.

I feel really embarrased.

Thanks.

Alejandro

0 Helpful
Customers Also Viewed These Support Documents