Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2176
Views
10
Helpful
5
Replies

CSACSE-1112-K9 - v4.2 - config/device recovery

Go to solution
Peter Zsiros
Level 1
Level 1

‎06-08-2012 07:00 AM - edited ‎03-09-2019 11:51 PM

Hi,

hope you can guide me to the right direction to resolve this issue.

I have a problem exporting the config from a 1112 appliance.

It does not boot up properly. GUI logon and authentication is not possible.

I can console and SSH to it but the only thing i get is the commands below and nothing else.

login as: admin

admin@10.10.1.126's password:

Last login: Wed May 30 11:11:42 2012 from jsmith

Could not chdir to home directory /home/admin: No such file or directory

acs> help

API called before initialised at V:\ismg_israel_acs\Acs\EndPoint\Core\endpoint.cpp:395

Command                  Description

----------------------------------------------------

?                    List commands

exit                 Log off

help                 List commands

csutil -dumpadmin    Dump Admin Audit Information

csutil -dumpgroups   Dump Group Audit Information

csutil -dumpusers    Dump User Audit Information

csdbsync -syncnow    RDBMS synchronization

acs>

Any ideas how could i get the config and/or get it work again?

Thx!

Peter

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Jatin Katyal
Cisco Employee
Cisco Employee
In response to Peter Zsiros

‎06-08-2012 07:52 AM

The database seems to be corrupt. I would suggest you reimaging the box with 4.2 recovery CD. However, it seems you don't have any current or older database that we can restore back to ACS.

NOTE: reimage will delete all the configuration from the ACS SE.

What changes pushed you down in this situation? Did you try to upgrade the code or patch on it?

Regards,

Jatin

Do rate helpful posts-

~Jatin

View solution in original post

0 Helpful
5 Replies 5

Go to solution
Jatin Katyal
Cisco Employee
Cisco Employee

‎06-08-2012 07:09 AM

SSH connection would only should you limited commands and that is an expected behaviour.

You need to establish a console connection if you would like to take back of your current configuration.

Establishing serial/console connection

http://www.cisco.com/en/US/docs/net_mgmt/cisco_secure_access_control_server_for_solution_engine/4.2/installation/guide/solution_engine/instalap.html#wp1065399

Backing upi ACS data from serail console connection

http://www.cisco.com/en/US/docs/net_mgmt/cisco_secure_access_control_server_for_solution_engine/4.2/installation/guide/solution_engine/admap.html#wp1057928

What error are we getting during the bootup process?

Did you check the status of the services? This can be checked by running "show" command from console session.

Csadmin should be running in order to access it through web gui.

Do let me know if you need further help.

Regards,

Jatin

Do rate helpful posts-

~Jatin

Go to solution
Peter Zsiros
Level 1
Level 1
In response to Jatin Katyal

‎06-08-2012 07:40 AM

A colleague already tried console cable access as well.

When he tried to do a backup it kept failing with "Can not initialize SchemeLayerBackup File does not exist!".

He also checked services: not running

Rebooting the device did not help.

0 Helpful

Go to solution
Jatin Katyal
Cisco Employee
Cisco Employee
In response to Peter Zsiros

‎06-08-2012 07:52 AM

The database seems to be corrupt. I would suggest you reimaging the box with 4.2 recovery CD. However, it seems you don't have any current or older database that we can restore back to ACS.

NOTE: reimage will delete all the configuration from the ACS SE.

What changes pushed you down in this situation? Did you try to upgrade the code or patch on it?

Regards,

Jatin

Do rate helpful posts-

~Jatin
0 Helpful

Go to solution
Peter Zsiros
Level 1
Level 1
In response to Jatin Katyal

‎06-08-2012 08:00 AM

I thought it will be something serious.

Re-imaging is not that painful as this unit is part of a 3 device cluster. I assume it will sync the DB as soon as it is back in the cluster. I just wanted to have a backup which i may import after re-imaging the device.

As usual in these cases: "nothing happened", "nothing has been changed". Either they don't know or don't want to tell me.

Thank you for your help!

0 Helpful

Go to solution
Jatin Katyal
Cisco Employee
Cisco Employee
In response to Peter Zsiros

‎06-08-2012 08:39 AM

If it's in cluster then that would be great. reimage it and put the bare-minimum configuration for replication to work.

here is a configuration example of setting up replication between ACS 4.2

http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_configuration_example09186a0080742f60.shtml

The following items cannot be replicated so that you need to add.

•IP pool definitions (for more information, see About IP Pools Server).

•ACS certificate and private key files.

•Dynamically-mapped users.

•Settings on the ACS Service Management page in the System Configuration section.

•RDBMS Synchronization settings.

Regards,

Jatin

Do rate helpful posts-

~Jatin
Customers Also Viewed These Support Documents