1. Manuals
  2. Brands
  3. Cisco Manuals
  4. Network Router
  5. OL-4387-02
  6. Configuration manual

Configuration Of Cached Service Profiles - Cisco OL-4387-02 Configuration Manual

Router service selection gateway configuration guide
Hide thumbs
Table of Contents

Advertisement

Chapter 7
Service Profiles and Cached Service Profiles
If the profile changes on the RADIUS server, the SSG timer process periodically updates the cached
profile to ensure that the service information is current.
If the service profile fails to update, SSG retains the cached service profile. When a new user connects
to the SSG, SSG downloads the service profile again. If SSG cannot download the service profile, the
user is not allowed to log on to the service.

Configuration of Cached Service Profiles

To enable cached service profiles, use the ssg service-cache enable command in global configuration
mode. Cached service profiles are enabled by default.
To set the refresh-interval time, which sets the length of time after which all the existing service profiles
are downloaded, use the ssg service-cache refresh-interval command in global configuration mode.
The refresh time is two hours by default.
To refresh the service profile, even when the timer has not yet expired, use the ssg service-cache refresh
command in privileged EXEC mode. You can use this command to refresh a specific service name or to
refresh all services. If the service with that service name is not in use when you enter the ssg
service-cache command, the command does not attempt to download the service profile.
OL-4387-02
If the service profile exists and it is active, SSG uses the service profile to process the logon request.
If the service profile exists, but it is inactive (for example, SSG is currently downloading the profile),
SSG queues the logon request and processes the request after the service profile is downloaded.
If SSG does not find Service-Info attributes in the service profile, SSG creates an inactive service
profile and processes any logon requests after downloading the service profile.
After the service profile is downloaded, the inactive service profile is updated with the Service-Info
attributes from RADIUS. SSG uses these attributes to process connections for incoming users and
any pending connection requests.
The RADIUS packet has an MD5 signature that uniquely identifies the service profile. SSG stores
this service profile ID in the service profile.
Cisco 10000 Series Router Service Selection Gateway Configuration Guide
Cached Service Profiles
7-5

Advertisement

Table of Contents
loading

Related Manuals for Cisco OL-4387-02

Related Content for Cisco OL-4387-02

This manual is also suitable for:

10000 series

Table of Contents