1. Manuals
  2. Brands
  3. Cisco Manuals
  4. Network Hardware
  5. NAC3350-PROF-K9 - NAC Profiler Server
  6. Installation manual

Cisco NAC3350-PROF-K9 - NAC Profiler Server Installation Manual page 153

Nac appliance hardware
Hide thumbs
Table of Contents

Advertisement

Chapter 4
Configuring High Availability (HA)
8.
If using a temporary certificate for the HA pair:
If using a CA-signed certificate for the HA pair:
Note
This process assumes you have already generated a Certificate Signing Request and accompanying
Private Key, submitted the request to your Certificate Authority, and have received your CA-signed
certificate. If you have not yet obtained a CA-signed certificate for the CAS, be sure to follow the
instructions in the "Manage CAS SSL Certificates" section of the
Server Configuration Guide, Release
The CA-signed certificate must either be based on the Service IP or a host name/domain name resolvable
Note
to the Service IP through DNS.
e. Reboot the HA-Primary CAS
9.
f. Add the CAS to the CAM Using the Service IP
10.
11.
12.
OL-20326-01
Perform one of the following procedures, depending on whether you intend to use a temporary,
self-signed certificate or a CA-signed certificate:
Click Generate Temporary Certificate, enter information for all of the fields in the form, and
a.
click Generate. The certificate must be associated with the Service IP addresses of the HA pair.
b.
When finished generating the temporary certificate, click the checkboxes for the certificate and
Private Key to highlight them in the table.
c.
Click Export to save the certificate and Private Key to your local machine. You must import the
certificate and Private Key later when configuring the HA-Secondary CAS.
Click Browse and navigate to the directory on your local machine containing the CA-signed
a.
certificate and Private Key.
Click Import. Note that you will need to import the same certificate later to the HA-Secondary
b.
CAS.
Reboot the Clean Access Server from either the CAS direct access interface (Network Settings >
Failover > General > Reboot button) or from the CAM web console (Administration > CCA
Manager > Network > Reboot button).
In the CAM web console, go to Device Management > CCA Servers > New Server, and add the
CAS to the CAM using the Service IP for the pair (10.201.2.112) as the Server IP address.
Configure any other settings desired, such as DHCP settings, to control the runtime behavior of the
CAS.
Test the configuration by trying to log into the untrusted (managed) network from a computer
connected to the untrusted interface of the Clean Access Server. Proceed to the next step only if you
can successfully access the network.
Installing a Clean Access Server High Availability Pair
4.8(3).
Cisco NAC Appliance Hardware Installation Guide
Cisco NAC Appliance - Clean Access
4-33
Show Quick Links

Hide quick links:

Advertisement

Table of Contents
loading

Related Manuals for Cisco NAC3350-PROF-K9 - NAC Profiler Server

Related Products for Cisco NAC3350-PROF-K9 - NAC Profiler Server

This manual is also suitable for:

Nac-3315Nac-3355Nac-3395Nac-3310Nac-3350Nac-3390

Table of Contents