Cisco 3.3 User Manual

Page 766

Advertising
background image

Appendix D CSUtil Database Utility

Posture Validation Attributes

D-50

User Guide for Cisco Secure ACS for Windows Server

78-16592-01

Tip

When you specify filename, you can prefix the filename with a relative or
absolute path, too. For example,

CSUtil.exe -addavp

c:\temp\addavp.txt

writes the file addavp.txt in c:\temp.

CSUtil.exe adds or modifies the attributes specified in the file. An example of a
successful addition of nine posture validation attributes follows:

C:.../Utils 21: csutil -addavp myavp.txt

CSUtil v3.3(1.6), Copyright 1997-2001, Cisco Systems Inc

Attribute 9876:1:11 (Calliope) added to registry

Attribute 9876:1:3 (Clio) added to registry

Attribute 9876:1:4 (Erato) added to registry

Attribute 9876:1:5 (Euterpe) added to registry

Attribute 9876:1:6 (Melpomene) added to registry

Attribute 9876:1:7 (Polyhymnia) added to registry

Attribute 9876:1:8 (Terpsichore) added to registry

Attribute 9876:1:9 (Thalia) added to registry

Attribute 9876:1:10 (Urania) added to registry

AVPs from ’myavp.txt’ were successfully added

Step 4

If you are ready to make the imported attribute definitions take effect, restart the
CSAuth and CSAdmin services.

Caution

While CSAuth is stopped, no users are authenticated.

To restart the CSAuth, CSLog, and CSAdmin services, enter the following
commands at the command prompt, allowing the computer time to perform each
command:

net stop csauth

net start csauth

net stop cslog

net start cslog

net stop csadmin

net start csadmin

Cisco Secure ACS begins using the imported posture validation attributes.
Attributes that have an attribute type of

in

or

in out

are available in the HTML

interface when you define local policy rules.

Advertising