Scribd Logo
Upload

Welcome to Scribd!

  • 4 views

    Jksdc-Cdac-As Build-Ise

    Uploaded by

    Pawan Bhattarai

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd

    Jksdc-Cdac-As Build-Ise

    Uploaded by

    Pawan Bhattarai
    4 views22 pages

    Original Title

    JKSDC-CDAC-AS BUILD-ISE

    Copyright

    © © All Rights Reserved

    Available Formats

    PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Download as pdf or txt
    4 views22 pages

    Jksdc-Cdac-As Build-Ise

    Uploaded by

    Pawan Bhattarai

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Download as pdf or txt
    of 22

    J&K State Data Centre - Build Document

    Build Document
    For
    ISE - TACAS
    VERSION CONTROL

    Build Document for:


    ISE - TACAS
    Document Number: 1 Version Number : 1.0
    Effective Date: Review Date:

    NAME TITLE Organization DATE

    Author Paresh Chogle SME - Network CMSITS


    Reviewer Ullas Project Manager CDAC
    Authorizer Dr. Jayan V Joint Director CDAC

    Accountability
    Contact
    Position: Name Dr. Manjeet Singh 9968888887
    Number
    Responsibility
    Contact
    Position: Name Project Manager
    Number

    Revision History
    Sr.no Description Reviewer Date
    1 Initial Version Ullas
    2 Final Version Dr. Jayan V

    Read By
    NAME TITLE SIGNATURE DATE
    Paresh Chogle Subject Matter Expert (SME)

    Page 2 of 22 Confidential
    Table

    1. INSTALL CISCO ISE USING CIMC ........................................................................................................................................... 4


    1.1 DEVICE DETAILS........................................................................................................................................................................ 4
    1.2 PROCEDURE................................................................................................................................................................................ 4
    1.3 VERIFY INSTALLATION ............................................................................................................................................................. 6
    1.4 VERIFY GUI ................................................................................................................................................................................ 7
    2. CONFIGURING AAA FOR DEVICES ..................................................................................................................... 8
    2.1 CREATING USER GROUPS ............................................................................................................................................................... 8
    2.2 CREATING USERS ............................................................................................................................................................................ 9
    2.3 CREATING NETWORK DEVICE GROUP ..................................................................................................................................... 11
    2.4 ADDING NETWORK DEVICE GROUP ......................................................................................................................................... 13
    2.6 CREATING TACACA COMMAND SET ....................................................................................................................................... 15
    2.7 CREATING TACACS PROFILE .................................................................................................................................................... 17
    2.8 CREATING DEVICE POLICY ......................................................................................................................................................... 19

    Page 3 of 22 Confidential
    1. Install Cisco ISE Using CIMC
    1.1 Device Details

    Category Model Serial Number MGMT IP Hostname


    AAA SNS-3615-K9 WMP25110125 10.192.4.11 DCAAA01
    AAA SNS-3615-K9 WMP2511011X 10.192.4.12 DCAAA02

    1.2 Procedure

    1. Cisco SNS appliance: Install the hardware appliance. Connect to CIMC for server
    management.

    2. Boot the appliance or the virtual machine.


    • Cisco SNS appliance:
    a. Connect to CIMC and log in using the CIMC credentials.
    b. Launch the KVM console.
    c. Choose Virtual Media > Activate Virtual Devices.
    d. Choose Virtual Media > Map CD/DVD and select the ISE ISO image and click Map
    Device.
    e. Choose Macros > Static Macros > Ctrl-Alt-Del to boot the appliance with the ISE ISO
    image.
    f. Press F6 to bring up the boot menu. A screen similar to the following one appears:

    Page 4 of 22 Confidential
    At the boot prompt, press 1 and Enter to install Cisco ISE using a serial console.
    If you want to use a keyboard and monitor, use the arrow key to select the Cisco ISE
    Installation (Keyboard/Monitor) option. The following message appears.

    ISE-1

    Hostname DCAAA01
    (eth0) Ethernet interface address 10.192.4.11
    Netmask 255.255.255.0
    Default gateway 10.192.4.1
    DNS domain name
    Primary name server 10.192.10.11
    Add/Edit another name server
    Primary NTP server 10.192.32.12
    Add/Edit another NTP serve
    System Time Zone Asia/Kolkata
    Username admin

    ISE-2
    Hostname DCAAA02

    (eth0) Ethernet interface address 10.192.4.12

    Netmask 255.255.255.0
    Default gateway 10.192.4.1
    DNS domain name
    Primary name server 10.192.10.11

    Add/Edit another name server

    Primary NTP server 10.192.32.12

    Add/Edit another NTP serve

    System Time Zone Asia/Kolkata


    Username admin

    Page 5 of 22 Confidential
    1.3 Verify Installation

    Run Command show application status ISE

    Page 6 of 22 Confidential
    1.4 Verify GUI

    Page 7 of 22 Confidential
    2. CONFIGURING AAA FOR DEVICES

    2.1 CREATING USER GROUPS

    Click Administrator Tab


    Select Groups

    Page 8 of 22 Confidential
    Select User Identity Group
    Click Cisco-Admin-User

    Enter Group name details


    Click Save

    2.2 Creating Users

    Select Administrator
    Click Identities

    Page 9 of 22 Confidential
    Page 10 of 22 Confidential
    Select User Group
    Click Save

    2.3 Creating Network Device Group

    Select Administrator
    Clicl Network device Groups

    Page 11 of 22 Confidential
    Enter Group Name
    Click Save.

    Page 12 of 22 Confidential
    2.4 Adding Network Device Group

    Select Administrator
    Click Network devices

    Page 13 of 22 Confidential
    Enter required detais
    Click save

    Page 14 of 22 Confidential
    2.6 Creating TACACA Command set

    Select Work Centers


    Device Administration > Policy Element

    Page 15 of 22 Confidential
    Page 16 of 22 Confidential
    2.7 Creating TACACS profile

    Select Policy Element


    TACACS Profiles

    Page 17 of 22 Confidential
    Page 18 of 22 Confidential
    2.8 Creating Device Policy

    Select Work Centers


    Device Administration > Device Admin Policy Sets

    Page 19 of 22 Confidential
    Page 20 of 22 Confidential
    Page 21 of 22 Confidential
    Page 22 of 22 Confidential

    You might also like