Cisco Systems Servers Benutzerhandbuch
Appendix E Cisco Secure ACS Command-Line Database Utility
User and AAA Client Import Option
E-18
Cisco Secure ACS 3.0 for Windows 2000/NT Servers User Guide
78-13751-01, Version 3.0
For example, the following ADD statement would create an account with the
username "John", assign it to Group 3, and specify that John should be
authenticated by the CiscoSecure user database with the password
"closedmondays":
username "John", assign it to Group 3, and specify that John should be
authenticated by the CiscoSecure user database with the password
"closedmondays":
ADD:John:PROFILE:3:CSDB:closedmondays
UPDATE Statements
UPDATE statements are optional. They make changes to existing user accounts.
Only the UPDATE token and its value are required by CSUtil.exe, but if no other
tokens are included, no changes are made to the user account. The valid tokens for
UPDATE statements are listed in
Only the UPDATE token and its value are required by CSUtil.exe, but if no other
tokens are included, no changes are made to the user account. The valid tokens for
UPDATE statements are listed in
.
EXT_LEAP
No
—
Authenticate the username with a LEAP proxy RADIUS
server external user database.
server external user database.
EXT_ACTV
No
—
Authenticate the username with an ActivCard external
user database.
user database.
EXT_
VASCO
VASCO
No
—
Authenticate the username with a Vasco external user
database.
database.
EXT_
RADIUS
RADIUS
No
—
Authenticate the username with a RADIUS token server
external user database.
external user database.
Table E-2
ADD Statement Tokens (continued)
Token
Required
Value
Required
Required
Description
Table E-3
UPDATE Statement Tokens
Token
Required Value Required
Description
UPDATE
Yes
username
Update user information to Cisco Secure ACS.
PROFILE
No
group number
Group number to which the user is assigned. This
must be a number from 0 to 499, not a name.
must be a number from 0 to 499, not a name.
CHAP
No
CHAP password
Require a CHAP password for authentication.
SENDAUTH
No
sendauth
password
password
Require a TACACS+ sendauth password.