Cisco Cisco NAC Appliance 4.9.1 Installation Guide
39
5
CLI Commands
You can use the NAC Appliance command line interface (CLI) to set basic operational parameters
directly on the CAM or CAS machine if the web console is unavailable (for example, due to incorrect
network or VLAN settings). Table 4 lists commonly used CLI commands. To run them, access the NAC
Appliance via KVM, SSH or serial console, and log in as user root (default password cisco123).
directly on the CAM or CAS machine if the web console is unavailable (for example, due to incorrect
network or VLAN settings). Table 4 lists commonly used CLI commands. To run them, access the NAC
Appliance via KVM, SSH or serial console, and log in as user root (default password cisco123).
Table 4
CLI Commands
Command
Description
service perfigo config
Starts the configuration utility to modify CAM or CAS network
settings and configuration. When done, run
settings and configuration. When done, run
service perfigo reboot
or
reboot
to reset the appliance with the modified settings.
service perfigo start
Starts up the CAM or CAS. The appliance must be stopped to use this
command. If the appliance is running, a warning message appears.
command. If the appliance is running, a warning message appears.
service perfigo stop
Shuts down the Clean Access service on the CAM or CAS
Note
When the management VLAN is set, this command causes
the CAS to lose network connectivity when issued.
the CAS to lose network connectivity when issued.
service perfigo maintenance
(CAS-only command)
CAS-only command that brings the CAS to maintenance mode, in
which only the basic CAS router runs and continues to handle
VLAN-tagged packets.
which only the basic CAS router runs and continues to handle
VLAN-tagged packets.
The command allows communication through the management
VLAN and is intended for environments where the CAS is in trunk
mode and the native VLAN is different than the management VLAN.
VLAN and is intended for environments where the CAS is in trunk
mode and the native VLAN is different than the management VLAN.
service perfigo restart
Shuts down the Clean Access service and starts it up again on the
CAM or CAS. This is used when the service is already running and
you want to restart it.
CAM or CAS. This is used when the service is already running and
you want to restart it.
Note
Do not use
service perfigo restart
to test high availability
(failover). Instead, use the
shutdown
or
reboot
Linux
command on the appliance to test failover, or, CLI commands
service perfigo stop
and
service perfigo start
.
service perfigo reboot
Shuts down and reboots the CAM or CAS. Or, use Linux
reboot
.
service perfigo time
Use to modify time zone settings. To view time, use Linux
clock
.