Cisco Cisco NAC Appliance 4.1.0
4-18
Cisco NAC Appliance - Clean Access Server Installation and Administration Guide
OL-12213-01
Chapter 4 Installing the Clean Access Server NAC Appliance
Using the Command Line Interface (CLI)
Using the Command Line Interface (CLI)
The CAM web admin console allows you to perform most of the tasks required for administering Cisco
NAC Appliance deployment. However, in some cases you may need to access the CAS configuration
directly, for example if the web admin console is unavailable due to incorrect network or VLAN settings.
You can use the Cisco NAC Appliance command line interface (CLI) to set basic operational parameters
directly on the CAS.
NAC Appliance deployment. However, in some cases you may need to access the CAS configuration
directly, for example if the web admin console is unavailable due to incorrect network or VLAN settings.
You can use the Cisco NAC Appliance command line interface (CLI) to set basic operational parameters
directly on the CAS.
To run the CLI commands, access the CAS using SSH and log in as user
root
(default password is
cisco123
) If already serially connected to the server, you can run CLI commands from the terminal
emulation console after logging in as
root
(see
The format
service perfigo <command>
is used to enter a command from the command line.
lists the commonly used Cisco NAC Appliance CLI commands.
Table 4-1
CLI Commands
Command
Description
service perfigo start
Starts up the server. If the server is already running, a warning
message appears. The server must be stopped for this command to
be used.
message appears. The server must be stopped for this command to
be used.
service perfigo stop
Shuts down the Clean Access service.
Note
When the management VLAN is set, this command will
cause the CAS to lose network connectivity when issued.
cause the CAS to lose network connectivity when issued.
service perfigo maintenance
This CAS-only command brings the CAS to maintenance mode.
In maintenance mode, only the basic CAS router runs and
continues to handle VLAN-tagged packets. The command allows
communication through the management VLAN and is intended
for environments where the CAS is in trunk mode and the native
VLAN is different than the management VLAN.
In maintenance mode, only the basic CAS router runs and
continues to handle VLAN-tagged packets. The command allows
communication through the management VLAN and is intended
for environments where the CAS is in trunk mode and the native
VLAN is different than the management VLAN.
service perfigo restart
Shuts down the Clean Access service and starts it up again. This
is used when the service is already running and you want to restart
it.
is used when the service is already running and you want to restart
it.
Note
service perfigo restart
should not be used to test high
availability (failover). Instead, Cisco recommends
“shutdown” or “reboot” on the machine to test failover, or,
if a CLI command is preferred,
“shutdown” or “reboot” on the machine to test failover, or,
if a CLI command is preferred,
service perfigo stop
and
service perfigo start
service perfigo reboot
Shuts down and reboots the machine. You can also use the Linux
reboot
command.
service perfigo config
Starts the configuration script to modify the server configuration.
After completing
After completing
service perfigo config
, you must reboot the
server. For instructions on using the script, see
service perfigo time
Use to modify the time zone settings.