View Cart
0 Items | Total: US$0.00
Welcome,      Register

You are here

Home » Security » SEC0101 - ACS 5.4 Patch Install and Remove

SEC0101 - ACS 5.4 Patch Install and Remove

Rating: 
5
Average: 5 (2 votes)
Difficulty Level: 
0
Lab Document: 
<Please login to see the content>
Category: 
Security
The video walks you through the process of installing and removing software patch on Cisco ACS 5.4 in a distributed deployment.  
Topic:
  • ACS Patch Install
  • ACS Patch Remove
  • ACS Distributed Deployment
Tag: 
acs
patch

About Author

Metha Chiewanichakorn, CCIE#23585 (Ent. Infra, Sec, SP), is a Cisco networking enthusiast with years of experience in the industry. He is currently working as a consulting engineer for a Cisco partner. As a founder of and an instructor at labminutes.com, Metha enjoys learning and challenges himself with new technologies.
http://www.linkedin.com/in/methachiewanichakorn

7 comments

Submitted by doubleM on Mon, 03/14/2016 - 08:50

Thank you very match for this amazing Post.
Actually Cisco documentation about patching complex ACS deployment i quite poor.
I can't understand while secondary ACS should be patched while being in local mode, this procedure implies two acs restarts on secondary nodes. In our deployment we have a primary node that acts as log collector but it's not used by NADs to authenticate end points. All our dot1x switches and wireless controller have two out of 4 secondary ACSs configured as radius servers so in our deployment downtime on secondary ACS is more critical than downtime on primary.
Regards
MM

Submitted by sherief on Sun, 04/17/2016 - 02:56

Hi Metha,
Im trying to upgrade acs5.3 to 5.3 with the package ACS_5.5.0.46.tar.gz, i have more than 500G free in VM and using FTP servr Filezilla.
when upgrad to patch 8 as per required, i found the message "patch already installed"
als i installecd the "Pointed-PreUpgrade-CSCum04132-5.3.0.40” patch.
but when going to the upgrade using ACS_5.5.0.46.tar.gz, it failed and give me "manifest file not found in the bundle"

Please advise.

Submitted by admin on Sun, 04/17/2016 - 22:05

Do you use "patch install" or "acs patch install" command? If the former, try the latter.

Submitted by sherief on Mon, 04/18/2016 - 04:38

I`m trying to upgrade, not patch
i`m using the command "application upgrade "
but gives me the error "manifest file not found in the bundle"

Submitted by admin on Mon, 04/18/2016 - 21:33

We understand that you are trying to upgrade but we want to make sure you performed the required patch properly. Did you use the command "patch install" or "acs patch install" when you applied the patch? According to the link below, you may encounter such error message if you used "patch install".

http://www.cisco.com/c/en/us/support/docs/security/secure-access-control...

Submitted by sherief on Wed, 04/20/2016 - 02:22

Im using (acs patch install).
but i think the issue is i cant install the patch 8, it gives me already installed.
then i installed the following one which is Pointed-PreUpgrade-CSCum04132-5.3.0.40 and it installed fine with the correct command,
now i want to upgrade to 5.5 and cant because the error. manifest file not found in the bundle

Submitted by admin on Thu, 04/21/2016 - 23:54

Have you tried removing all the patches and reapply? There is only so much you can do by following the upgrade doc. After that would be opening a case with TAC.