Downloads |
PB504495
Product Overview
Cisco® Secure Access Control System (ACS), trusted by customers worldwide, is the Cisco flagship network access control solution. It is the centralized identity and access policy solution that ties together an enterprise's network access policy and identity strategy. Cisco Secure ACS 5.0 is the first release of a next-generation platform that delivers major new functionality including:
• A powerful, attribute-driven rules-based policy model that addresses complex policy needs in a flexible manner
• A lightweight, web-based graphical user interface (GUI) with intuitive navigation and workflow
• Integrated advanced monitoring, reporting, and troubleshooting capabilities for maximum control and visibility
• Improved integration with external identity and policy databases including Windows Active Directory and Lightweight Directory Access Protocol (LDAP)-accessible databases simplifies policy configuration and maintenance
• A new distributed architecture for large-scale deployments
Availability
Cisco Secure ACS 5.0 will be orderable beginning December 23, 2008. Customers interested in purchasing this product can place orders through their normal sales channels.
Ordering Information
Cisco Secure ACS 5.0 is offered as a dedicated appliance, the Cisco 1120 Access Control System, and as software for customers building a virtual infrastructure using VMWare ESX. The appliance and software versions of ACS 5.0 support the same features. For system specifications, please view the ACS 5.0 data sheet at http://www.cisco.com/go/acs.
The appliance and software versions each include an ACS 5.0 Base license. Two add-on licenses (the Large Deployment license and the Advanced Monitoring and Reporting license) offer optional advanced capabilities.
The Base license is required for each ACS 5.0 appliance or software instance in a network. With the Base license, ACS 5.0 appliances or software instances can support deployments of up to 500 network devices (authentication, authorization, and accounting [AAA] clients) as determined by the number of unique IP addresses configured. This is not a per appliance/instance limit, but a deploymentwide limit that applies to a set of ACS appliances or instances, a primary and secondaries, that are configured for replication. The Base license also provides basic monitoring and reporting capabilities with a set of predefined reports.
The Large Deployment add-on license allows a deployment to support more than 500 network devices. Only one add-on license is required per deployment as it is shared by the primary and secondary instances.
The Advanced Monitoring and Reporting add-on license supports advanced monitoring and reporting capabilities, in addition to the basic capabilities offered by the Base license. The additional functionalities include a deploymentwide, real-time session directory, threshold-based notifications, and additional diagnostic tools. As with the Large Deployment license, only one Advanced Monitoring and Reporting license is required per deployment.
Please see the ACS 5.0 Deployment Guide for guidelines on deployment planning and sizing.
Product part numbers are shown in Table 1.
Table 1. Cisco Secure ACS 5.0 Part Numbers
Cisco Secure ACS 5.0 does not replace ACS 4.2. It is intended for new identity and access control deployments that require the support of this new ACS platform. ACS 5.0 is also available for current customers that would like to familiarize themselves with the new platform to prepare for future deployment. ACS 4.2 is a proven, feature-rich product that Cisco will continue to sell, maintain, and support.
Please view the ACS 5.0 documentation for details on ACS 4.2 and 5.0 feature differences. http://www.cisco.com/en/US/products/ps9911/tsd_products_support_series_home.html.
Upgrades and Migration
Upgrade part numbers will be made available at a later date. ACS 5.0 includes software utilities to migrate data from ACS 4.x. Please see the product documentation for more details on data migration.
Software and Hardware Support
For CSACS-5-IENVM-K9, CSACS-5-LRG-LIC=, and CSACS-5-MON-LIC=, Software Application Support (SAS) is available. SAS entitles customers to maintenance and minor updates, plus access to online resources and support services.
For CSACS-1120-K9, SAS is required for software coverage (it is attached to the option CSACS-5.0-SW-K9) and SMARTnet® is required for hardware coverage. SMARTnet has various service options to provide the hardware replacement coverage desired. For more information on SAS and SMARTnet, please visit http://www.cisco.com/en/US/products/svcs/ps3034/ps2827/serv_category_home.html.
For More Information
Please check the Cisco Secure ACS homepage at http://www.cisco.com/go/acs for the latest information about Cisco Secure ACS.
For more information send your questions to acs-mkt@cisco.com or contact your account representative.