Wednesday, November 10, 2010

How do I configure shared licensing on an ASA

A shared license lets you purchase a large number of SSL VPN sessions and share the sessions as needed amongst a group of security appliances by configuring one of the security appliances as a shared licensing server, and the rest as shared licensing participants.
Further information on shared licensing can be found here

Below shows the steps on how to configure a Shared License server.

1. Install Cisco license key, run the commands:
1.activation-key key
2.reload
2. Configure license server :
1.license-server enable interface (Inside interface)           
2.license-server secret   ‘your-password’
3.license-server port port  50554
4.license-server refresh-interval 100
5.wr mem
3.  Configure shared license ASA’s.
1.license-server address  X.X.X.X  secret [password] port 50554
2.wr mem
4.  Confirming shared license  - show shared license
01.hostname >  show shared license
02.Primary License Server : 10.3.32.20
03.Version              : 1
04.Status               : Inactive
05. 
06.Shared license utilization:
07.SSLVPN:
08.Total for network :     5000
09.Available         :     5000
10.Utilized          :        0
11.This device:
12.Platform limit    :      250
13.Current usage     :        0
14.High usage        :        0
15.Messages Tx/Rx/Error:
16.Registration    : 0 / 0 / 0
17.Get             : 0 / 0 / 0
18.Release         : 0 / 0 / 0
19.Transfer        : 0 / 0 / 0
Posted by ajay gupta at 5:08 PM
Labels:

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)