This is what TAC got back to me with as well. The engineer I got did not recommend a snapshot (though I did one). He also said that I need to restart the services, but did not tell me which ones or how. He also left out the line break in the command and did not tell me how to get out of psql. Not my best TAC response.
Edit: He just replied with this: You would do "service perfigo stop" and "service perfigo start". Thanks, Jeremy L. Shoemaker Systems Administrator Dakota Wesleyan University 605-995-2147 [email protected] <mailto:[email protected]> Strategic - WOO - Maximizer - Achiever - Learner From: Cisco Clean Access Users and Administrators [mailto:[email protected]] On Behalf Of Drews, Adam Sent: Wednesday, August 04, 2010 9:17 AM To: [email protected] Subject: Re: NAC 4.8 This was the response I received from TAC after upgrading to 4.7.2: What you need to do is ssh to the cam and perform the following psql -h 127.0.0.1 controlsmartdb -U postgres ALTER TABLE mac_info ALTER COLUMN priority SET NOT NULL; \q But just in case make sure you take a snapshot before doing this. The TAC engineer said it really wasn't critical to fix, more of an annoyance than anything so I haven't made the change yet. Adam On 8/4/10 7:38 AM, "Orians, Scott" <[email protected]> wrote: I upgraded from 4.7.1 to 4.7.2 about 10 days ago and got that error and another on both my manger servers: INCORRECT: Column priority from DB table mac_info is missing or lacks default null INCORRECT: Column priority from DB table mac_info is missing or lacks 'not null' Haven't seen any problems and haven't had time to open a ticket with cisco on it. Haven't jumped to 4.8 yet. Scott From: Cisco Clean Access Users and Administrators [mailto:[email protected]] On Behalf Of Jeremy Shoemaker Sent: Wednesday, August 04, 2010 7:26 AM To: [email protected] Subject: Re: NAC 4.8 I upgraded this morning and got the following error: INCORRECT: Column priority from DB table mac_info is missing or lacks 'not null' Has anyone else seen this? Is it anything to worry about? Thanks, Jeremy L. Shoemaker Systems Administrator Dakota Wesleyan University 605-995-2147 [email protected] <mailto:[email protected]> Strategic - WOO - Maximizer - Achiever - Learner -----Original Message----- From: Cisco Clean Access Users and Administrators [mailto:[email protected]] On Behalf Of Chris Perkins Sent: Friday, July 30, 2010 11:10 PM To: [email protected] Subject: NAC 4.8 NAC 4.8 is out! Release notes: http://www.cisco.com/en/US/docs/security/nac/appliance/release_notes/48/ 48rn <http://www.cisco.com/en/US/docs/security/nac/appliance/release_notes/48 /48rn> .html Primary changes include: * Upgrade it back to tar.gz, not an ISO. A change from 4.7 * Support for the NAC-NME again * Out-of-band logoff enhancements so when an OOB systems logs off the network, it is also logged out of NAC * Passive re-assessment, so clients that have been logged in for a period of time are rechecked to ensure they have not gone out of policy * Agent verifies valid CAS with certs, etc Some minor changes include: * Ability to restrict admin logins by ip address * Fast A/V updates (Fast OPSWAT) by decoupling the agent and the A/V updates * Agent customization * Global RADIUS session timeouts * Enhanced reporting (have to look at this one and see what it means and if major or minor) Chris Perkins INX Inc | Southwest Region -- Adam Drews Information Security Analyst Information Security Office Joliet Junior College 1215 Houbolt Rd. Joliet, IL 60431 P: (815) 280-2667 F: (815) 280-2668 Remember to PROTECT your PASSWORD! Information Technology will NEVER ask for your password.
