CSM: Integrating CSM with ACS version 4.2

Summarized Steps On ACS: 1. Create an ACS server administrator account with full ACS privileges. This admin credential is required for CSM AAA Mode Setup. 2. Enable Network Device Group. 3. Rename User groups. 4. Create users and associate the users to appropriate groups. 5. Create system identity user and group this user. This same … Continue reading CSM: Integrating CSM with ACS version 4.2

CSM: Authentication by TACACS+ and Authorization by CSM

When you want CSM users to be authenticated by Cisco ACS but want the authorization by CSM. Since CSM version 4.3, it has a feature of role management setup, this setup controls user rights. Login to the web portal Select Server Administration CSM home screen The default authentication mode is CiscoWorks Local. CSM supports several … Continue reading CSM: Authentication by TACACS+ and Authorization by CSM

CSM (disable ticket): Configuring logging to new device

Ticket management By default Cisco Security Manager enables ticket, however I have disabled the ticket management. The purpose of ticket is before any changes is made with CSM you need to create a ticket, then proceed to do the changes, after changes is made and saved, you need to submit the ticket. If workflow is … Continue reading CSM (disable ticket): Configuring logging to new device

Cisco Security Manager: Firewall management

Cisco Security Manager Cisco Security Manager (CSM) is an application suite that consists of these client applications: 1. Configuration Manager 2. Event Viewer 3. Report Manager 4. Image Manager 5. Health and Performance Monitor (HPM) The server web application is known as Cisco Security Manager Suite. CSM is a management suite to manage Cisco Security … Continue reading Cisco Security Manager: Firewall management

Cisco Systems: IPS4360 Test case

Intrusion detection and prevention test This post demonstrate an example on how to do IPS factory acceptance test. Test plan parameters example Product:IPS4360-K9 Serial Number: abcdefg Date:27/Jan/2013 Purpose: This test is to test the ability for IPS to block malicious when a signature is matched. Procedure: On the attacker PC launch metasploit. Launch an attack … Continue reading Cisco Systems: IPS4360 Test case

Cisco Systems: IPS4360, Cisco Security Manager, simple example on how to create a test plan

Cisco IPS4360 The IPS4300 series is the latest intrusion prevention/detection system by Cisco Systems, it has two quad core CPUs, 8GB RAM and 8GB flash, it has an option for redundant power supply as well. If you are using Cisco security manager to manage be sure to use Cisco Security Manager version 4.3, Cisco Security … Continue reading Cisco Systems: IPS4360, Cisco Security Manager, simple example on how to create a test plan

Cisco Systems: Cisco Security Manager tickets

Ticket If you want to configure security devices with Cisco Security Manager a ticket is created, after you have made changes to the security devices you must submit the ticket to make it effective. Example: Add virtual sensor When I wanted to add a virtual sensor Cisco Security Manager will automatically popup a ticket creation … Continue reading Cisco Systems: Cisco Security Manager tickets

Cisco Systems: Cisco Security Manager Event storage

Cisco Security Manager requirements 1. At least 100GB partition for Windows 2008 server OS. 2. At least 150GB partition for Cisco Security Manager 3. At least 1TB partition for event storage. Turn on event management Login to Cisco Security Manager - Configuration Manager. Then Choose event management, turn on the extended store management, so that … Continue reading Cisco Systems: Cisco Security Manager Event storage

Cisco Systems: Unable to access Cisco Security Manager with correct credential

Reference:http://www.cisco.com/en/US/docs/security/security_management/cisco_security_manager/security_manager/3.0/troubleshooting/guide/scts.html#wp1043038 Recently I have been installing and trying to access Cisco Security Manager and encountered several problems which I did not understand. The first problem I encountered after I have login with a correct credential. The second problem which I have encountered after I have login with a correct credential. The reason behind the problems … Continue reading Cisco Systems: Unable to access Cisco Security Manager with correct credential