CSM: Integrating CSM with ACS version 4.2

Summarized Steps On ACS: 1. Create an ACS server administrator account with full ACS privileges. This admin credential is required for CSM AAA Mode Setup. 2. Enable Network Device Group. 3. Rename User groups. 4. Create users and associate the users to appropriate groups. 5. Create system identity user and group this user. This same … Continue reading CSM: Integrating CSM with ACS version 4.2

Advertisements

CSM: Authentication by TACACS+ and Authorization by CSM

When you want CSM users to be authenticated by Cisco ACS but want the authorization by CSM. Since CSM version 4.3, it has a feature of role management setup, this setup controls user rights. Login to the web portal Select Server Administration CSM home screen The default authentication mode is CiscoWorks Local. CSM supports several … Continue reading CSM: Authentication by TACACS+ and Authorization by CSM

CSM (disable ticket): Configuring logging to new device

Ticket management By default Cisco Security Manager enables ticket, however I have disabled the ticket management. The purpose of ticket is before any changes is made with CSM you need to create a ticket, then proceed to do the changes, after changes is made and saved, you need to submit the ticket. If workflow is … Continue reading CSM (disable ticket): Configuring logging to new device

Cisco Security Manager: Firewall management

Cisco Security Manager Cisco Security Manager (CSM) is an application suite that consists of these client applications: 1. Configuration Manager 2. Event Viewer 3. Report Manager 4. Image Manager 5. Health and Performance Monitor (HPM) The server web application is known as Cisco Security Manager Suite. CSM is a management suite to manage Cisco Security … Continue reading Cisco Security Manager: Firewall management

Cisco Systems: IPS4360 Test case

Intrusion detection and prevention test This post demonstrate an example on how to do IPS factory acceptance test. Test plan parameters example Product:IPS4360-K9 Serial Number: abcdefg Date:27/Jan/2013 Purpose: This test is to test the ability for IPS to block malicious when a signature is matched. Procedure: On the attacker PC launch metasploit. Launch an attack … Continue reading Cisco Systems: IPS4360 Test case

Cisco Systems: IPS4360, Cisco Security Manager, simple example on how to create a test plan

Cisco IPS4360 The IPS4300 series is the latest intrusion prevention/detection system by Cisco Systems, it has two quad core CPUs, 8GB RAM and 8GB flash, it has an option for redundant power supply as well. If you are using Cisco security manager to manage be sure to use Cisco Security Manager version 4.3, Cisco Security … Continue reading Cisco Systems: IPS4360, Cisco Security Manager, simple example on how to create a test plan