Cisco Cisco Web Security Appliance S670 Betriebsanweisung

Download the Single Installer for the Advanced Web Security Reporting 4.0 software:

Unzip and extract the installer software.

Launch PowerShell or a Command Prompt window as Administrator.

Navigate to the unzipped directory.

Run 

install.bat

. 

The application is installed in the folder 

C:\Program Files\Cisco\CiscoWSAReporting

.

Reboot the Advanced Web Security Reporting server.

Launch the Advanced Web Security Reporting application and log in:

Navigate to 

http://<hostname>:8888

 in a browser window. 

Earlier versions used port 8000; since version 4.0, the port used is 8888.

Log in with the user name 

admin

 and 

Splunk@dmin

 as the password.

Change the 

admin

 password.

Navigate to Manager > Apps to verify that the Cisco Advanced Web Security Reporting application 
is visible and enabled. 

The Advanced Web Security Reporting application provides two administrative users:

The “default admin” (user name: 

admin

 and password: 

Splunk@dmin

) will have access to all 

administration functionality.

The 

admin

 user can install licenses and configure the distributed environment. Use this account to 

configure, test, and troubleshoot.

The second administrative user (name: 

wsa_admin

 and password: 

Ironp0rt

) has access to a subset 

of administration functionality. 

The 

wsa_admin

 user cannot install licenses and configure the distributed environment. 

We recommend that you change both passwords immediately after installation (Settings > Access 
controls > Users).

Set time zones consistently across WSA and CWS appliances.

The time displayed in the search results reflects the “local” time of the Advanced Web Security 
Reporting instance. By default, all inputs for the appliance logs are set to TZ = GMT.

Document the local 

admin

 account password (regardless of the chosen authentication method).