Cisco Cisco IPS 4255 Sensor
62
Release Notes for Cisco Intrusion Prevention System 7.1(8)E4
OL-30202-01
Initializing the Sensor
Configuration Saved.
Step 24
Reboot the ASA 5585-X IPS SSP.
ips-ssp# reset
Warning: Executing this command will stop all applications and reboot the node.
Continue with reset? []:
Step 25
Enter
yes
to continue the reboot.
Step 26
After reboot, log in to the sensor, and display the self-signed X.509 certificate (needed by TLS).
ips-ssp# show tls fingerprint
MD5: C4:BC:F2:92:C2:E2:4D:EB:92:0F:E4:86:53:6A:C6:01
SHA1: 64:9B:AC:DE:21:62:0C:D3:57:2E:9B:E5:3D:04:8F:A7:FD:CD:6F:27
Step 27
Write down the certificate fingerprints. You need the fingerprints to check the authenticity of the
certificate when using HTTPS to connect to this ASA 5585-X IPS SSP with a web browser.
certificate when using HTTPS to connect to this ASA 5585-X IPS SSP with a web browser.
Step 28
Apply the most recent service pack and signature update. You are now ready to configure your
ASA 5585-X IPS SSP for intrusion prevention.
ASA 5585-X IPS SSP for intrusion prevention.
Verifying Initialization
Note
The following show configuration output is an example of what your configuration may look like. It
will not match exactly because of the optional setup choices.
will not match exactly because of the optional setup choices.
To verify that you initialized your sensor, follow these steps:
Step 1
Log in to the sensor.
Step 2
View your configuration.
sensor# show configuration
! ------------------------------
! Current configuration last modified Fri Oct 04 07:12:24 2013
! ------------------------------
! Version 7.1(8)
! Host:
! Realm Keys key1.0
! Signature Definition:
! Signature Update S735.0 2013-08-14
! ------------------------------
service interface
exit
! ------------------------------
service authentication
exit
! ------------------------------
service event-action-rules rules0
exit
! ------------------------------
service host
network-settings
host-ip 192.168.1.2/24, 192.168.1.1
host-name sensor
sshv1-fallback disabled