Cisco Cisco Security Manager 4.11 Guía Del Usuario
Cisco Security Manager 4.11 API Specification (Version 2.3)
Page 22
1.9 Overview of CSM Message Flows
When a CSM client wishes to use the CSM server, some of the main high-level message flows are shown in Figure
2. The CSM Server is configured to know about the devices in the network and reads those configurations for
Firewalls, IPS devices, etc. After initiation, any CSM client may authenticate to the CSM server and access the
methods provided in the API. The CSM interface is defined as multiple services such as common (Section 2), config
(Section 3), events (Section 3.2.11) and utility (Section 5) services.
2. The CSM Server is configured to know about the devices in the network and reads those configurations for
Firewalls, IPS devices, etc. After initiation, any CSM client may authenticate to the CSM server and access the
methods provided in the API. The CSM interface is defined as multiple services such as common (Section 2), config
(Section 3), events (Section 3.2.11) and utility (Section 5) services.
FW/IPS
Devices
CSM Server
CSM
Client
LoginRequest
Read Configuration/
Signatures
LoginResponse
Process Configs &
Sync with Policies
GetDeviceListByType Request
GetDeviceListByType Response
Event Subscription Request
Event Subscription Response
Policy Config Change
Process Config Change
Syslog event for change config
on device X
GetDeviceConfigByGID Request
GetDeviceConfigByGID Response
CSM Admin
Device Config Change
GetDeviceConfigByGID Request
GetDeviceConfigByGID Response
Authentication
Get ASA Device
List supported by CSM Server
Get specific device config file
GetServiceInfo Request
GetServiceInfo Response
Verify the config & event
services match the version...etc
GetPolicyConfigByDeviceGID Request
GetPolicyConfigByDeviceGID Response
Get specific policies that map to
a particular device
Register interest in change
config events
Receive change event for
Device X, get full config that has
changed
Logout Request
Logout Response
Client terminates
Figure 2: High-Level CSM Message Exchange
REST is used for the transport of CSM messages. In other words, a CSM message is a URL accessed by the CSM
client. The XML schema for CSM messages is provided in each service section in this document as well as the
complete XSD files in Section 11.
client. The XML schema for CSM messages is provided in each service section in this document as well as the
complete XSD files in Section 11.
The CSM API is structured with four major subcategories: