Cisco Cisco Security Manager 4.3 Guía De Instalación
3
Deployment Planning Guide for Cisco Security Manager 4.3
OL-26839-01
Cisco Security Manager 4.3 Applications
•
Provides an alert mechanism for different monitoring parameters
•
Provides a set of pre-defined monitoring views
•
Allows users to create, edit, and delete custom monitoring views
Image Manager
The new Image Manager provides for complete image management for ASA devices. Specifically, it
helps the user in the various stages of the entire ASA image upgrade process by doing the following:
helps the user in the various stages of the entire ASA image upgrade process by doing the following:
•
Downloading and maintaining a repository of the different types and versions of images,
•
Evaluate the images,
•
Analyzing the impact of upgrading these images to the devices (the analysis includes the impact of
upgrade on device configuration),
upgrade on device configuration),
•
Preparing and planning the upgrade, and
•
Providing a reliable and stable way to upgrade devices with sufficient fallback and recovery
mechanisms built in, ensuring minimal downtime
mechanisms built in, ensuring minimal downtime
Common Services 4.0
CiscoWorks Common Services 4.0 (Common Services) is required for Security Manager 4.3 and Auto
Update Server 4.3 to work. You can install Security Manager only if Common Services is already
installed on your system or if you select Common Services for installation along with Security Manager.
Update Server 4.3 to work. You can install Security Manager only if Common Services is already
installed on your system or if you select Common Services for installation along with Security Manager.
Common Services provides the framework for data storage, login, user role definitions, access
privileges, security protocols, and navigation. It also provides the framework for installation, data
management, event and message handling, and job and process management. Common Services supplies
essential server-side components to Security Manager that include the following:
privileges, security protocols, and navigation. It also provides the framework for installation, data
management, event and message handling, and job and process management. Common Services supplies
essential server-side components to Security Manager that include the following:
•
SSL libraries
•
An embedded SQL database
•
The Apache webserver
•
The Tomcat servlet engine
•
The CiscoWorks home page
•
Backup and restore functions
For more information, refer to the Common Services documentation that is included with the Security
Manager installation. To do this, log on to the server where you installed Security Manager, double-click
the Cisco Security Manager icon, log on, click Server Administration, and then click Help.
Manager installation. To do this, log on to the server where you installed Security Manager, double-click
the Cisco Security Manager icon, log on, click Server Administration, and then click Help.
Local RBAC Using Common Services 4.0
Prior to Security Manager 4.3, the major advantages of using Cisco Secure ACS were (1) the ability to
create highly granular user roles with specialized permission sets (for example, allowing the user to
configure certain policy types but not others) and (2) the ability to restrict users to certain devices by
configuring network device groups (NDGs). These granular privileges (effectively “role-based access
control,” or RBAC) were not available in Security Manager 4.2 and earlier versions, unless you used
create highly granular user roles with specialized permission sets (for example, allowing the user to
configure certain policy types but not others) and (2) the ability to restrict users to certain devices by
configuring network device groups (NDGs). These granular privileges (effectively “role-based access
control,” or RBAC) were not available in Security Manager 4.2 and earlier versions, unless you used