Cisco Cisco Prime Security Manager 9.0
3
Release Notes for ASA CX and Cisco Prime Security Manager 9.1
OL-28140-02
Applications that Support Integration with PRSM
Applications that Support Integration with PRSM
You can share information between Cisco Prime Security Manager and some other applications. The
following table lists the supported applications and the type of integration available.
following table lists the supported applications and the type of integration available.
If supported, Cisco Prime Security Manager allows you to configure a single-sign-on (SSO) relationship
between PRSM and other applications. An SSO relationship allows you to log into the other application,
then directly access PRSM from within that application without needing to log into PRSM. Your
username/password for the other application suffices for PRSM authentication.
between PRSM and other applications. An SSO relationship allows you to log into the other application,
then directly access PRSM from within that application without needing to log into PRSM. Your
username/password for the other application suffices for PRSM authentication.
Use the following steps to configure this relationship:
1.
Create an SSO directory realm in PRSM.
2.
Add users defined in the SSO directory to PRSM.
See the documentation for these products for information on their SSO server and PRSM cross-launch
access points.
access points.
Devices You Can Add without an ASA
The Add Device wizard includes a link to add a device when you do not have an ASA. At this time, we
do not support adding any devices through this link.
do not support adding any devices through this link.
Interface Role Support
Currently, you cannot use the interface role object with any devices. Any roles that you configure and
use will be ignored when committing policies.
use will be ignored when committing policies.
Heartbleed Bug
The Heartbleed bug (CVE-2014-0160) is an OpenSSL vulnerability that uses invalid TLS heartbeats to
gain inappropriate access to data on a device. ASA CX 9.1.x and PRSM 9.1.x are not vulnerable to the
heartbleed bug. However, CX devices do not prevent invalid heartbeats from passing through the device
as traffic between other endpoints. Ensure that you patch your vulnerable endpoints with the required
fixes.
gain inappropriate access to data on a device. ASA CX 9.1.x and PRSM 9.1.x are not vulnerable to the
heartbleed bug. However, CX devices do not prevent invalid heartbeats from passing through the device
as traffic between other endpoints. Ensure that you patch your vulnerable endpoints with the required
fixes.
You can learn more about this bug at heartbleed.com or other resources on the Internet.
Table 2
Applications that support integration with PRSM 9.1(2)
Application
Feature Notes
None supported at this time.