Cisco Cisco Security Manager 4.1 Guide De Montage
3
Deployment Planning Guide for Cisco Security Manager 4.1
OL-24844-01
Cisco Security Manager 4.1 Applications
•
Backup and restore functions
•
RBAC functionality. The RBAC functionality provided by Common Services includes the
following:
following:
–
local authentication combined with RBAC and
–
additional capability to integrate with external AAA servers (such as ACS and AD).
Common Services is required for all the applications included with Security Manager. For more
information about Common Services 3.3, refer to the documentation located at
information about Common Services 3.3, refer to the documentation located at
Auto Update Server 4.1
AUS enables you to upgrade device configuration files and software images on PIX Security
Appliance (PIX) and Adaptive Security Appliance (ASA) devices that use the auto update feature.
AUS supports a pull model of configuration that you can use for device configuration, configuration
updates, device OS updates, and periodic configuration verification. In addition, supported devices
that use dynamic IP addresses in combination with the Auto Update feature can use AUS to upgrade
their configuration files and pass device and status information.
Appliance (PIX) and Adaptive Security Appliance (ASA) devices that use the auto update feature.
AUS supports a pull model of configuration that you can use for device configuration, configuration
updates, device OS updates, and periodic configuration verification. In addition, supported devices
that use dynamic IP addresses in combination with the Auto Update feature can use AUS to upgrade
their configuration files and pass device and status information.
In this method, Security Manager deploys configuration updates to the AUS server, the managed
device contacts the AUS server to download new configuration updates using a periodic time
interval, a specific date and time, or on-demand.
device contacts the AUS server to download new configuration updates using a periodic time
interval, a specific date and time, or on-demand.
AUS increases the scalability of your remote security networks, reduces the costs involved in
maintaining a remote security network, and enables you to manage dynamically addressed remote
firewalls.
maintaining a remote security network, and enables you to manage dynamically addressed remote
firewalls.
AUS uses a browser-based, graphical user interface and requires Common Services 3.3. For more
information about AUS, refer to the documentation located at
information about AUS, refer to the documentation located at
Resource Manager Essentials 4.3
To support life cycle management, RME provides the ability to manage device inventory and audit
changes, configuration files, software images, and basic syslog analysis (for configuration archival and
tracking purposes). To support the 64-bit OS, RME installation must be installed from the RME package
with the Security Manager 4.1 bundle. RME included with the CiscoWorks LAN Management Solution
(LMS) is not compatible with the 64-bit OS.
changes, configuration files, software images, and basic syslog analysis (for configuration archival and
tracking purposes). To support the 64-bit OS, RME installation must be installed from the RME package
with the Security Manager 4.1 bundle. RME included with the CiscoWorks LAN Management Solution
(LMS) is not compatible with the 64-bit OS.
RME uses a browser-based, graphical user interface and requires Common Services 3.3. For more
information about RME, refer to datasheets at
information about RME, refer to datasheets at
Supported device information for RME is available at
.
Performance Monitor 4.1
Performance Monitor is a health and performance monitoring application with a special emphasis on
security devices and services. Performance Monitor supports the ability to proactively detect network
performance issues before they become critical; helps identify portions of the network which are
security devices and services. Performance Monitor supports the ability to proactively detect network
performance issues before they become critical; helps identify portions of the network which are