Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1097
Views
5
Helpful
2
Replies

Ciscoworks on same server as ACS/WCS

Go to solution
davidwickert
Level 1
Level 1

‎03-08-2007 11:13 AM

Anyone see a problem with CiscoWorks LMS, ACS 4.1, and WCS cohabiting on the same server? It is a Windows 2003 server with dual 3.8GHz Xeon processors, 3 1/2 GB of RAM and 100GB of free hard drive space.

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Joe Clarke
Cisco Employee
Cisco Employee

‎03-08-2007 11:24 AM

Yes. For one, LMS itself requires at least 2 GB of physical RAM and 4 GB of swap just to start. Second, having your AAA server co-located with other applications invites more network down time (e.g. a patch for LMS requires you to reboot your ACS) and opens you up to more potential security problems (e.g. someone uses a bug in LMS to compromise the server, and they now have all of your usernames and passwords as well). And while LMS cannot integrate with ACS 4.1 yet, when it does, the two applications will contend for available TCP ports (and will most likely exhaust them).

You should give each application a dedicated server to let them do their jobs to the best of their abilities. Your ACS server should be locked away in a room with limited physical access, and no dedicated monitor and keyboard just to aid with security.

View solution in original post

2 Replies 2

Go to solution
Joe Clarke
Cisco Employee
Cisco Employee

‎03-08-2007 11:24 AM

Yes. For one, LMS itself requires at least 2 GB of physical RAM and 4 GB of swap just to start. Second, having your AAA server co-located with other applications invites more network down time (e.g. a patch for LMS requires you to reboot your ACS) and opens you up to more potential security problems (e.g. someone uses a bug in LMS to compromise the server, and they now have all of your usernames and passwords as well). And while LMS cannot integrate with ACS 4.1 yet, when it does, the two applications will contend for available TCP ports (and will most likely exhaust them).

You should give each application a dedicated server to let them do their jobs to the best of their abilities. Your ACS server should be locked away in a room with limited physical access, and no dedicated monitor and keyboard just to aid with security.

Go to solution
davidwickert
Level 1
Level 1
In response to Joe Clarke

‎03-08-2007 11:25 AM

Thank you for your advice. I thought it may not be a great idea, but I thought I would ask anyway.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents