Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
306
Views
0
Helpful
3
Replies

Cisco CSM - Has anyone deployed it in their environment for IDS/IPS devices

haxworthy
Level 1
Level 1

‎06-25-2007 06:26 AM - edited ‎03-10-2019 03:40 AM

We are an MSP and are evaluating Cisco CSM to manage about 50 IDS/IPS devices. Each of these devices has their own customer signature policy.

Does anyone use it in their production environments? Do you find it useful?

Regarding policy management for devices that already have a signature policy, I know you can discover the policy, what we want to do is take the current discovered policy, modify it if we need to and then re-deploy it to the device. I'm finding that this is all read only once the policy is discovered.

Is there a way to modify the signature, for example, adding a logging parameter and then re-deploy?

Just curious if others had similar experiences with CSM.

Thanks!

Labels:
0 Helpful
3 Replies 3

dradhika
Cisco Employee
Cisco Employee

‎06-26-2007 11:29 AM

Hi Haxworthy,

I see that there are no responses for your posting.

Did you try posting your question in Ask Your Expert:Cisco Security Manager Section. Amrit might be knowing about it for sure.

Thanks,

Radhika

0 Helpful

mhellman
Level 7
Level 7

‎06-28-2007 02:03 PM

I haven't used CSM...but what would be the point if you couldn't modify the various policies? What exactly would CSM be managing?

0 Helpful

wiluszm
Level 1
Level 1

‎07-05-2007 12:03 PM

haxworthy,

I currently use CSM to manager a variety of IPS devices (IOS IPS, 42xx Sensors, 65xx-series blades). The policies vary on some devices. CSM works wonderfully. CSM discoveries the various policies on the device on an individual basis. Policies can then be edited on a per-sensor basis or on a group level. Has worked wonderful in our environment. A nice upgrade from the old IPSMC. Let me know if you have any other questions.

-Mike

http://cs-mars.blogspot.com

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card