I'm trying to make a management console for the support team. Acces rights are very specific and we need to trace any actions.
We are using LMS 3.1.
I know that Cisoview uses SNMP to read and modify configurations. Is it the same for CM ?
As DFM is not supporting snmp v3, we need to configure SNMP v2 with write access which is not very secure.
Moreover, for Ciscoview and CM, how can I do accounting to keep trace of all changes ?
Is there a way to configure VLAN port assignment in Ciscoview. My support team will have to activate/deactivate interfaces and assign VLAN to a port. They will need to use 2 modules to do that !
They used CNA and everything could be done on a single GUI. Also, the CNA uses HTTPS (encrypted and authenticated, not like SNMPv2). Any commands/actions done on CNA was accounted in the ACS.
I want to deploy Ciscoworks, and I wanted the support team to use it hile making changes. But I realize that I will lose security and "user-friendly" capability.
I want a simple way (no command-line) to configure interfaces, without using SNMP. And I want to keep trace of any actions on switches "Who did What".
Is there a way to do that ?
I've tried Ciscoworks ICM but it is not supported with LMS 3.1 ! So I could not try it.
PS : I'm using Cisco ACS 4.1