09-15-2008 05:20 AM - edited 02-21-2020 03:00 AM
I have installed Cisco Security Manager 3.2.1 with RME 4.1.1, AUS 3.2.1 along with Performance Monitor 3.2.1 version on the same server.
Iam able to add devices in RME, AUS and working fine with adding devices in CSM and able to discover the existing VPN's.
I properly configured SNMP RO community string, enabled HTTPS but unable to add devices in performance monitor.
I get the error " either the HTTPS was not enabled or the credentials are not correct."
HTTPS is enabled and proper credentials are entered and same is working fine when devices are added in CSM.
Can anyone help me on this.
Thanks,
Chandru
09-15-2008 08:39 AM
Did you have a look at this link?
Regards
Farrukh
09-15-2008 10:22 PM
Hi Farrukh,
Its a good link.
I have created a username with same user password and enable password for PIX/ASA firewalls
If I create a new username with less priv level still I get the same error message.
Any other solution to resolve this issue?
Thanks,
Chandru
09-15-2008 11:32 PM
Why don't you give this username privilege 15 only? Can you post outputs of
show run aaa
show run username (remove the passwords)
Regards
Farrukh
09-15-2008 11:36 PM
ASA5510# sh run aaa
aaa authentication ssh console LOCAL
aaa authentication http console LOCAL
aaa authentication telnet console LOCAL
ASA5510# sh run username
username admin password xxxxx encrypted privilege 15
username readonly password xxxxx encrypted privilege 5
Thanks,
Chandru
09-15-2008 11:55 PM
This seems OK, please post 'show run http' as well
Regards
Farrukh
09-16-2008 12:00 AM
ASA5510# sh run http
http server enable
http 193.169.1.0 255.255.255.0 management
http 147.183.0.0 255.255.0.0 inside
http 10.1.0.0 255.255.0.0 inside
ASA5510#
I have 147.183.0.0 and 10.1.0.0 inside networks configured for HTTP access and CSM server is in 147.183.0.0 network
Thanks,
Chandru
09-16-2008 12:09 AM
So in CPM when importing the device are you using username/passwd or also the enable password?
Regards
Farrukh
09-16-2008 12:17 AM
When I try to import I use the username admin and user password.
User password and enable password are the same.
If I change the user password I get the same error message.
09-16-2008 12:40 AM
Can you post the screenshot of the page on which you are entering the username/password AFTER entering the values?
Also are you able to add other devices properly?
Did you also try to import using DCR file (exported from CiscoWorks)?
Regards
Farrukh
09-16-2008 01:12 AM
09-16-2008 02:39 AM
So you are putting username admin and the password in BOTh the fields below? Have you double checked this password by logging into the device itself? Is the SNMP community string correct? can you post 'show run snmp-server' output.
Is this PIX or ASA and which version?
Regards
Farrukh
09-16-2008 02:50 AM
yes, Iam using the correct password. We have standard passwords set. All the devices set user password & enable password same.
I can login to ASA using same password and it works fine. SNMP community is correct.
The ASA version is 8.0(3)
ASA5510# sh run snmp-server
snmp-server host inside 10.1.1.7 community public version 2c
snmp-server host inside 147.183.140.176 community public version 2c
snmp-server host inside 147.183.141.15 community public version 2c
snmp-server location India
snmp-server contact IT Operations
snmp-server community public
snmp-server enable traps snmp authentication linkup linkdown coldstart
ASA5510#
Thanks,
Chandru
09-18-2008 01:45 AM
Your ASA is running a 3des license right?
Also is 147.183.140.176 or 147.183.141.15 the CSM server?
Regards
Farrukh
09-19-2008 01:49 AM
Yes, ASA is running 3des license.
CSM server is 147.183.141.15
Thanks,
Chandru
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: