cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1216
Views
0
Helpful
16
Replies

Integrating Ciscoworks 3 with ASA device

bgl-group
Level 1
Level 1

Can someone point me in the right direction. I want to get the LMS server to achive and store all the ASA configurations we have (5 and counting). However I cannot seem to get this working. One of the devices has been added to LMS but I cannot seem to get it to retrieve the configuration.

Both devices are setup to use the same ACS server and the account specified in LMS will let me log into the ASA without issues. SSH access is also enabled on the ASA.

Thanks in advance

Giles Cooper

16 Replies 16

Joe Clarke
Cisco Employee
Cisco Employee

What version of RME do you have? What errors do you get when you try to sync the config from the ASA devices?

RME version is 4.2.0

The error message from the config collection report is

CM0056 Config fetch failed for bre-vpn-fw01 Cause: CM0204 Could not create DeviceContext for 234 Cause: CM0202 Could not access 192.168.254.250 via SNMP. Action: Check the Read Community string Action: Check if required device packages are available in RME. Action: Check if protocol is supported by device and required device package is installed.

However the SNMP strings are set correctly at each end, and the packages should be installed (I upgrade all missing packages to try and solve the problem).

Giles

What is the sysObjectID of this ASA?

The OID for the ASA is 1.3.6.1.4.1.9.1.669

I just double checked and this is the same ID that LMS is using for the device.

This device is supported, so there must be a problem with your package installation. I'm guessing this is a Windows server. Please post the list of contents under NMSROOT/MDC/tomcat/webapps/rme/WEB-INF/lib/pkgs and NMSROOT/www/classpath/com/cisco/nm/xms/psu/pkgs/rme.

contents of the folders as requested

This looks good. How does the ASA show up in the device selector?

Screenshot from device selector in LMS attached.

I am starting to wonder if the problem lies with the ASA configuration - does anyone have a guide for what needs to be set to allow LMS to run with an ASA.

I seem to be having the same issues with a pair of ASA's. 5510's like yours.

When you go to RME/Config Mgmt/Archive Mgmt, are you able to select the device? Mine seems to be locked or greyed out....

I can do an SNMP walk on the devices, and access rights are working ok for Telnet, but the LMS won't do a config fetch for archive.

You will need to enable ArchiveMgmt Service debugging under RME > Admin > System Preferences > Application Loglevel Settings, reproduce the problem, then post the dcmaservice.log.

The previous error you posted points to a device support problem, and not an issue with the ASA.

Extract of the log file is attached - I think I have the entire transaction but the original source file is 8MB.

What is the sysObjectID of this ASA? Please post the list of contents under NMSROOT/MDC/tomcat/webapps/rme/WEB-INF/lib/pkgs and NMSROOT/www/classpath/com/cisco/nm/xms/psu/pkgs/rme.

I already posted the information you asked for several posts back and haven't changed anything else on the server since.

OID 5th message in thread

Directory contents 7th message in thread

Sorry, for whatever reason, the latest post was the RME version and error. I simply re-replied to that.

There are no errors in this log. What transport protocols do you have enabled for config fetch under RME > Admin > Config Mgmt > Transport Settings?

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Innovations in Cisco Full Stack Observability - A new webinar from Cisco