Cisco Security Manager using ACS and IPS Sensors

Unanswered Question
Apr 29th, 2009
User Badges:

I thought I was being clever here and integrated my CSM server with IPS.


This has had two side effects - the first is it has trashed all the devices previously loaded into the system - so effectively I have a blank server. Not that big a problem as we only started using it a month ago but annoying anyway.


Second it now has an objection to installing the IPS sensors as they are not registered in ACS. Not that you can to be honest.


So how would I go about fixing this or is it just remove the ACS integration and go back to manual accounts on this box?


I did try adding one of the IPS sensors to ACS but after 30 minutes it still isn't registering?


Very puzzled.


Giles Cooper

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
bgl-group Tue, 05/05/2009 - 05:48
User Badges:

Found the problem.


There are two databases one for TACACS authenticated devices and one for local authenticated devices.


I created a ACS entry for every IPS sensor, and then deleted the device records from ACS (Local authentication).


Converted to ACS mode and then reloaded each device back to the CSM database. Interesting use of a friday afternoon but it does work.


Actions

This Discussion