04-29-2009 07:29 AM - edited 03-10-2019 04:36 AM
I thought I was being clever here and integrated my CSM server with IPS.
This has had two side effects - the first is it has trashed all the devices previously loaded into the system - so effectively I have a blank server. Not that big a problem as we only started using it a month ago but annoying anyway.
Second it now has an objection to installing the IPS sensors as they are not registered in ACS. Not that you can to be honest.
So how would I go about fixing this or is it just remove the ACS integration and go back to manual accounts on this box?
I did try adding one of the IPS sensors to ACS but after 30 minutes it still isn't registering?
Very puzzled.
Giles Cooper
05-05-2009 05:48 AM
Found the problem.
There are two databases one for TACACS authenticated devices and one for local authenticated devices.
I created a ACS entry for every IPS sensor, and then deleted the device records from ACS (Local authentication).
Converted to ACS mode and then reloaded each device back to the CSM database. Interesting use of a friday afternoon but it does work.
09-20-2013 02:06 AM
FYI,
There is a document for Cisco Security Manager - Integration with ACS.
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: