I can't seem to find any information regarding mass rollouts of Cisco IPS 4240 devices. I have 6 devices I intend to roll out to several remote offices and tie into a centralized Cisco MARS appliance. Without using any CSM/LMS software, is there an quick and dirty way to pull this off? I'm thinking to configure a single IPS device then pull and distribute its configuration file to the remaining devices. Would like to see how others have accomplished this...
If all of your sensors are the same type (all 4240s in your situation) and will all run the extact same configuration, then the copy command will help you out.
There was a new feature added into the copy command in IPS 6.1 that will help you in copying config from one sensor to another.
You full configure one sensor (use IME, IDM, or CLI). When you are happy with the configuration then use the copy command to copy it TO an SCP server.
Now bringup a second sensor and configure the basic networking parameters through setup (ip address, gateway, etc...).
Now use the copy command on the second to copy the first sensors configuration FROM the SCP server into the running config of the second sensor.
It will prompt you whether to overwrite the second sensor's networking parameters.
The rest of the first sensor's configuration will copied into the second sensor.
The second sensor will keep it's own unique IP but will gain the rest of the configuration from the first sensor's config.
Continue doing this with any additional sensors.
The process can then be repeated anytime additional changes are made to the first sensor.
Keep in mind though that this only works if the sensor's configuration will be exactly duplicated (including what interfaces would be monitored and how).
If each sensor will have some unique tunings then you will need to either manage each sensor on it's own, or purchase CSM that can be used to share only certain portions of the configuration across multiple sensors.