CSM (Cisco Security Manager) automated policy discovery

Unanswered Question
Jun 1st, 2009
User Badges:


Does anybody know if it possible to automate a policy discovery on a group of objects?

Essentially I have two CSM servers running in seperate locations, one primary and one secondary and want the secondary to do an automated policy discovery on a number of ASAs to keep the secondary database/policies up to date.

I can't find any obvious way to do this.

All the best,


  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
andy.taylor Mon, 06/01/2009 - 06:09
User Badges:


Many thanks for the link.


To install Security Manager in a dual-node HA environment, you need two servers that can access a shared storage array.

Unfortunately this is not an option for the current setup, which is why I am having to revert to a active/active type setup.

The secondary CSM will be happy if it does a policy discovery. It's just a matter of finding out how to get this automated discovery on a regular basis.

All the best,



This Discussion