Safari Books Online is a digital library providing on-demand subscription access to thousands of learning resources.
- Create BookmarkCreate Bookmark
- Create Note or TagCreate Note or Tag
- DownloadDownload
- PrintPrint
Chapter 15. Installing and Integrating C... > Integrating Cisco IPS Manager Expres...
Integrating Cisco IPS Manager Express with Cisco IPS Sensors
To add a sensor to Cisco IPS Manager Express, follow these steps:
Step 1. | Launch the Cisco IME application by clicking the Cisco IME icon. After Cisco IME starts, a video opens, as shown in Figure 15-4. The video highlights key features within Cisco IME in a quick summary. To disable the video from opening, deselect the Show feature presentation video at startup check box. Figure 15-4. Cisco IME Introduction VideoTip Video help is always available to walk you through various steps within the application, depending on which dashboard or view you have open, but you can also view all video help available by choosing Help > Show Video Help. Note Video help requires that you have the Adobe Flash Player installed. |
Step 2. | From the home view, choose Devices > Device List and then click Add. |
Step 3. | Fill in the required fields in the Add Device dialog box, as shown in Figure 15-5:
Figure 15-5. Adding an IPS Sensor to Cisco IME
|
Step 4. | If you are connecting through HTTPS for the first time, you will be presented with a certificate from the sensor, as shown in Figure 15-6. Verify and accept the sensor certificate. Cisco IME will store the certificate locally for subsequent connections. Figure 15-6. Accept Sensor Certificate
Caution If you reject the certificate, the sensor will refuse your connection. Note During the initial setup of the IPS sensor, the IP address of the host running Cisco IME must be added under the allowed hosts section of the setup procedure; otherwise, Cisco IME will not be able to communicate with the sensor. This is covered in more detail in later chapters. Note Cisco IME compares the time configured on the host it is running on with the time on the sensor to make sure that they are synchronized. If they are not, Cisco IME will notify you through a warning, as shown in Figure 15-7, so that you can remediate that and ensure that the times read the same. Figure 15-7. Synchronize Time Between Sensor and Cisco IME Host
|
Step 5. | After connectivity has been established, check the sensor health and network security health to make sure that they are both normal and green. In Figure 15-8, sensor health is Critical because the signature update has not occurred for 458 days and the license has expired. Figure 15-8. Critical Sensor Health Because of License and Signature Age |
Step 6. | To remedy the license issue in Step 5, choose Configuration Sensor Name > Sensor Management > Licensing and apply a license, as shown in Figure 15-9. Licenses can be updated through Cisco.com or locally. In this case, we have the license locally stored on the host. Figure 15-9. Applying the Sensor License |
Step 7. | To remedy the signature age issue, navigate to Configuration Sensor Name > Sensor Management > Auto/Cisco.com Update. Select Enable Signature and Engine Updates from Cisco.com, supply the Cisco.com credentials, enter a start time, and choose between hourly and daily updates; this is shown in Figure 15-10. Figure 15-10. Configuring Automatic Signature Updates |
Step 8. | With the issues resolved, check the sensor health by choosing Home > Dashboards > Dashboard and selecting the Health Dashboard. The sensor health is now green and normal, as shown in Figure 15-11. Figure 15-11. Sensor and Network Health Are Now Normal |
