Client
Installation Requirements
Accessing CiscoWorks2000 and IDS Management Center is
accomplished through a Web interface. This allows clients to access the IDS
Management Center by using a browser. The minimum system requirements for a
client are specified in Table 10.2.
Table 10.2: Client System Requirements
|
Component |
Minimum Requirement |
|
Hardware |
IBM PC Compatible with minimum 300MHzPentium
Processor |
Sun Ultra 10 or Sun SPARCstation with a 333MHz
processor |
|
Software |
Windows 2000 Server, or Professional Edition with Service
Pack 3 Windows XP Professional, Service Pack 1 with Microsoft Virtual
Machine |
Solaris 8 |
|
Memory |
256MB |
|
|
Virtual Memory |
400MB |
512MB |
|
Browser |
Microsoft Internet Explorer 6.0, Service Pack1 for Windows
operating systems with Microsoft Virtual Machine.
Netscape Navigator 4.79 on any of the following: Windows
2000 Server Professional Edition with Service Pack 3 Windows XP Professional,
Service Pack |
Netscape Navigator 4.76 for
Solaris |
Installation
Steps
Once the prerequisite components have been
verified, the basic installation steps for the IDS MC are as follows:
-
Log in as the local administrator.
-
Insert the CD-ROM containing the "Monitoring Center for
Security and Management Center for IDS Sensors" program. If the installation
program does not start, select Run from the Start button. Browse for the setup program on
the CD-ROM drive. Open the Setup program and click OK. If the installation program does start, click Install on the Installer page. Click Next.
-
The Software License Agreement page appears. Be sure you
understand the Agreement, then click Yes to accept its
terms..
-
The installation now begins. To install both the IDS MC and
the Security Monitor, click the Typical Installation radio
button. To install only the IDS MC or the Security Monitor, click the Custom Installation button, and select either the IDS MC only radio button or the Security Monitor
only radio button. Click Next.
-
The System Requirements page appears. Verify that the system
meets the minimum disk space and memory requirements. Click Next.
-
The Verification page appears. Verify the selected
components. Click Next.
-
The Select Database Location page appears. By default, the
IDS database is located in the directory where CiscoWorks Common Services is
installed. To specify a different directory for the database, enter a directory
path in the Database File Location field provided. Click Next.
-
The "Select Database Password" page appears. Enter the
database password in both the Password and Confirm Password fields. Click Next.
-
Either the Select CW2000 Syslog Port page or the Restart
page appears.
-
If the Security Monitor is installed, the Select CW2000 Syslog Port page appears. Specify the UDP port to
be used by CiscoWorks. The default value of 52514 is recommended. Click Next. The Configure Communications Properties
page appears. Enter the host ID, organization ID, IP address, hostname, and
organization name into the appropriate fields. Click Next.
-
If only the IDS MC is installed, the Restart page appears.
On the Restart page, select Yes to restart
the computer. Choose No to restart the computer at a later
time. Select Finish. The computer must be restarted before it
is possible to use the IDS MC or Security Monitor.
Getting
Started
Access to the IDS MC is provided through the Apache Web
server on the CiscoWorks2000 host. This provides for easy access through either
a web browser meeting the requirements defined in Table 10.2. The CiscoWorks
2000 Apache Web server listens for incoming connections on TCP port 1741 of the
CiscoWorks2000 host. To access the CiscoWorks2000 system, enter one of the
following URLs:
Log into the CiscoWorks2000 Server Desktop, as shown in Figure
10.5. The default login name and password for the CiscoWorks2000 system
include the following:
After entering the login Name and Password, click Connect. Note, it is highly recommended
that the password of the admin account be changed from the
default value of admin immediately upon installation and
configuration of CiscoWorks2000 in order to prevent unauthorized users from
gaining administrative access to the CiscoWorks2000 software.
Authorization Roles
CiscoWorks provides for five different default types of
accounts or authorization roles that can be created for IDS MC users. These
authorization roles and their respective privileges are summarized in Table
10.3.
Table 10.3: Authorization Roles
|
Authorization Role |
Privileges |
| |
View |
Create/Modify/Delete |
|
Help Desk |
View reports and alarms |
Cannot delete reports or alarms. Cannot generate
reports. |
|
Approver |
View reports and alarms |
Approve configurations. Cannot delete reports or alarms.
Cannot generate reports. |
|
Network Operator |
View reports and alarms |
Deploy configurations. Delete reports and alarms. Generate
reports. |
|
Network Administrator |
View reports and alarms |
Edit devices and device groups. |
|
System Administrator |
View reports and alarms. |
Edit devices and device groups. Delete reports and alarms.
Generate reports. Import lists (files) and notification
scripts. |
Creating accounts with different
authorization roles allows an administrator to delegate different
responsibilities to different IDS Management Center users. Each account holder
or user can be given the authority needed to carry out his responsibilities.
Installation Verification
To verify the successful installation of CiscoWorks 2000 and
the IDS MC, select the Server Configuration entry on the
CiscoWorks2000 Server Desktop, as shown in Figure 10.6. Then select
About the Server and Applications and
Versions.
Verify that the following key CiscoWorks components are
installed:
-
Apache The Apache Web server provides the
Web interface used by a client to access the IDS Management Center.
-
CWCS SQL Components A Sybase SQL server
is used to provide the database services required by the IDS Management
Center.
-
Cisco Works Common Services (CWCS) There are a multitude of services provided by CWCS that are
required by the IDS Management Center.
Adding
Users to CiscoWorks
Adding users to the CiscoWorks system is straightforward. To
add a new user to the CiscoWorks2000 system:
-
Open the Server Configuration tab in the
right side panel of the CiscoWorks interface.
-
Select Setup and then Security, as shown in Figure 10.7.
Figure 10.7: CiscoWorks
Server Configuration Add User
-
Select the Add Users option.
-
Enter values for the setting listed in Table 10.4 and shown in Figure
10.8.
Figure 10.8: The CiscoWorks2000 Add User Web
Page
Table 10.4: CiscoWorks "Add Users"
Information
|
CiscoWorks2000 "Add Users" Setting |
Information |
|
Username |
Name of new user account to add |
|
Local Password |
Account password |
|
Confirm Password |
Password confirmation |
|
E-mail |
User's e-mail address (optional) |
|
CCO Login |
User's CCO login account name (optional) |
|
CCO Password |
User's CCO login account password (optional) |
|
Confirm Password(optional) |
CCO Password confirmation |
|
Proxy Login |
User's proxy server login name (optional) |
|
Proxy Password |
User's proxy server password (optional) |
|
Confirm Password |
Proxy password confirmation
(optional) |
The IDS
MC
If the IDS MC installation is successful, an entry for the
Management Center will appear. Selecting the Management Center
entry will prompt the IDS Sensors entry to appear. Selecting the IDS Sensors entry brings up the Management Center IDS Sensors
interface, shown in Figure 10.9.
Sections
Comments (0 posted)
Syndication
