Cisco Systems OL-25111-01 Security Configuration with Cisco Secure ACS, Cisco Secure ACS Support

Page 63

A P P E N D I X C

Security Configuration with Cisco Secure ACS

To configure Service Monitor to use Cisco Secure ACS for authentication and authorization, work through these topics in order:

Cisco Secure ACS Support, page C-1

Service Monitor Integration Notes, page C-1

Common Services Local Login Module Authentication Roles, page C-2

Configuring the System Identity User in Common Services, page C-3

Setting Up the Cisco Secure ACS Server, page C-3

Changing the AAA Mode to ACS in Common Services, page C-4

Assigning Roles to Users and User Groups in Cisco Secure ACS, page C-5

Verifying the Service Monitor and Cisco Secure ACS Configuration, page C-5

Cisco Secure ACS Support

Service Monitor supports the ACS mode of authentication and authorization. To use this mode, you must have a Cisco Secure Access Control Server (ACS), installed in your network on a server separate from the one where Service Monitor is installed. For the supported software version, see Table 1-1.

Service Monitor Integration Notes

Service Monitor (and Common Services) integrate with Cisco Secure ACS as shared profile components. Multiple instances of the same application—for example, Service Monitor—can use the same Cisco Secure ACS server for authentication and authorization.

When you register Cisco Unified Service Monitor (and Common Services) with Cisco Secure ACS, the applications tasks—such as adding data source credentials to Service Monitor—and user roles—such as Network Administrator—for the application are imported into Cisco Secure ACS.

You only need to register one instance of an application with Cisco Secure ACS for tasks and roles to be imported. If you register an application a second time, any changes that you have made to role settings, such as creating custom roles, are lost.

Installation Guide for Cisco Unified Service Monitor

 

OL-25111-01

C-1

 

Page 62 Page 64
Image 63
Page 62 Page 64
Contents Americas Headquarters Installation Guide for Cisco Unified Service MonitorPage N T E N T S Common Services Database Password A-9 Licensing Process B-3 OL-25111-01 Audience ConventionsConvention Related Documentation Product DocumentationObtaining Documentation and Submitting a Service Request Preface Installation Guide for Cisco Unified Service Monitor Product Overview PrerequisitesServer and Client System Requirements Server RequirementsGuidelines, Configuration Notes, Description SpecificationsClient Requirements LAN SettingsComponent Minimum Requirement VMware GuidelinesPrerequisites Server and Client System Requirements Enabling and Disabling Fips on a Windows Server Windows 2003 /Windows Server FeaturesPort Usage Protocol Port Number Service Name50001 SOAPMonitor Port Protocol Number Service NameOL-25111-01 Preparing to Install Service Monitor Installing, Uninstalling, and Upgrading Service MonitorPreparing the Server Gathering Information to Provide During Installation NTP Configuration NotesEnsuring That Required Ports Are Free Installing Cisco Unified Service Monitor Page For more information, see NTP Configuration Notes, Preparing to Upgrade to Service Monitor Starting Cisco Unified Service MonitorBacking Up Service Monitor Files and Database Upgrade PathsUnderstanding the Effect an Upgrade Has on Your Data Preventing Extra Processing After Upgrade Deleting Cisco 1040 Configuration Files from Tftp ServersConfiguring NTP Upgrading to Service MonitorUpgrading to Service Monitor 8.6 from 8.0 OL-25111-01 Adding Service Monitor to Unified Communications Manager Performing Post-Upgrade Configuration for Cisco 1040s Default 1040 Sensor Configuration File-QOVDefault.CNF Sample Cisco 1040 Sensor Configuration FilesUninstalling and Reinstalling Service Monitor Uninstalling Service MonitorUninstalling Service Monitor, Reinstalling Service Monitor, Reinstalling Service Monitor Configuring Your System for Snmp Queries OL-25111-01 Configuring Security Configuring Users ACS and Local RbacConfiguring Security, Configuring Service Monitor, Https//servernamehttps port Enabling SSL Between the Browser and the ServerConfiguring Service Monitor OL-25111-01 Passwords, see Password Information User Inputs for Typical InstallationSettings Value Password InformationUser Inputs for Custom Installation Fixing Problems That Can Occur After You Change PasswordsA-7 On passwords, see Password Information Admin and guestOccur After You Change Passwords, page A-7 Existing passwords, leave the fields blank Settings Value Password Changed Potential Problem Workaround Password InformationPassword Rules for a New Installation Fixing Problems That Can Occur After You Change PasswordsPassword Rules for an Upgrade Installation Password Rules for ReinstallationPassword Descriptions Common Services Guest Password Changing PasswordsChanging the casuser Password Installation Guide for Cisco Unified Service Monitor OL-25111-01 Column Licensing OverviewVerifying License Status Licensing Overview, page B-1 Licensing Process, page B-3Licensing Scenarios Column DescriptionScenario What to Do Documentation and Submitting a Service Request Licensing ProcessLicensing Messages Registering a License File with Service Monitor Obtaining a PAKObtaining a License File Table B-2 License Registration Result OL-25111-01 Security Configuration with Cisco Secure ACS Service Monitor Integration NotesCisco Secure ACS Support Role Description Common Services Local Login Module Authentication RolesConfiguring the System Identity User in Common Services Setting Up the Cisco Secure ACS ServerChanging the AAA Mode to ACS in Common Services Assigning Roles to Users and User Groups in Cisco Secure ACS Installation Guide for Cisco Unified Service Monitor D E IN-2 IN-3 IN-4

OL-25111-01 specifications

Cisco Systems OL-25111-01 is a comprehensive online training course designed to enhance the knowledge and skills of IT professionals in managing Cisco networking environments. This course covers a wide array of topics that are essential for anyone aiming to achieve proficiency in Cisco technologies and solutions.

One of the main features of the OL-25111-01 course is its structured curriculum, which is tailored to provide a step-by-step learning experience. It delves into crucial aspects such as Cisco architecture, access control lists (ACLs), and the fundamentals of routing and switching. These foundational elements form the backbone of Cisco networking and are vital for configuring and managing network devices effectively.

The course places a significant emphasis on hands-on experience through virtual labs, allowing participants to practice real-world networking scenarios. This practical approach is invaluable for reinforcing theoretical knowledge and preparing students for real-world challenges. Moreover, the course offers guidance on troubleshooting, ensuring that learners are equipped to identify and resolve network issues proficiently.

Another notable aspect of OL-25111-01 is its focus on Cisco's latest technologies. This includes insights into Software-Defined Networking (SDN), network automation, and security measures that are essential in today’s cyber landscape. By integrating modern technologies into the curriculum, Cisco ensures that participants remain competitive in an ever-evolving industry.

The training also incorporates an interactive format, featuring quizzes and assessments that help reinforce learning. Feedback mechanisms are built into the course, allowing participants to identify areas for improvement and solidify their understanding of complex concepts. This adaptive learning environment facilitates a deeper comprehension of Cisco's networking principles.

Furthermore, Cisco Systems OL-25111-01 is aligned with industry certification programs, making it an excellent preparatory tool for professionals seeking to obtain Cisco certifications. The course is designed to enhance career advancement opportunities by providing the requisite knowledge and skills that employers seek.

In summary, Cisco Systems OL-25111-01 is an essential training resource for IT professionals aiming to excel in Cisco networking. With its comprehensive curriculum, practical labs, focus on modern technologies, and alignment with certification programs, this course equips learners with the tools they need to succeed in a competitive job market. Whether you are a seasoned IT professional or a newcomer to the field, this course serves as a valuable stepping stone in your networking career.
Top Page Image Contents