3-20
User Guide for Cisco Security Manager 4.4
OL-28826-01
Chapter 3 Managing the Device Inventory
Adding Devices to the Device Inventory
When performing policy discovery on a device that is already in the network. See Discovering
Policies on Devices Already in Security Manager, page5-15.
Field Reference
Adding Devices from Configuration Files
You can add devices to the inventory by having Security Manager process the device configurations
without logging into the devices. For each device, you must copy the device configuration to a file and
put the file on the Security Manager server.
You cannot use this procedure to add IPS or Catalyst 6500/7600 devices to the inventory.
Before You Begin
Before beginning this procedure, ensure the following preparations have been made:
Table3-4 IPS Module Discovery Dialog Box
Element Description
Discovery The type of discovery for this module:
Discover Inventory and Policies—Discover inventory and security
policies. This is the recommended option.
Discover Inventory Only—Do not discover security policies, but
discover inventory, such as virtual sensors and interfaces. You can
discover the policy configuration later by right-clicking the module
and selecting Discover Policies on Device.
Do Not Discover Module—Skip discovery on this module and do
not add it to the inventory.
IP Address The management IP address for the module.
HTTP Credentials Group
The credentials required to log into the module.
Username The username for the module.
Password The password for the specified username. In the Confirm field, enter the
password again.
HTTP Port The port configured for HTTP access to the module. The default is 80.
HTTPS Port The port configured for SSL (HTTPS) access to the module. The
default is defined on the Device Communication page (Tool s >
Security Manager Administration > Device Communication, for
more information, see Device Communication Page, page 11-16). The
port typically used is 443.
To override the default, deselect Use Default and enter the correct port
number.
IPS RDEP Mode The connection method to use for contacting IPS devices when making
RDEP or SDEE connections (for event monitoring).
Certificate Common Name The name assigned to the certificate. The common name can be the
name of a person, system, or other entity that was assigned to the
certificate. In the Confirm field, enter the common name again.