Cisco Systems CL-28826-01

7-25

User Guide for Cisco Security Manager 4.4

OL-28826-01

Chapter 7 Managing FlexConfigs

Configuring FlexConfig Policies and Policy Objects

3. Preview the configuration to verify that it is correct.

4. Share the policy object with another device.

5. Deploy the configuration to the devices.

You can use this scenario as an example to implement other features by creating copies of and modifying

predefined FlexConfig policy objects or by creating your own objects.

Before You Begin

Add two ASA devices to Security Manager for this scenario.

Step 1 Duplicate the FlexConfig policy object by doing the following:

a. Select Manage > Policy Objects to open the Policy Object Manager (see Policy Object Manager,

page 6-4).

b. Select FlexConfigs from the table of contents. The table in the right pane lists the existing

FlexConfig objects.

c. Right-click ASA_MGCP FlexConfig and select Clone Object. The Add FlexConfig dialog box

appears (see Add or Edit FlexConfig Dialog Box, page 7-29).

d. Enter a name for the new FlexConfig object, for this example, MyASA_MGCP.

e. Enter a new group name and a description of the object.

Tip The group name and description are optional. We recommend you establish descriptions and

groups for objects you create.

f. Click OK. The new FlexConfig object appears in the list.

Step 2 Duplicate and edit the $callAgentList text object.

The original ASA_MGCP FlexConfig object uses the variable $callAgentList, which is a text object. The

text object is read-only and cannot be edited. Duplicating the text object enables you to edit the duplicate

object to apply to your network settings.

a. Select Tex t Ob jec ts from the table of contents.

b. Right-click callAgentList and select Clone Object. The Add Text Object dialog box appears.

c. Edit the name of the text object. For this example change it to mycallAgentList.

d. Double-click the first value in column A and enter the IP address for a call agent in your network.

For this example, change the value to 10.10.10.10.

e. Double-click the first value in column B and enter the port number for a call agent in your network.

For this example, change the value to 105.

f. Change the IP address and port number values for another call agent. For this example, change the

IP address to 20.20.20.20 and the port number to 106. Or, if you have only one call agent in your

network, you could remove the second row in the table by decreasing the number in the Number of

Rows field. Similarly, if you have more than two call agents, you can add rows by increasing the

number in this field.

This concept is similar for increasing and decreasing the number of columns by increasing or

decreasing the Number of Columns field.

g. Click OK. The new text object appears in the list of text objects.