Cisco® Security Manager is part of the Cisco Security Management Suite, which delivers comprehensive policy administration and enforcement for the Cisco Self-Defending Network. The suite also includes the Cisco Security Monitoring, Analysis, and Response System (Cisco Security MARS), which can be purchased separately. Unlike point security products from multiple vendors, which often do not work together and can leave vulnerable gaps, the Cisco Security Management Suite provides a comprehensive solution for provisioning, monitoring, analysis, and mitigation to keep networks safer, more resilient, and easier to operate.
Cisco Security Manager is an industry-leading enterprise-class application for managing security. Cisco Security Manager addresses configuration management of firewall, VPN, and intrusion prevention system (IPS) security services across Cisco routers, security appliances, and security services modules. For a summary of Cisco Security Manager features and benefits, including new features in Version 3.1, refer to the Cisco Security Manager 3.1 data sheet at
The Standard versions provide management for 5 and 25 devices, respectively. The Professional version includes support for 50 devices and supports incremental device license packages available in increments of 50, 100, 500, and 1000 devices.
The Professional version includes support for the management of Cisco Catalyst
® 6500 Series switches and associated services modules; the Standard versions do not include this support.
The management software consumes a device license for:
• Each added physical device
• Each added Cisco Catalyst 6500 Series Security Services Module
• Each security context
• Each virtual sensor in an IDSM-2
The Advanced Inspection and Prevention Security Services Modules (AIP-SSMs) and the IDS Network Modules (NM-CIDSs) installed in the host device do not consume a license
The license allows the use of the software on a single server. A standby Cisco Security Manager server does not require a separate license if only one server is active at any one time.
Cisco Security Manager also includes a license for the included applications Performance Monitor and Resource Manager Essentials (RME). The device count entitlement for these applications corresponds to the same number of devices licensed for Security Manager itself.
Note: Beginning with Security Manager 3.2, RME will no longer be included with Security Manager. Customers wishing to obtain the latest version of RME should purchase the CiscoWorks LAN Management Solution which includes RME.
Table 1 lists part numbers for Cisco Security Manager.
Table 1. Cisco Security Manager Part Numbers
Product Part Number
Software Application Support (SAS) Service
To Receive Technical Support and Future Minor Software Updates
Cisco Security Manager 3.1 Enterprise Standard-5 Media Kit: 5-Device Limit
Cisco Security Manager 3.1 Enterprise Standard-25 Media Kit: 25-Device Limit
Cisco Security Manager 3.1 Enterprise Professional-50 Media Kit: 50-Device Base License
• Requires a Cisco Security Manager 3.0 Software Application Support (SAS) service contract.
Cisco Security Manager 3.0 or 3.0.1
Customers can order minor release upgrade kits using normal Cisco sales channels. See Table 1 for the minor release upgrade part numbers. The minor release upgrade kits do not include licenses and require the use of your previously obtained Security Manager 3.0 or 3.0.1 licenses.
Migration Options from CiscoWorks VPN/Security Management Solution
Cisco discontinued adding support for new features and new devices in CiscoWorks VMS with the release of Cisco Security Manager. Customers that require provisioning for Cisco firewalls, VPNs, and IPSs will want to plan their migration to take advantage of the significant enhancements available in Cisco Security Manager and the latest Cisco devices and releases.
All no-charge upgrades from CiscoWorks VMS to Cisco Security Manager have been discontinued as of April 2, 2007. However, discounted upgrades to Cisco Security Manager remain available for customers with any type of CiscoWorks VMS (Basic, Restricted, or Unrestricted). See Table 1 for the CiscoWorks VMS to Cisco Security Manager upgrade part numbers.
Cisco offers a wide range of services programs to accelerate customer success. These innovative services programs are delivered through a combination of people, processes, tools, and partners, resulting in high levels of customer satisfaction. Cisco services help you to protect your network investment, optimize network operations, and prepare your network for new applications to extend network intelligence and the power of your business. For more information about Cisco services, visit
Cisco Security Manager software is eligible for technical support service coverage under a Cisco SAS service agreement, which features:
• Unlimited access to the Cisco Technical Assistance Center for award-winning support. Technical assistance is provided by Cisco software application experts who are trained in Cisco security software applications. Support is available 24 hours per day, 7 days per week, 365 days per year worldwide.
• Registered access to Cisco.com, a robust repository of application tools and technical documents to assist in diagnosing network security problems, understanding new technologies, and staying current with innovative software enhancements. Utilities, white papers, application design data sheets, configuration documents, and case management tools help expand your in-house technical capabilities.
• Access to application software bug fixes and maintenance and minor software releases.
Customers requiring Cisco technical support and minor updates to Cisco Security Manager will need to purchase a Cisco SAS service contract. Table 1 lists the SAS part numbers.