Guest

Cisco Security Manager

Cisco Security Manager 3.1

  • Viewing Options

  • PDF (84.3 KB)
  • Feedback

PB401652

Cisco® Security Manager is part of the Cisco Security Management Suite, which delivers comprehensive policy administration and enforcement for the Cisco Self-Defending Network. The suite also includes the Cisco Security Monitoring, Analysis, and Response System (Cisco Security MARS), which can be purchased separately. Unlike point security products from multiple vendors, which often do not work together and can leave vulnerable gaps, the Cisco Security Management Suite provides a comprehensive solution for provisioning, monitoring, analysis, and mitigation to keep networks safer, more resilient, and easier to operate.

Cisco Security Manager is an industry-leading enterprise-class application for managing security. Cisco Security Manager addresses configuration management of firewall, VPN, and intrusion prevention system (IPS) security services across Cisco routers, security appliances, and security services modules. For a summary of Cisco Security Manager features and benefits, including new features in Version 3.1, refer to the Cisco Security Manager 3.1 data sheet at http://www.cisco.com/go/csmanager.

Licensing

Cisco Security Manager has three base versions:

• Cisco Security Manager Enterprise Edition (Standard-5)

• Cisco Security Manager Enterprise Edition (Standard-25)

• Cisco Security Manager Enterprise Edition (Professional-50)

The Standard versions provide management for 5 and 25 devices, respectively. The Professional version includes support for 50 devices and supports incremental device license packages available in increments of 50, 100, 500, and 1000 devices.
The Professional version includes support for the management of Cisco Catalyst ® 6500 Series switches and associated services modules; the Standard versions do not include this support.
The management software consumes a device license for:

• Each added physical device

• Each added Cisco Catalyst 6500 Series Security Services Module

• Each security context

• Each virtual sensor in an IDSM-2

The Advanced Inspection and Prevention Security Services Modules (AIP-SSMs) and the IDS Network Modules (NM-CIDSs) installed in the host device do not consume a license
The license allows the use of the software on a single server. A standby Cisco Security Manager server does not require a separate license if only one server is active at any one time.
Cisco Security Manager also includes a license for the included applications Performance Monitor and Resource Manager Essentials (RME). The device count entitlement for these applications corresponds to the same number of devices licensed for Security Manager itself.

Note: Beginning with Security Manager 3.2, RME will no longer be included with Security Manager. Customers wishing to obtain the latest version of RME should purchase the CiscoWorks LAN Management Solution which includes RME.

Table 1 lists part numbers for Cisco Security Manager.

Table 1. Cisco Security Manager Part Numbers

Product Part Number

Product Description

Software Application Support (SAS) Service

To Receive Technical Support and Future Minor Software Updates

CSMST5-3.1-K9

Cisco Security Manager 3.1 Enterprise Standard-5 Media Kit: 5-Device Limit

CON-SAS-CSMST5-3

CSMST25-3.1-K9

Cisco Security Manager 3.1 Enterprise Standard-25 Media Kit: 25-Device Limit

CON-SAS-CSMST253

CSMPR50-3.1-K9

Cisco Security Manager 3.1 Enterprise Professional-50 Media Kit: 50-Device Base License

CON-SAS-CSMPR-3

CSMPR-LIC-50

Cisco Security Manager Enterprise Professional: Incremental 50-Device License

CON-SAS-CSMPRI50

CSMPR-LIC-100

Cisco Security Manager Enterprise Professional: Incremental 100-Device License

CON-SAS-CSMPRI1C

CSMPR-LIC-500

Cisco Security Manager Enterprise Professional: Incremental 500-Device License

CON-SAS-CSMPRI5C

CSMPR-LIC-1000

Cisco Security Manager Enterprise Professional: Incremental 1000-Device License

CON-SAS-CSMPRI1K

CSMST-CSMPR-UPG-K9

Cisco Security Manager Enterprise Upgrade from Standard-25 to Professional-50

CON-SAS-CSMPR-3 (Replaces Standard 25 if on existing support agreement)

CSMST5-3.1-MR-K9

Cisco Security Manager 3.1 Enterprise Standard-5 Minor Upgrade Media Kit

CON-SAS-CSMST5-3

CSMST25-3.1-MR-K9

Cisco Security Manager 3.1 Enterprise Standard-25 Minor Upgrade Media Kit

CON-SAS-CSMST253

CSMPR50-3.1-MR-K9

Cisco Security Manager 3.1 Enterprise

Professional-50 Minor Upgrade Media Kit

CON-SAS-CSMPR-3

VMS-CSMST5-UPG-K9

Upgrade from any CiscoWorks VMS license to Cisco Security Manager 3.1 Enterprise Standard-5 Media Kit: 5-Device Limit

CON-SAS-CSMST5-3

VMS-CSMST25-UPG-K9

Upgrade from any CiscoWorks VMS license to Cisco Security Manager 3.1 Enterprise Standard-25 Media Kit: 25-Device Limit

CON-SAS-CSMST253

VMS-CSMPR-UPG-K9

Upgrade from any CiscoWorks VMS license to Cisco Security Manager 3.1 Enterprise Professional Media Kit: 50-Device Base License

CON-SAS-CSMPR-3

Note: The minor release (MR) upgrade kits do not include licenses and require the use of your previously obtained Security Manager 3.0 or 3.0.1 licenses.

Upgrade Options

Tables 2 provide information on the upgrade paths available to customers currently using Cisco Security Manager 3.0 or 3.0.1.

Table 2. Cisco Security Manager 3.0 and 3.0.1 Upgrade Options

User's Current Release

Security Manager Service Contract

What to Order for Cisco Security Manager 3.1

Cisco Security Manager 3.0 or 3.0.1

Yes

• Customers can request minor release upgrade kits at no charge from the Cisco Product Upgrade Tool at http://www.cisco.com/upgrade.
• Requires a Cisco Security Manager 3.0 Software Application Support (SAS) service contract.

Cisco Security Manager 3.0 or 3.0.1

No

Customers can order minor release upgrade kits using normal Cisco sales channels. See Table 1 for the minor release upgrade part numbers. The minor release upgrade kits do not include licenses and require the use of your previously obtained Security Manager 3.0 or 3.0.1 licenses.

Migration Options from CiscoWorks VPN/Security Management Solution

Cisco discontinued adding support for new features and new devices in CiscoWorks VMS with the release of Cisco Security Manager. Customers that require provisioning for Cisco firewalls, VPNs, and IPSs will want to plan their migration to take advantage of the significant enhancements available in Cisco Security Manager and the latest Cisco devices and releases.
All no-charge upgrades from CiscoWorks VMS to Cisco Security Manager have been discontinued as of April 2, 2007. However, discounted upgrades to Cisco Security Manager remain available for customers with any type of CiscoWorks VMS (Basic, Restricted, or Unrestricted). See Table 1 for the CiscoWorks VMS to Cisco Security Manager upgrade part numbers.

Service Options

Cisco offers a wide range of services programs to accelerate customer success. These innovative services programs are delivered through a combination of people, processes, tools, and partners, resulting in high levels of customer satisfaction. Cisco services help you to protect your network investment, optimize network operations, and prepare your network for new applications to extend network intelligence and the power of your business. For more information about Cisco services, visit http://www.cisco.com/go/services/security.
Cisco Security Manager software is eligible for technical support service coverage under a Cisco SAS service agreement, which features:

• Unlimited access to the Cisco Technical Assistance Center for award-winning support. Technical assistance is provided by Cisco software application experts who are trained in Cisco security software applications. Support is available 24 hours per day, 7 days per week, 365 days per year worldwide.

• Registered access to Cisco.com, a robust repository of application tools and technical documents to assist in diagnosing network security problems, understanding new technologies, and staying current with innovative software enhancements. Utilities, white papers, application design data sheets, configuration documents, and case management tools help expand your in-house technical capabilities.

• Access to application software bug fixes and maintenance and minor software releases.

Customers requiring Cisco technical support and minor updates to Cisco Security Manager will need to purchase a Cisco SAS service contract. Table 1 lists the SAS part numbers.

Availability

Customers can purchase Cisco Security Manager 3.1 through regular sales channels. The product is also available for evaluation by downloading from http://www.cisco.com/go/csmanager or by ordering an evaluation kit from the Collateral and Subscriptions Store at Cisco Marketplace ( http://www.cisco.com/pcgi-bin/marketplace/welcome.pl).

For More Information

For more information about Cisco Security Manager 3.1, visit http://www.cisco.com/go/csmanager, contact your account manager or a Cisco authorized partner, or send e-mail to ask-csmanager@cisco.com.