Cisco Traffic Anomaly Detector Module Web-Based Manager Configuration Guide (Software Version 5.1 and 6.0) - Launching and Customizing the WBM [Cisco Services Modules]

Table Of Contents

Launching and Customizing the WBM

Configuring Network Access for the WBM

Launching the WBM

Configuring the Login Banner

Configuring the WBM Logo

Launching and Customizing the WBM

This chapter describes how to launch and customize the Cisco Traffic Anomaly Detector Module (Detector module) WBM. To access the Detector module WBM, you must first use the CLI to configure network access for the WBM.

This chapter contains the following sections:

•Configuring Network Access for the WBM

•Launching the WBM

•Configuring the Login Banner

•Configuring the WBM Logo

Configuring Network Access for the WBM

You must use the Detector module CLI to enable the WBM service and to permit network access to the Detector module through the WBM. You must log on as a user with either administration or configuration user privilege level rights to make the necessary configuration changes. For information about accessing and using the Detector module CLI, see the Cisco Traffic Anomaly Detector Module Configuration Guide.

To configure network access for the WBM, perform the following steps using the Detector module CLI:

Step 1 Log on to the Detector module CLI using a console or a Secure Shell (SSH) connection.

Step 2 Enter configuration mode by entering the following command in global mode:
admin@DETECTOR# configure
Step 3 Enable the WBM service by entering the following command:
admin@DETECTOR-conf# service wbm
Step 4 Permit access to the Detector module from the WBM by entering the following command:
admin@DETECTOR-conf# permit wbm ip-addr [ip-mask]
The ip-addr and ip-mask arguments define the IP address of the client device that you will use to connect to the WBM.

The following example shows how to configure network access for the WBM that connects from IP address 192.168.30.32:
admin@DETECTOR# configure
admin@DETECTOR-conf# service wbm
admin@DETECTOR-conf# permit wbm 192.168.30.32

After you finish configuring network access for the WBM on the Detector module, you may exit the CLI and launch the WBM using a web browser.

Launching the WBM

To launch the WBM, perform the following steps:

Step 1 Open a web browser and enter the Detector module IP address using Secure HTTP (HTTPS):
https://Detector module-ip-address/ 
The Detector module-ip-address argument is the management IP address of the Detector module.

The Detector module WBM login window appears.

Step 2 Enter your username and password and click OK. The WBM home page appears.

Note If you have Terminal Access Controller Access Control System Plus (TACACS+) authentication configured on the Detector module, the Detector module uses the TACACS+ user database for user authentication rather than its local database. If you have configured advanced authentication attributes on the TACACS+ server (such as password expiry), the Detector module may prompt you for a new password or notify you when the password is about to expire based on the configuration of the user on the TACACS+ server.

Use the Detector module CLI to configure the user authentication methods. For information about accessing and using the Detector module CLI, see the Cisco Traffic Anomaly Detector Module Configuration Guide.

If you fail to connect to the Detector module, check the following troubleshooting tips:

•Verify that you have entered a valid username and password.

•Verify that you have entered the correct Detector module management IP address and are specifying HTTPS in the URL.

•Check the network connections of both the WBM client and the Detector module.

•Ensure that you can connect to the Detector module from the WBM client using SSH.

Note Connecting using SSH will validate the network connection between the WBM and the Detector module.

•Ensure that you have enabled the WBM service and permitted access to the Detector module from the IP address of the WBM client (see the "Configuring Network Access for the WBM" for more information).

Configuring the Login Banner

The login banner is the text that appears on screen before user authentication when you open an SSH session, a console port connection, or a WBM session to the Detector module.

The login banner appears in the following locations:

•CLI—Before the password login prompt.

•WBM—On the right side of the Detector module login window.

You must access the Detector module CLI and use the login-banner command in configuration mode to configure the login banner. You must log on as a user with either administration or configuration user privilege level rights to make the necessary configuration changes. For information about using the CLI to configure and import a login banner, see the Cisco Traffic Anomaly Detector Module Configuration Guide.

Configuring the WBM Logo

You can customize the WBM interface by adding a company logo or any customized logo to the WBM web pages.

The new logo appears in the following places:

•On the Detector module Login page under the Cisco Systems logo.

•On all WBM pages on the right side of the Cisco Systems logo.

You must use the Detector moduleCLI and use the copy {ftp | sftp | scp} wbm-logo command in global mode or configuration mode to configure the WBM logo. You must log on as a user with either administration or configuration user privilege level rights to make the necessary configuration changes. For information about using the CLI to import the WBM logo, see the Cisco Traffic Anomaly Detector Module Configuration Guide.

	Cisco Traffic Anomaly Detector Module Web-Based Manager Configuration Guide (Software Version 5.1 and 6.0)
	Launching and Customizing the WBM
Cisco Traffic Anomaly Detector Module Web-Based Manager Configuration Guide (Software Version 5.1 and 6.0) Index Preface Introduction Launching and Customizing the WBM Managing User Access Creating and Configuring Zones Configuring Zone Filters Configuring Policy Templates Learning Zone Traffic Managing Zone Policies Activating Anomaly Detection Monitoring Detector Module and Zone Operations Monitoring Network Traffic and Extracting Attack Signatures	Download this chapter Launching and Customizing the WBM Download the complete book Cisco Traffic Anomaly Detector Module Web-Based Manager Configuration Guide (Software Version 5.1), Book-Length PDF (PDF - 2 MB) Table Of Contents Launching and Customizing the WBM Configuring Network Access for the WBM Launching the WBM Configuring the Login Banner Configuring the WBM Logo Launching and Customizing the WBM This chapter describes how to launch and customize the Cisco Traffic Anomaly Detector Module (Detector module) WBM. To access the Detector module WBM, you must first use the CLI to configure network access for the WBM. This chapter contains the following sections: •Configuring Network Access for the WBM •Launching the WBM •Configuring the Login Banner •Configuring the WBM Logo Configuring Network Access for the WBM You must use the Detector module CLI to enable the WBM service and to permit network access to the Detector module through the WBM. You must log on as a user with either administration or configuration user privilege level rights to make the necessary configuration changes. For information about accessing and using the Detector module CLI, see the Cisco Traffic Anomaly Detector Module Configuration Guide. To configure network access for the WBM, perform the following steps using the Detector module CLI: Step 1 Log on to the Detector module CLI using a console or a Secure Shell (SSH) connection. Step 2 Enter configuration mode by entering the following command in global mode: admin@DETECTOR# configure Step 3 Enable the WBM service by entering the following command: admin@DETECTOR-conf# service wbm Step 4 Permit access to the Detector module from the WBM by entering the following command: admin@DETECTOR-conf# permit wbm ip-addr [ip-mask] The ip-addr and ip-mask arguments define the IP address of the client device that you will use to connect to the WBM. The following example shows how to configure network access for the WBM that connects from IP address 192.168.30.32: admin@DETECTOR# configure admin@DETECTOR-conf# service wbm admin@DETECTOR-conf# permit wbm 192.168.30.32 After you finish configuring network access for the WBM on the Detector module, you may exit the CLI and launch the WBM using a web browser. Launching the WBM To launch the WBM, perform the following steps: Step 1 Open a web browser and enter the Detector module IP address using Secure HTTP (HTTPS): https://Detector module-ip-address/ The Detector module-ip-address argument is the management IP address of the Detector module. The Detector module WBM login window appears. Step 2 Enter your username and password and click OK. The WBM home page appears. Note If you have Terminal Access Controller Access Control System Plus (TACACS+) authentication configured on the Detector module, the Detector module uses the TACACS+ user database for user authentication rather than its local database. If you have configured advanced authentication attributes on the TACACS+ server (such as password expiry), the Detector module may prompt you for a new password or notify you when the password is about to expire based on the configuration of the user on the TACACS+ server. Use the Detector module CLI to configure the user authentication methods. For information about accessing and using the Detector module CLI, see the Cisco Traffic Anomaly Detector Module Configuration Guide. If you fail to connect to the Detector module, check the following troubleshooting tips: •Verify that you have entered a valid username and password. •Verify that you have entered the correct Detector module management IP address and are specifying HTTPS in the URL. •Check the network connections of both the WBM client and the Detector module. •Ensure that you can connect to the Detector module from the WBM client using SSH. Note Connecting using SSH will validate the network connection between the WBM and the Detector module. •Ensure that you have enabled the WBM service and permitted access to the Detector module from the IP address of the WBM client (see the "Configuring Network Access for the WBM" for more information). Configuring the Login Banner The login banner is the text that appears on screen before user authentication when you open an SSH session, a console port connection, or a WBM session to the Detector module. The login banner appears in the following locations: •CLI—Before the password login prompt. •WBM—On the right side of the Detector module login window. You must access the Detector module CLI and use the login-banner command in configuration mode to configure the login banner. You must log on as a user with either administration or configuration user privilege level rights to make the necessary configuration changes. For information about using the CLI to configure and import a login banner, see the Cisco Traffic Anomaly Detector Module Configuration Guide. Configuring the WBM Logo You can customize the WBM interface by adding a company logo or any customized logo to the WBM web pages. The new logo appears in the following places: •On the Detector module Login page under the Cisco Systems logo. •On all WBM pages on the right side of the Cisco Systems logo. You must use the Detector moduleCLI and use the copy {ftp \| sftp \| scp} wbm-logo command in global mode or configuration mode to configure the WBM logo. You must log on as a user with either administration or configuration user privilege level rights to make the necessary configuration changes. For information about using the CLI to import the WBM logo, see the Cisco Traffic Anomaly Detector Module Configuration Guide.
	© 1992-2008 Cisco Systems, Inc. All rights reserved. Terms & Conditions \| Privacy Statement \| Cookie Policy \| Trademarks of Cisco Systems, Inc.