Table Of Contents
Release Notes for Cisco PACE Portal, 2.0 and 2.0.1
Benefits of the Cisco PACE Portal
Known Limitations and Problems
Accessing the Cisco PACE Portal Documentation Set
Obtaining Documentation, Obtaining Support, and Security Guidelines
Release Notes for Cisco PACE Portal, 2.0 and 2.0.1
Revised: December, 2009, OL-16543-01These release notes include important information regarding Cisco Proactive Automation of Change Execution (PACE) Portal, Release 2.0 and 2.0.1.
This document contains the following:
•
Benefits of the Cisco PACE Portal
•
•
•
Note
Cisco PACE Overview
The Cisco PACE solution combines products that accelerate operational success by helping IT organizations to securely automate and control changes and configuration in their networks. Cisco PACE helps enterprises meet compliance requirements, ensure business continuity, and increase user productivity.
Cisco PACE 2.0 solution is made up of the following:
•
Cisco PACE Portal provides a launch point and top-level navigation for the frequently used functions in the CiscoWorks NCM application. You can view the important statistics and details of the CiscoWorks NCM applications installed on your CiscoWorks NCM server, in a single window instead of navigating through several windows to view the required data.
•
–
–
–
–
Benefits of the Cisco PACE Portal
The benefits of the Cisco PACE Portal include:
•
•
•
•
•
The following are some of the portlets supported by Cisco PACE 2.0:
–
–
–
–
–
–
–
–
•
–
–
–
–
Caveats
Please read the following before using Cisco PACE Portal, 2.0.
CSCsr81715—Pseudo SSO fails sometimes if the user does not accept SSL Certs quickly
Description: Pseudo SSO fails sometimes if you do not accept the SSL Certificate quickly. This happens because the Pseudo SSO times out and launches the portal page.
Workaround: Either accept the SSL certificate warning as soon as prompted by the browser or add the SSL Certificate to the Certificate store in the client machine. This avoids the SSL certificate warning prompt every time you log in to the PACE portal.
CSCsr81738—Pseudo SSO won't happen for newly reg/unreg applications in current login session
Description: When applications are registered with Cisco PACE, the new applications are not auto logged in the current session. When application is unregistered, Cisco PACE does not auto logout.
Workaround: To enable auto login for newly registered applications, log out of PACE Portal and log in again.
CSCsr81767—Applications registered with PACE won't timeout according to PACE session
Description: Applications registered with PACE will not timeout according to PACE session idle timeout.
Workaround: None at this time.
CSCsu18075—Multiple Security Alert screens are prompted
Description: You might be prompted up to five times for the Security Certificate: one time before you enter your username and password, and up to four times after entering your username and password.
Workaround: You can avoid this issue by accepting the SSL security certificate when prompted for it the first time.
CSCsu50910—Incorrect 'session has timed out' pop-up message
Description: When you have an LMS application registered with PACE and you have logged in and out or PACE, a pop-up with following message displays: Your session has timed out. Please close this window and launch CiscoWorks in a new window.
WorkAround: None at this time You can safely ignore this message.
CSCsy13729—PACE over LMS Solaris install ERROR: Update attributes of casuser failed
Description: While installing PACE over an LMS server on Solaris platform you may run into the following issue.
WARNING: User casuser already exists. The installation process will overwrite its privilegesERROR: Update attributes of casuser failed.ERROR: Contact your system administrator to update casuser in NIS/NIS+.ERROR: casuser should have no shell, /opt/CSCOpx as home directory, and belong to group casusers.Workaround: This is the expected behavior if the machine is in NIS+. Do the following to proceed with the installation,
1.
casuser:x:100:100:CiscoUser:/tmp:/dev/null
2.
casusers::100:
3.
CSCsy15905—PACE-over-LMS PACE Syslog Analyzer portlet shows up after PACE uninstall
Description: After uninstalling the Cisco PACE Portal from a CiscoWorks LMS server, the Cisco PACE Syslog Analyzer application portlets are visible in the CiscoWorks LMS Portal.
Workaround: Before uninstalling the Cisco PACE Portal, unregister the Cisco PACE Syslog Analyzer applications and then uninstall the Cisco PACE Portal.
CSCsz07633—Apache.exe encountered a problem and needed to close error on PACE-NCM
Description: When the Cisco PACE Portal is installed with CiscoWorks NCM running on the Windows platform and you reboot the system, you might see the following error message: Apache.exe encountered a problem and needed to close.
Workaround: None at this time.
CSCsz49552—PACE UI does not validate IP address, date and time.
Description: Fields under the Syslog Report portlet do not check for valid user input which may cause exceptions to be thrown.
Workaround: Input accurate IP addresses using x.x.x.x format.
In the Syslog Report, enter the Date using MM/DD/YYYY format and use HH:MM format for the Time.
Do not use special characters or escape characters in text boxes.
Note
CSCsz70989—Syslog Severity Portlet works under one view and not under another
Description: At random times the Syslog Severity Report portlet might not be available. You might see a message like Syslog Severity Report is temporary unavailable.
Workaround: Remove the portlet and then add the portlet again using the Add portlet button. This will resolve the issue.
CSCsz76048—Custom Report with Details not working.
Description: If the content of any Syslog Report field contains the character % or ` in the string, then the wildcard character (%) search will not work.
Workaround: None at this time.
CSCsz93695—The Cisco PACE Portal does not come up after reboot.
Workaround: Stop and start the deamon manager:
/etc/init.d/dmgtd stop
/etc/init.d/dmgtd start
CSCta24173—Abnormal program termination popup error during Windows VM install
Description: While installing the Cisco PACE Portal over CiscoWorks NCM on a Windows server, abnormal program termination error messages display.
Workaround: Click the Ignore button and proceed with the installation.
CSCta57067—QPM: Events/Audits, connected devices & view All links throw exception
Description: Launching QPM across links from QPM related portlets in the Cisco PACE Portal displays a JSP Error page. This occurs when the Cisco PACE Portal Pseudo SSO authentication to the QPM server does not happen properly.
Workaround: In the browser where the error displays, change the address in the address bar from:
http://<server-name>:1741/qpm/qpm.jsp?drawerId=Admin&drawerItem=Admin_2
to:
http://<server-name>:1741
and click Enter. Now click the link again in the QPM Portlet in the Cisco PACE Portal.
CSCta62078—Internet Explorer 8 browser incorrectly recognized as supported browser
Description: Launch the Cisco PACE Portal from an Microsoft Internet Explorer 8 browser. Although the Cisco PACE Portal does not support Microsoft Internet Explorer 8, the login page the left panel incorrectly displays the current browser as supported.
Workaround: Use on of the browsers supported by the Cisco PACE Portal:
–
–
–
CSCta91924—Best Practice displays Loading for incorrect CiscoWorks NCM login credentials
Description: The Best Practice portlet displays the message Loading ... in the portlet for the incorrect CiscoWorks NCM login credentials.
Workaround: Create a user login and password which is the same as the Cisco PACE Portal. Once that is done, click Refresh in the Best Practice Portlet.
CSCta97639—Portlet loading takes long time if the CiscoWorks NCM server is not responding
Description: If the CiscoWorks NCM server is not responding, the Cisco PACE Portal takes long time to load before the connection times out.
Workaround: Unregister the server which is not responding by going to the following URL:
http://<paceportalsever>:portnum/cwhp/cmic.app_status.do?overall_header_visibility=false
where paceportalserver is the Cisco PACE Portal that you are using and portnum is the port of the Cisco PACE Portal.
CSCtb00594—Pace Portal daemon manager goes down if second interface is shutdown
Description: The Cisco PACE Portal daemon manager goes down if the second interface is shutdown.
Workaround: Do the following:
–
–
–
–
Known Limitations and Problems
This section contains information about the limitations and problems known to exist in the Cisco PACE Portal, Release 2.0.
Cancelling Cisco PACE install/uninstall Leaves Server Unstable
Be aware that cancelling the Cisco PACE Portal installation or uninstallation before it is complete might leave your server unstable.
For RSS Portlets to Work in Cisco PACE Portal, You Need to Append the RSS Link
For RSS portlets to work in Cisco PACE Portal, you need to append the RSS link with the following:
http://<Proxy Server IP Address>:8080/-_-
For example, for the RSS link:
http://feeds.marketwatch.com/marketwatch/topstories/
to be able to work in Cisco PACE Portal, it must be modified to:
http://proxy-sjc-1:8080/-_-http://feeds.marketwatch.com/marketwatch/topstories/
Online Help 404 Error
The Cisco PACE Portal online help does not link to the Cisco PACE Portal User Guide PDF file.
Certain Screens Appear Blank When Using Microsoft Internet Explorer 7.0
When you attempt to register an application, unregister an application, or modify your profile in Cisco PACE Portal when using Microsoft Internet Explorer 7.0, a blank screen displays.
Security Warnings Display When Using Microsoft Internet Explorer 7.0
When the Cisco PACE Portal is launched in Microsoft Internet Explorer 7.0, it displays security warnings saying the content is risky, click on the bar to allow.This condition continues after you allow click on the bar to allow the content to display.
Workaround: Accept the certificates as trusted ones and save them. After that logout from the Cisco PACE Portal and close the browser. Launch the browser, launch the Cisco PACE Portal, and login again.
Users and View Tabs Need to be Properly Associated
When a user with the proper privileges adds, edits, or deletes a portlet in the Cisco PACE Portal, the changes are visible to all other users.We recommend that you avoid adding portlets with sensitive data.
Object Finder's Help in Pop Up Windows is not Context Sensitive
Clicking on Object Finder report displays records in a new window. The Help button on this page displays the Cisco PACE Portal's help home page. It does not display the Object Finder help page.
Cannot Create a Username that Contains Less than Five Characters
For Pseudo SSO, if a local user name matches a remote CiscoWorks NCM server username and the CiscoWorks NCM username contains less 5 characters, the remote user cannot be created.
Accessing the Cisco PACE Portal Documentation Set
You can access the entire Cisco PACE Portal documentation set from the following Cisco.com URL:
http://www.cisco.com/en/US/partner/products/ps10519/tsd_products_support_series_home.html
From here you can navigate to any documentation for Cisco PACE Portal you will need. The documentation includes:
•
•
•
•
In addition, the Cisco PACE Portal includes context-sensitive online help.
Note
Obtaining Documentation, Obtaining Support, and Security Guidelines
For information on obtaining documentation, obtaining support, providing documentation feedback, security guidelines, and also recommended aliases and general Cisco documents, see the monthly What's New in Cisco Product Documentation, which also lists all new and revised Cisco technical documentation, at:
http://www.cisco.com/en/US/docs/general/whatsnew/whatsnew.html
Notices
The following notices pertain to this software license.
OpenSSL/Open SSL Project
This product includes software developed by the OpenSSL Project for use in the OpenSSL Toolkit (http://www.openssl.org/).
This product includes cryptographic software written by Eric Young (eay@cryptsoft.com).
This product includes software written by Tim Hudson (tjh@cryptsoft.com).
License Issues
The OpenSSL toolkit stays under a dual license, i.e. both the conditions of the OpenSSL License and the original SSLeay license apply to the toolkit. See below for the actual license texts. Actually both licenses are BSD-style Open Source licenses. In case of any license issues related to OpenSSL please contact openssl-core@openssl.org.
OpenSSL License:
Copyright © 1998-2007 The OpenSSL Project. All rights reserved.
Redistribution and use in source and binary forms, with or without modification, are permitted provided that the following conditions are met:
1.
2.
3.
4.
5.
6.
"This product includes software developed by the OpenSSL Project for use in the OpenSSL Toolkit (http://www.openssl.org/)".
THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT "AS IS"' AND ANY EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
This product includes cryptographic software written by Eric Young (eay@cryptsoft.com). This product includes software written by Tim Hudson (tjh@cryptsoft.com).
Original SSLeay License:
Copyright © 1995-1998 Eric Young (eay@cryptsoft.com). All rights reserved.
This package is an SSL implementation written by Eric Young (eay@cryptsoft.com).
The implementation was written so as to conform with Netscapes SSL.
This library is free for commercial and non-commercial use as long as the following conditions are adhered to. The following conditions apply to all code found in this distribution, be it the RC4, RSA, lhash, DES, etc., code; not just the SSL code. The SSL documentation included with this distribution is covered by the same copyright terms except that the holder is Tim Hudson (tjh@cryptsoft.com).
Copyright remains Eric Young's, and as such any Copyright notices in the code are not to be removed. If this package is used in a product, Eric Young should be given attribution as the author of the parts of the library used. This can be in the form of a textual message at program startup or in documentation (online or textual) provided with the package.
Redistribution and use in source and binary forms, with or without modification, are permitted provided that the following conditions are met:
1.
2.
3.
"This product includes cryptographic software written by Eric Young (eay@cryptsoft.com)".
The word `cryptographic' can be left out if the routines from the library being used are not cryptography-related.
4.
THIS SOFTWARE IS PROVIDED BY ERIC YOUNG "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
The license and distribution terms for any publicly available version or derivative of this code cannot be changed. i.e. this code cannot simply be copied and put under another distribution license [including the GNU Public License].
CCDE, CCENT, CCSI, Cisco Eos, Cisco Explorer, Cisco HealthPresence, Cisco IronPort, the Cisco logo, Cisco Nurse Connect, Cisco Pulse, Cisco SensorBase, Cisco StackPower, Cisco StadiumVision, Cisco TelePresence, Cisco TrustSec, Cisco Unified Computing System, Cisco WebEx, DCE, Flip Channels, Flip for Good, Flip Mino, Flipshare (Design), Flip Ultra, Flip Video, Flip Video (Design), Instant Broadband, and Welcome to the Human Network are trademarks; Changing the Way We Work, Live, Play, and Learn, Cisco Capital, Cisco Capital (Design), Cisco:Financed (Stylized), Cisco Store, Flip Gift Card, and One Million Acts of Green are service marks; and Access Registrar, Aironet, AllTouch, AsyncOS, Bringing the Meeting To You, Catalyst, CCDA, CCDP, CCIE, CCIP, CCNA, CCNP, CCSP, CCVP, Cisco, the Cisco Certified Internetwork Expert logo, Cisco IOS, Cisco Lumin, Cisco Nexus, Cisco Press, Cisco Systems, Cisco Systems Capital, the Cisco Systems logo, Cisco Unity, Collaboration Without Limitation, Continuum, EtherFast, EtherSwitch, Event Center, Explorer, Follow Me Browsing, GainMaker, iLYNX, IOS, iPhone, IronPort, the IronPort logo, Laser Link, LightStream, Linksys, MeetingPlace, MeetingPlace Chime Sound, MGX, Networkers, Networking Academy, PCNow, PIX, PowerKEY, PowerPanels, PowerTV, PowerTV (Design), PowerVu, Prisma, ProConnect, ROSA, SenderBase, SMARTnet, Spectrum Expert, StackWise, WebEx, and the WebEx logo are registered trademarks of Cisco and/or its affiliates in the United States and certain other countries.
All other trademarks mentioned in this document or website are the property of their respective owners. The use of the word partner does not imply a partnership relationship between Cisco and any other company. (1002R)
Any Internet Protocol (IP) addresses used in this document are not intended to be actual addresses. Any examples, command display output, and figures included in the document are shown for illustrative purposes only. Any use of actual IP addresses in illustrative content is unintentional and coincidental.
© 2009 Cisco Systems, Inc. All rights reserved.
