Table Of Contents
Release Notes for Cisco PACE Portal and Components, 2.0-VC
Benefits of the Cisco PACE Portal
Known Limitations and Problems
Accessing the Cisco PACE 2.0-VC Documentation Set
Obtaining Documentation, Obtaining Support, and Security Guidelines
Release Notes for Cisco PACE Portal and Components, 2.0-VC
Revised: March, 2010, OL-21017-01These release notes include important information regarding Cisco Proactive Automation of Change Execution (PACE) Portal and Components 2.0 for EMC VoyenceControl, referred to as Cisco PACE, 2.0-VC.
This document contains the following:
•
Benefits of the Cisco PACE Portal
•
•
•
Note
Cisco PACE Overview
The Cisco PACE solution combines products that accelerate operational success by helping IT organizations to securely automate and control changes and configuration in their networks. Cisco PACE helps enterprises meet compliance requirements, ensure business continuity, and increase user productivity.
Cisco PACE, 2.0-VC solution is made up of the following:
•
With the Cisco PACE Portal you can view important VC Server statistics and details in a single window instead of navigating through several windows to view the required data.
•
Benefits of the Cisco PACE Portal
The benefits of the Cisco PACE Portal include:
•
•
•
•
•
The following are some of the portlets supported by Cisco PACE 2.0-VC:
–
–
–
–
–
–
–
–
–
–
–
–
–
–
•
–
–
–
–
Caveats
Please read the following before using Cisco PACE, 2.0-VC.
CSCsr81715—Pseudo SSO fails sometimes if the user does not accept SSL Certs quickly
Description: Pseudo SSO fails sometimes if you do not accept the SSL Certificate quickly. This happens because the Pseudo SSO times out and launches the portal page.
Workaround: Either accept the SSL certificate warning as soon as prompted by the browser or add the SSL Certificate to the Certificate store in the client machine. This avoids the SSL certificate warning prompt every time you log in to the PACE portal.
CSCsr81738—Pseudo SSO won't happen for newly reg/unreg applications in current login session
Description: When applications are registered with Cisco PACE, the new applications are not auto logged in the current session. When application is unregistered, Cisco PACE does not auto logout.
Workaround: To enable auto login for newly registered applications, log out of PACE Portal and log in again.
CSCsr81767—Applications registered with PACE won't timeout according to PACE session
Description: Applications registered with Cisco PACE will not timeout according to the PACE session idle timeout.
Workaround: None at this time.
CSCsu18075—Multiple Security Alert screens are prompted
Description: You might be prompted up to five times for the Security Certificate: one time before you enter your username and password, and up to four times after entering your username and password.
Workaround: You can avoid this issue by accepting the SSL security certificate when prompted for it the first time.
CSCta62078—Internet Explorer 8 browser incorrectly recognized as supported browser
Description: Launch the Cisco PACE Portal from an Microsoft Internet Explorer 8 browser. Although the Cisco PACE Portal does not support Microsoft Internet Explorer 8, the login page the left panel incorrectly displays the current browser as supported.
Workaround: Use on of the browsers supported by the Cisco PACE Portal:
–
–
–
CSCtb00594—Pace Portal daemon manager goes down if second interface is shutdown
Description: The Cisco PACE Portal daemon manager goes down if the second interface is shutdown.
Workaround: Do the following:
–
–
–
–
CSCtd53929—VC: installer can not connect to DB with hostname not being localhost
Description: PACE components can connect to the VC database only using the db config details specified in the config file.
WorkAround: Do the following:
1.
2.
listen_addresses =
3.
In the example below you can use either the localhost or IP address shown
listen_addresses = 'localhost,172.20.115.106'
CSCtd70723—Incorrect Session has timed out pop-up message displays
Description: When you have an application registered with PACE and you have logged in and out of Cisco PACE, a pop-up with following message displays: Your session has timed out. Please close this window and launch CiscoWorks in a new window.
WorkAround: None at this time You can safely ignore this message.
CSCtd80993—Fixing RA application registration
Description: The Cisco PACE Portal is installed over VC which is a combo VC server without Report Advisor (RA) locally installed. VC pointed to the remote RA. Non-existing RA must not be registered during Pace Portal install.
For CS with RA installed remotely—The Cisco PACE Portal installer will automatically register the local IP address for RA.
Workaround: Unregister the local RA from the Application Registration page and register the remote RA.
For AS with RA installed remotely—The Cisco PACE Portal installer will not be able to register the associated remote RA automatically.
WorkAround: Register the remote RA from the Application Registration page manually.
CSCte01066—Authentication error logging Pace Portal and VC
Description: By default on a VC Server, the maximum number of times the wrong username/password can be entered is three. After 3 attempts to log in, the user account will be locked.
WorkAround: Do the following.
1.
2.
3.
4.
In order to unlock a user whose user account is locked, do the following:
1.
2.
CSCte15983—User is created in VC, but not in Pace Portal
Description: When a specific user is created on a VC server with a user name containing four characters or less, the corresponding user is not seen on the Cisco Pace Portal. This is because the Cisco PACE Portal only recognizes user names that contain more than four characters while this is allowed in VC.
Workaround: Create user names which contain more than four characters on all the servers registered with Cisco PACE 2.0-VC.
CSCte58698—Page cannot be displayed
Description: When you click on Getting Started with Cisco PACE Portal, the Contents window shows a Page cannot be displayed error.
WorkAround:- Click on the link on Getting Started with Cisco PACE Portal once and wait for the page to refresh. Sometimes you might have to wait a while for the page to refresh.
CSCte86656—More link page display empty table also table with title zero records.
Description: Login to the Cisco Pace Portal and click on the More link of any portlet. The resulting page is displayed with the correct table, title, and number of records. Leave the system logged in without any UI activity for sometime. Clicking the More link now displays an empty table, title, and zero records. Sometimes the correct table is displayed, but with the title as zero records.
WorkAround: Click the Refresh button on the portlets before clicking on the More link in each portlet.
CSCte87084—Pace Portal does not come up after backup/restore
Description: The Cisco Pace Portal stops working after backup and restore. Nothing comes up on the UI after entering login credentials.
WorkAround: Do the following:
Backup:
cd "C:\Program Files\CSCOpx\bin\"
perl.exe C:\Progra~1\CSCOpx\bin\backup.pl C:\pace\ppbackup
Restore:
net stop crmdmgtd
cd "C:\Program Files\CSCOpx\bin\"
perl.exe C:\Progra~1\CSCOpx\bin\restorebackup.pl -d C:\pace\ppbackup
net start crmdmgtd
CSCte91036—Error connecting when syslog server & client timestamp out of sync
Description: Error occurs when connecting to a database with an empty table.This has been seen for custom reports as well reports like Duplicate IP Address.
WorkAround: The timestamp of the devices sending syslogs and the Cisco PACE server should be synchronized. Incorrect or false timestamps will create this issue.
CSCtf11906—UI slows down almost to hang for 2 users.
Description: With a single user logged in to Cisco PACE, 2.0-VC, the CPU and other resource utilization responds appropriately. As the number of simultaneous users logged in increases, the UI slows down considerably.
WorkAround: To fix this issue, do the following:
1.
C:\Program Files\CSCOpx\pace\config\paceconfig.properties
2.
LOGLEVEL=INFO
to
LOGLEVEL=WARNING
3.
Known Limitations and Problems
This section contains information about the limitations and problems known to exist in Cisco PACE, 2.0-VC.
Cisco PACE Components Stop Working After Changing Server Hostname
Ensure that hostnames of the associated PACE servers are changed before installing the Cisco PACE Portal and PACE Components. If you change the hostnames after installing the Cisco PACE Portal and Components, you will need to reinstall Cisco PACE Portal and Components.
Cancelling Cisco PACE install/uninstall Leaves Server Unstable
Be aware that cancelling the Cisco PACE Portal installation or uninstallation before it is complete might leave your server unstable.
For RSS Portlets to Work in Cisco PACE Portal, You Need to Append the RSS Link
For RSS portlets to work in Cisco PACE Portal, you need to append the RSS link with the following:
http://<Proxy Server IP Address>:8080/-_-
For example, for the RSS link:
http://feeds.marketwatch.com/marketwatch/topstories/
to be able to work in Cisco PACE Portal, it must be modified to:
http://proxy-sjc-1:8080/-_-http://feeds.marketwatch.com/marketwatch/topstories/
Users and View Tabs Need to be Properly Associated
When a user with the proper privileges adds, edits, or deletes a portlet in the Cisco PACE Portal, the changes are visible to all other users.We recommend that you avoid adding portlets with sensitive data.
Accessing the Cisco PACE 2.0-VC Documentation Set
You can access the entire Cisco PACE, 2.0-VC documentation set from the following Cisco.com URL:
http://www.cisco.com/en/US/partner/products/ps10519/tsd_products_support_series_home.html
From here you can navigate to any documentation for Cisco PACE, 2.0-VC you will need. The documentation includes:
•
•
•
•
•
In addition, the Cisco PACE Portal includes context-sensitive online help.
Note
Obtaining Documentation, Obtaining Support, and Security Guidelines
For information on obtaining documentation, obtaining support, providing documentation feedback, security guidelines, and also recommended aliases and general Cisco documents, see the monthly What's New in Cisco Product Documentation, which also lists all new and revised Cisco technical documentation, at:
http://www.cisco.com/en/US/docs/general/whatsnew/whatsnew.html
Notices
The following notices pertain to this software license.
OpenSSL/Open SSL Project
This product includes software developed by the OpenSSL Project for use in the OpenSSL Toolkit (http://www.openssl.org/).
This product includes cryptographic software written by Eric Young (eay@cryptsoft.com).
This product includes software written by Tim Hudson (tjh@cryptsoft.com).
License Issues
The OpenSSL toolkit stays under a dual license, i.e. both the conditions of the OpenSSL License and the original SSLeay license apply to the toolkit. See below for the actual license texts. Actually both licenses are BSD-style Open Source licenses. In case of any license issues related to OpenSSL please contact openssl-core@openssl.org.
OpenSSL License:
Copyright © 1998-2007 The OpenSSL Project. All rights reserved.
Redistribution and use in source and binary forms, with or without modification, are permitted provided that the following conditions are met:
1.
2.
3.
4.
5.
6.
"This product includes software developed by the OpenSSL Project for use in the OpenSSL Toolkit (http://www.openssl.org/)".
THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT "AS IS"' AND ANY EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
This product includes cryptographic software written by Eric Young (eay@cryptsoft.com). This product includes software written by Tim Hudson (tjh@cryptsoft.com).
Original SSLeay License:
Copyright © 1995-1998 Eric Young (eay@cryptsoft.com). All rights reserved.
This package is an SSL implementation written by Eric Young (eay@cryptsoft.com).
The implementation was written so as to conform with Netscapes SSL.
This library is free for commercial and non-commercial use as long as the following conditions are adhered to. The following conditions apply to all code found in this distribution, be it the RC4, RSA, lhash, DES, etc., code; not just the SSL code. The SSL documentation included with this distribution is covered by the same copyright terms except that the holder is Tim Hudson (tjh@cryptsoft.com).
Copyright remains Eric Young's, and as such any Copyright notices in the code are not to be removed. If this package is used in a product, Eric Young should be given attribution as the author of the parts of the library used. This can be in the form of a textual message at program startup or in documentation (online or textual) provided with the package.
Redistribution and use in source and binary forms, with or without modification, are permitted provided that the following conditions are met:
1.
2.
3.
"This product includes cryptographic software written by Eric Young (eay@cryptsoft.com)".
The word `cryptographic' can be left out if the routines from the library being used are not cryptography-related.
4.
THIS SOFTWARE IS PROVIDED BY ERIC YOUNG "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
The license and distribution terms for any publicly available version or derivative of this code cannot be changed. i.e. this code cannot simply be copied and put under another distribution license [including the GNU Public License].
CCDE, CCENT, CCSI, Cisco Eos, Cisco Explorer, Cisco HealthPresence, Cisco IronPort, the Cisco logo, Cisco Nurse Connect, Cisco Pulse, Cisco SensorBase, Cisco StackPower, Cisco StadiumVision, Cisco TelePresence, Cisco TrustSec, Cisco Unified Computing System, Cisco WebEx, DCE, Flip Channels, Flip for Good, Flip Mino, Flipshare (Design), Flip Ultra, Flip Video, Flip Video (Design), Instant Broadband, and Welcome to the Human Network are trademarks; Changing the Way We Work, Live, Play, and Learn, Cisco Capital, Cisco Capital (Design), Cisco:Financed (Stylized), Cisco Store, Flip Gift Card, and One Million Acts of Green are service marks; and Access Registrar, Aironet, AllTouch, AsyncOS, Bringing the Meeting To You, Catalyst, CCDA, CCDP, CCIE, CCIP, CCNA, CCNP, CCSP, CCVP, Cisco, the Cisco Certified Internetwork Expert logo, Cisco IOS, Cisco Lumin, Cisco Nexus, Cisco Press, Cisco Systems, Cisco Systems Capital, the Cisco Systems logo, Cisco Unity, Collaboration Without Limitation, Continuum, EtherFast, EtherSwitch, Event Center, Explorer, Follow Me Browsing, GainMaker, iLYNX, IOS, iPhone, IronPort, the IronPort logo, Laser Link, LightStream, Linksys, MeetingPlace, MeetingPlace Chime Sound, MGX, Networkers, Networking Academy, PCNow, PIX, PowerKEY, PowerPanels, PowerTV, PowerTV (Design), PowerVu, Prisma, ProConnect, ROSA, SenderBase, SMARTnet, Spectrum Expert, StackWise, WebEx, and the WebEx logo are registered trademarks of Cisco and/or its affiliates in the United States and certain other countries.
All other trademarks mentioned in this document or website are the property of their respective owners. The use of the word partner does not imply a partnership relationship between Cisco and any other company. (1002R)
Any Internet Protocol (IP) addresses used in this document are not intended to be actual addresses. Any examples, command display output, and figures included in the document are shown for illustrative purposes only. Any use of actual IP addresses in illustrative content is unintentional and coincidental.
© 2010 Cisco Systems, Inc. All rights reserved.
