User Guide for CiscoWorks Common Services 3.3 - Index [CiscoWorks Common Services Software]

Table Of Contents

A - B - C - D - E - F - G - H - I - J - K - L - M - N - O - P - R - S - T - U - V - W -

Index

A

AAA clients, configuring 4-56

access

connection security, understanding A-5

control, security and A-4

ACS

applications, registering 4-49

applications, registering through CLI 4-50

authentication failure 4-51

Common Services tasks 4-60

custom roles 4-59

predefined roles 4-59

roles on NDG basis, assigning 4-63

roles to user groups, assigning 4-61

roles to users, assigning 4-62

ACS Administrators, configuring 4-54

ACS Connection Status 3-5

adding devices to the device list 5-46

for AUS management 5-49

for cluster management 5-52

for standard management 5-47

using dcrcli 5-122

administering

Common Services 4-70

Daemon Manager, using 4-71

database password, changing 4-87

licensing 4-94

processes, back-end processes 4-75

processes, managing 4-72

processes, managing through CLI 4-79

processes, starting 4-74

processes, stopping 4-75

processes, viewing 4-73

processes, viewing specific state processes 4-74

restoring data 4-85

DCR 5-98

default credentials 5-107

default credentials,using 5-107

default credentials,using in multi-server setup 5-108

default credential set,configuring 5-109

default credential set,deleting 5-111

default credential set, editing 5-110

default credential set policies 5-112

default credential set policies, creating 5-113

default credential set policies, deleting 5-118

default credential set policies, Display name policy type example 5-116

default credential set policies, examples 5-115

default credential set policies, host name policy type example 5-117

default credential set policies, IP range policy type example 5-115

default credential set policies, ordering 5-119

default credential sets 5-108

device polling settings 5-101

Master-Slave configuration, prerequisites 5-99

mode, changing 5-99

unreachable devices deletion 5-104

user-defined fields, adding 5-105

user-defined fields, deleting 5-106

user-defined fields, renaming 5-106

application registration, ACS 4-49

application registration through CLI, ACS 4-50

applications

Application panels in CiscoWorks Home Page 2-7

licensing

licensing information, viewing 4-94

licensing procedure 4-94

obtaining a license 4-94

updating licenses 4-95

registering with CiscoWorks Home Page 4-118

troubleshooting

applications not appearing 10-20

audience for this document xv

audit logs, viewing 4-69

AUS (Auto Update Server)

managing 5-78

adding 5-78

deleting 5-79

editing 5-79

setting up 5-49

Authentication failure in ACS 4-51

B

backing up data 4-82

back-up data

directory structure of 10-23

sample CMF backup directory 10-23

CS backup data 4-84

using CLI 4-84

backing up selective data

using CLI 4-84

Base64-encoded X.509 certificate format, definition A-7

browser issues 2-10

address bar, disabling 2-12

modal dialog box, enabling 2-12

popup dialog boxes, displaying 2-11

reports download, enabling 2-13

status bar, disabling 2-12

tabbed browsing, disabling 2-13

browsers, supported 2-10

browser-server security. See SSL

C

cautions

significance of xv

cautions regarding

admin password, guest password 4-9

backups, and the CiscoWorks Daemon Manager 4-104

data restoration from a backup 4-85

restarting Daemon Manager on Solaris 4-71

restarting Daemon Manager on Windows 4-71

certificates

terms and definitions in A-6

Base64-encoded X-509 certificate format A-7

CA (certificate authority) A-7

CiscoWorks TrustStore or KeyStore A-7

PKCS#8 A-6

public key, private key A-6

SSH A-6

SSL A-6

understanding A-5

Cisco.com connection, managing 4-64

CiscoWorks - ACS Integration 4-53

ACS server, setting up 4-54

AAA clients, configuring 4-56

ACS Administrators, configuring 4-54

CiscoWorks Admin Users, configuring in ACS 4-57

Multiple ACS servers, configuring 4-58

NDG, creating 4-55

login module, changing 4-58

prerequisites 4-53

roles in ACS 4-58

Common Services Tasks 4-60

Custom roles 4-59

predefined roles 4-59

roles to Users and User groups, assigning 4-61

Network Access restrictions 4-63

CiscoWorks Administrative Users, configuring in ACS 4-57

CiscoWorks Home Page 2-1

Common Services panel 2-7

configuring 4-117

registering applications 4-118

registering links 4-120

setting up 4-121

invoking 2-2

normal mode (HTTP) 2-2

SSL Enabled mode (HTTPS) 2-3

layout 2-7

logging in to Common Services 2-6

online help, using 2-14

using

Application panels 2-7

CiscoWorks Product Updates panel 2-8

Common Services panel 2-7

Device Diagnostic Tools panel 2-8

navigation tools 2-9

Resources panel 2-8

too lbar buttons 2-9

web server port numbers, changing 2-14

web server port numbers for Solaris, changing 2-14

web server port numbers for Windows, changing 2-16

CiscoWorks LMS Portal

invoking 2-2

CiscoWorks Server, troubleshooting 10-1

collecting information on 10-1

FAQs 10-3

locked out of 10-5

MDC support 10-2

process status, checking 10-1

self-test, performing 10-1

CiscoWorks Server back-end process 4-75

CiscoWorks Server Processes 4-75, 4-79

CiscoWorks Trust Store or KeyStore, definition A-7

cmf as part of database path, explanation of 10-5

Common Services Home 3-1

Layout 3-2

Panes 3-3

Backup Status 3-6

Device Credentials and Admin Settings 3-8

Device Management Tasks 3-11

Management Tasks 3-13

Online Users 3-6

Recently Completed Jobs 3-7

Reports 3-12

Security Settings 3-3

System Tasks 3-10

Common Services Server, overview of 1-5

connection security, understanding A-5

security certificates A-5

terms and definitions A-6

Base64-encoded X.509 certificate format A-7

CA (certificate authority) A-7

CiscoWorks TrustStore or KeyStore A-7

PKCS#8 A-6

public key, private key A-6

SSH A-6

SSL A-6

connectivity

Connectivity Tools Tasks (table) 10-3

tasks 10-1

checking process status 10-1

collecting server information 10-1

MDC support 10-2

performing a self-test 10-1

testing 10-3

Custom roles in ACS 4-59

D

Daemon Manager, using 4-71

restarting on Solaris 4-71

restarting on Windows 4-71

database

inaccessible, troubleshooting 10-24

path includes "cmf," explanation 10-5

database password, changing 4-87

available formats 4-89

Solaris 4-88

Windows 4-88

DCR

administering 5-98

default credentials 5-107

device polling settings 5-101

Master-Slave configuration, prerequisites 5-99

mode, changing 5-99

unreachable devices deletion 5-104

user-defined fields, adding 5-105

user-defined fields, deleting 5-106

user-defined fields, renaming 5-106

architecture 5-8

Master DCR 5-8

Slave DCR 5-8

Standalone DCR 5-9

AUS management

adding devices 5-78

deleting AUS 5-79

editing devices 5-79

CSV file samples 5-66

CSV 2.0 5-67

CSV 3.0 5-67

devices, managing 5-46

adding 5-46

deleting 5-56

excluding 5-76

exporting 5-72

importing 5-59

viewing the device list 5-77

Device Selector, using (See Device Selector) 5-85

reports, generating 5-79

using features, Master-Slave Setup 5-136

dcr

implications on ACS 5-134

DCR (Device and Credential Repository) CLI interface, using 5-121

adding devices 5-122

DCR mode, changing 5-128

deleting devices 5-123

editing devices 5-124

exporting using 5-132, 5-133

importing using 5-129

listing attributes 5-125

listing default credential sets 5-126

viewing current DCR mode 5-127

viewing device details 5-127

Default 5-108

deleting

AUS (Auto Update Server) 5-79

device groups 6-21

devices

from DCR 5-56

from the device list, using dcrcli 5-123

user-defined fields from DCR 5-106

users 4-13

Device and Credential Admin 5-1

Device Center 8-1

debugging tools, enabling 8-5

management station to device 8-5

packet capture 8-14

Ping, using 8-8

SNMP Set 8-11

SNMP Walk, using 8-9

Traceroute, using 8-9

invoking 8-2

launching 8-2

management functions

management tasks 8-18

reports, displaying 8-18

using 8-3, 8-4

Device Selector 8-3

reports 8-18

Device Diagnostic Tools panel of CiscoWorks Home Page 2-8

devices, discovery 5-9

scheduling 5-34

adding 5-35

deleting 5-36

editing 5-35

viewing status 5-37

viewing details 5-38

devices added to DCR 5-43

devices updated to DCR 5-43

reachable devices 5-41

summary 5-38

total devices discovered 5-40

unreachable devices 5-42

devices, discovery settings

configuring 5-10

configuring filter settings 5-23

configuring global settings 5-27

configuring module settings 5-11

configuring seed devices 5-13

configuring SNMP settings 5-19

viewing 5-32

viewing summary 5-31

devices, discovery starting 5-34

devices, managing 5-46

adding 5-46

for AUS management 5-49

for cluster management 5-52

for standard management 5-47

credentials

editing 5-57

exporting 5-72

importing 5-59

deleting 5-56

device list, viewing 5-77

excluding 5-76

exporting 5-72

using CLI 5-132

using Device and Credential Admin user interface 5-74

exporting to ACS server

using CLI 5-133

importing 5-59

using CLI 5-129

using Device and Credential Admin user interface 5-60

See also Groups, administering

See also Software Center

Device Selector 5-85

Device Selector settings 5-91

searching devices 5-88

Advanced Search 5-88

Simple Search 5-88

selecting devices 5-87

using Device Selector 5-85

diagnosing problems. See troubleshooting

discovering devices 5-9

discovery, scheduling 5-34

discovery CLI interface, using 5-120

start 5-120

stop 5-120

view discovery 5-121

discovery features in

ACS mode 5-137

Master-Slave setup 5-137

discovery filter settings, configuring 5-23

discovery global settings, configuring 5-27

discovery module settings, configuring 5-11

discovery settings

viewing summary 5-31

discovery settings, viewing 5-32

discovery SNMP settings 5-19

discovery start 5-34

disk space, threshold configuring 4-115

documentation xvi

additional online xvii

audience for this xv

related to this product xvi

typographical conventions in xv

E

editing

AUS (Auto Update Server) 5-79

device credentials in DCR 5-57

device group details 6-19

devices in the device list, using dcrcli 5-124

local user profile 4-10

user profiles 4-12

ESS (Event Service Software)

changing the port for

in Solaris 10-22

excluding devices from the device list 5-76

expired server certificate, how to handle 10-10

exporting devices and credentials 5-72

using CLI 5-132

using Device and Credential Admin user interface 5-74

exporting to ACS server

using CLI 5-133

F

file ownership, and permissions A-2

G

Groups, administering 6-1

CLI features 6-26

exporting 6-26

importing 6-27

concepts 6-3

common 6-4

container groups 6-3

dynamic groups 6-3

group hierarchy 6-3

secured views 6-5

shared 6-4

static groups 6-3

system-defined, user-defined 6-3

creating 6-9

deleting

groups 6-21

details

modifying 6-19

viewing 6-18

editing 6-19

exporting 6-22

sample export file 6-22

exporting from UI 6-23

exporting through CLI 6-26

Group Administration 6-9

group membership, assigning 6-17

importing 6-24

importing from UI 6-25

importing through CLI 6-27

multi-server setup 6-6

properties, specifying 6-10

refreshing 6-20

rules, defining 6-11

composite group rule example 6-15

composite rule 6-13

example for IP range 6-16

examples 6-14

range operator 6-14

simple group rule example 6-15

simple rule 6-12

single server scenario 6-6

single server setup 6-6

syntax checking 6-13, 6-14

system- and user-defined attributes 6-16

system defined attributes 6-16

H

help

CiscoWorks Product Updates panel of CiscoWorks Home Page 2-8

online documentation xvii

Hostname change script, using 4-123

I

IBM SecureWay Directory, changing login module to 4-35

importing devices and credentials 5-59

using CLI 5-129

using Device andf Credential Admin user interface 5-60

IP Address range operator, See range operator

J

Java Plug-in, version to use 10-5

jobs

deleting 4-103

filtering 4-101

managing 4-98

stopping 4-103

viewing 4-99

jrm, checking 10-7

K

KerberosLogin, changing login module to 4-36

L

licensing CiscoWorks applications

license information, viewing 4-94

licensing procedure 4-94

obtaining a license 4-94

updating licenses 4-95

links, registering with CiscoWorks Home Page 4-120

LMS Setup Center 7-1

categories 7-2

Data Collection Schedule 7-7

Data Collection Settings 7-5

Data Purge Schedule 7-9

Security Settings 7-4

System Settings 7-3

launching LMS Setup Center 7-2

local user policy setup 4-7

locked out of CiscoWorks Server, troubleshooting 10-5

log files, maintaining 4-104

Log File Status report, generating 4-65

on UNIX 4-107

on Windows 4-107

logrot utility, configuring 4-110

logrot utility, running 4-111

login module

setting to ACS 4-45

application, unregistering through CLI 4-51

application registration 4-49

application registration through CLI 4-50

setting to non-ACS 4-33

CiscoWorks Local, changing to 4-34

IBM SecureWay Directory, changing to 4-35

KerberosLogin, changing to 4-36

local NT system, changing to 4-38

Local UNIX system, changing to 4-37

MS Active Directory, changing to 4-38

Netscape Directory, changing to 4-42

Radius, changing to 4-43

TACACS+, changing to 4-44

logrot utility

configuring 4-110

running 4-111

M

managing

Common Services jobs 4-98

Common Services resources 4-103

messaging online users 4-98

MS Active Directory, changing login module to 4-38

Multiple ACS servers, configuring 4-58

multi-server mode, and security 4-22

N

NAR. See Network Access Restrictions.

navigation tools on CiscoWorks Home Page, using 2-9

NDG, creating 4-55

Netscape Directory, changing login module to 4-42

Network Access Restrictions 4-63

Network Device Groups, creating. See NDG, creating

O

online help, using 2-14

online users, messaging 4-98

osagent, changing the port for

Solaris 10-6

Windows 10-6

overview

authentication using login modules 4-30

overview of

CiscoWorks Common Services 1-1

Common Services Server information 1-5

time zone settings, understanding 1-5

what's new in this release 1-2

Common Services Server 1-5

P

packet capture, using 8-14

peer server certificates

setting up 4-24

Permissions report, generating 4-66

PKCS#8, definition A-6

port numbers for web servers, changing 2-14

Predefined roles in ACS 4-59

preferences for system, modifying 4-112

private key, definition A-6

processes, managing 4-79

Process Status report, generating 4-67

PSUCLI 9-11

device packages, installing 9-12

device packages, listing dependents 9-15

device packages, listing device packages 9-15

device packages, uninstalling 9-13

device updates, downloading 9-14

software updates, downloading 9-13

software updates, querying 9-12

public key, definition A-6

R

Radius, changing login module to 4-43

range operator 6-14

remote connectivity, security and A-4

reports

Common Services reports 4-65

audit logs, viewing 4-69

Log File Status report 4-65

Permissions report 4-66

Process Status report 4-67

Users Logged In report 4-67

DCR Admin reports, generating 5-79

Device Center reports 8-18

resources, managing in Common Services 4-103

Resources panel of CiscoWorks Home Page 2-8

restoring data 4-85

CS data 4-87

solaris 4-85

windows 4-86

runtime security, understanding A-3

S

Secure Shell (SSH), definition A-6

security

access control, and A-4

certificates, understanding A-5

understanding A-1

general A-1

server A-2

security, setting up 4-2

AAA mode, setting up 4-30

Cisco.com login, setting up 4-64

Cisco Secure ACS support 4-32

configuring, ACS Integration 4-53

login module

setting to ACS 4-45

setting to non-ACS 4-33

multi-server mode 4-22

peer server certificates

setting up 4-24

proxy server, setting up 4-64

security levels, understanding 4-10

SSL 4-2

enabling from the CiscoWorks Server 4-3, 4-5

enabling from the CLI 4-4, 4-6

SSO (Single Sign-On) mode

changing 4-28

enabling 4-25

user management

local user profile, modifying 4-10

peer server, setting up 4-22

user profiles, editing 4-12

users, adding 4-11

users, deleting 4-13

users, setting up through CLI 4-13

seed devices, configuring 5-13

Self Signed certificates 4-16

self-test information, collecting 4-98

server, configuring 4-1

AAA mode, setting up 4-30

authentication using login modules 4-30

ACS Integration 4-53

applications, licensing

licensing information, viewing 4-94

licensing procedure 4-94

obtaining a license 4-94

updating licenses 4-95

certificate setup 4-16

Cisco.com login, setting up 4-64

CiscoSecureACS support 4-32

Common Services, administering 4-70

backing up data 4-82

Daemon Manager, using 4-71

jobs, managing 4-98

processes, managing 4-72

processes, managing through CLI 4-79

resources, managing 4-103

server information, collecting 4-95

disk space, threshold configuring 4-115

log files, maintaining 4-104

List of log files 4-104

on UNIX 4-107

on Windows 4-107

logging, configuring 4-114

login module

ACS 4-45

ACS, setting up 4-46

setting to ACS 4-45

setting to ACS, application registration 4-49

setting to ACS, application registration through CLI 4-50

setting to non-ACS 4-33

peer server certificates

setting up 4-24

proxy server, setting up 4-64

reports, generating 4-65

audit logs, viewing 4-69

Log File Status report 4-65

Permissions report 4-66

Process Status 4-67

Users Logged In 4-67

security. See security, setting up

Self-signed certificates 4-16

SSO (Single Sign-On) mode

changing 4-28

enabling 4-25

system preferences, modifying 4-112

user management

adding 4-11

adding through CLI

deleting 4-13

local user policy setup 4-7

local user profile, modifying 4-10

peer server, adding 4-22

setting up through CLI 4-13

user profile, editing 4-12

users, local, setting up 4-10

server certificate for CiscoWorks, expiration, how to handle 10-10

server information, collecting (Common Services) 4-95

server security, understanding A-2

administrator-imposed A-5

connection A-5

security certificates A-5

terms and definitions A-6

server-imposed A-2

access control A-4

files, file ownership, permissions A-2

other systems A-4

remote connectivity A-4

runtime A-3

setting up, local user

modify profile 4-10

security levels 4-10

user accounts 4-9

setting up, local user policy 4-7

setting up, local users 4-9

SNMP Set, using 8-11

SNMP settings, configuring 5-19

SNMP Walk, using 8-9

Software Center 9-1

activity logs, viewing 9-9

event log 9-10

scheduled job 9-10

device downloads, scheduling 9-8

device updates, checking 9-6

device updates, performing 9-5

packages, deleting 9-8

software updates, downloading 9-4

software updates, performing 9-2

list of applications installed, viewing 9-2

software updates, selecting 9-3

Software Center CLI utility 9-11

Solaris, changing ports in

for ESS 10-22

for osagent 10-6

SSL, enabling on the server 4-2

from the CiscoWorks Server 4-3, 4-5

from the CLI 4-4, 4-6

SSL, definition A-6

SSO (Single Sign-On) mode

changing 4-28

enabling 4-25

starting CiscoWorks applications, troubleshooting 10-5

supported browsers 2-10

T

TACACS+, changing login module to 4-44

technical support

CiscoWorks Product Updates panel of CiscoWorks Home Page 2-8

terms and definitions in security certificates A-6

Base64-encoded X.509 certificate format A-7

CA (certificate authority) A-7

CiscoWorks TrustStore or KeyStore A-7

PKCS#8 A-6

public key, private key A-6

SSH A-6

SSL A-6

time zone settings, understanding 1-5

toolbar buttons on CiscoWorks Home Page, using 2-9

Tool Bar items on CiscoWorks Home Page, using 2-9

troubleshooting

applications not appearing 10-20

back-up data, directory structure of 10-23

CiscoWorks applications, starting 10-5

CiscoWorks Server 10-1, 10-3

device connectivity, testing 10-3

FAQs 10-4

locked out of, diagnosing 10-5

server status, verifying 10-1

database

inaccessability 10-24

path includes "cmf" 10-5

devices, with the Device Diagnostic Tools panel of CiscoWorks Home Page 2-8

ESS port change

Solaris 10-22

FAQs list 10-4

Apache and Tomcat 10-26

Backup-restore 10-23

CiscoWorks Home Page 10-20

Common Services General 10-4

Database 10-24

Device Center 10-19

EDS and ESS 10-22

Security 10-9

Software Center 10-15

Java Plug-in, which version to use 10-5

jrm 10-7

osagent port change

Solaris 10-6

Windows 10-6

See also debugging tools under Device Center

suggestions 10-32

typographical conventions in this document xv

U

UNIX systems

changing login module to local UNIX system 4-37

log files, maintaining on 4-107

user accounts

setting up

Cisco.com 4-64

local 4-10

Users Logged In report, generating 4-67

V

verifying CiscoWorks Server status 10-1

viewing

application license information 4-94

audit logs 4-69

device list 5-77

group details 6-18

Software Center activity logs 9-9

W

web server port numbers, changing 2-14

Whats New In This Release 1-2

Windows 2003 or Windows NT systems

log files, maintaining on 4-107

Windows systems

changing the port

for osagent 10-6

jrm, running 10-7

	User Guide for CiscoWorks Common Services 3.3
	Index
User Guide for CiscoWorks Common Services 3.3 Notices Preface Chapter 1 Overview of Common Services Chapter 2 Interacting With CiscoWorks Home Page Chapter 3 Using Common Services Home Chapter 4 Configuring the Server Chapter 5 Managing Device and Credentials Chapter 6 Administering Groups Chapter 7 Using LMS Setup Center Chapter 8 Using Device Center Chapter 9 Working With Software Center Chapter 10 Diagnosing Problems With CiscoWorks Server Appendix A Understanding CiscoWorks Security Appendix B Acronyms Used in Common Services Documentation Index	Download this chapter Index Download the complete book User Guide for CiscoWorks Common Services 3.3 (PDF - 4 MB) Table Of Contents A - B - C - D - E - F - G - H - I - J - K - L - M - N - O - P - R - S - T - U - V - W - Index A AAA clients, configuring 4-56 access connection security, understanding A-5 control, security and A-4 ACS applications, registering 4-49 applications, registering through CLI 4-50 authentication failure 4-51 Common Services tasks 4-60 custom roles 4-59 predefined roles 4-59 roles on NDG basis, assigning 4-63 roles to user groups, assigning 4-61 roles to users, assigning 4-62 ACS Administrators, configuring 4-54 ACS Connection Status 3-5 adding devices to the device list 5-46 for AUS management 5-49 for cluster management 5-52 for standard management 5-47 using dcrcli 5-122 administering Common Services 4-70 Daemon Manager, using 4-71 database password, changing 4-87 licensing 4-94 processes, back-end processes 4-75 processes, managing 4-72 processes, managing through CLI 4-79 processes, starting 4-74 processes, stopping 4-75 processes, viewing 4-73 processes, viewing specific state processes 4-74 restoring data 4-85 DCR 5-98 default credentials 5-107 default credentials,using 5-107 default credentials,using in multi-server setup 5-108 default credential set,configuring 5-109 default credential set,deleting 5-111 default credential set, editing 5-110 default credential set policies 5-112 default credential set policies, creating 5-113 default credential set policies, deleting 5-118 default credential set policies, Display name policy type example 5-116 default credential set policies, examples 5-115 default credential set policies, host name policy type example 5-117 default credential set policies, IP range policy type example 5-115 default credential set policies, ordering 5-119 default credential sets 5-108 device polling settings 5-101 Master-Slave configuration, prerequisites 5-99 mode, changing 5-99 unreachable devices deletion 5-104 user-defined fields, adding 5-105 user-defined fields, deleting 5-106 user-defined fields, renaming 5-106 application registration, ACS 4-49 application registration through CLI, ACS 4-50 applications Application panels in CiscoWorks Home Page 2-7 licensing licensing information, viewing 4-94 licensing procedure 4-94 obtaining a license 4-94 updating licenses 4-95 registering with CiscoWorks Home Page 4-118 troubleshooting applications not appearing 10-20 audience for this document xv audit logs, viewing 4-69 AUS (Auto Update Server) managing 5-78 adding 5-78 deleting 5-79 editing 5-79 setting up 5-49 Authentication failure in ACS 4-51 B backing up data 4-82 back-up data directory structure of 10-23 sample CMF backup directory 10-23 CS backup data 4-84 using CLI 4-84 backing up selective data using CLI 4-84 Base64-encoded X.509 certificate format, definition A-7 browser issues 2-10 address bar, disabling 2-12 modal dialog box, enabling 2-12 popup dialog boxes, displaying 2-11 reports download, enabling 2-13 status bar, disabling 2-12 tabbed browsing, disabling 2-13 browsers, supported 2-10 browser-server security. See SSL C cautions significance of xv cautions regarding admin password, guest password 4-9 backups, and the CiscoWorks Daemon Manager 4-104 data restoration from a backup 4-85 restarting Daemon Manager on Solaris 4-71 restarting Daemon Manager on Windows 4-71 certificates terms and definitions in A-6 Base64-encoded X-509 certificate format A-7 CA (certificate authority) A-7 CiscoWorks TrustStore or KeyStore A-7 PKCS#8 A-6 public key, private key A-6 SSH A-6 SSL A-6 understanding A-5 Cisco.com connection, managing 4-64 CiscoWorks - ACS Integration 4-53 ACS server, setting up 4-54 AAA clients, configuring 4-56 ACS Administrators, configuring 4-54 CiscoWorks Admin Users, configuring in ACS 4-57 Multiple ACS servers, configuring 4-58 NDG, creating 4-55 login module, changing 4-58 prerequisites 4-53 roles in ACS 4-58 Common Services Tasks 4-60 Custom roles 4-59 predefined roles 4-59 roles to Users and User groups, assigning 4-61 Network Access restrictions 4-63 CiscoWorks Administrative Users, configuring in ACS 4-57 CiscoWorks Home Page 2-1 Common Services panel 2-7 configuring 4-117 registering applications 4-118 registering links 4-120 setting up 4-121 invoking 2-2 normal mode (HTTP) 2-2 SSL Enabled mode (HTTPS) 2-3 layout 2-7 logging in to Common Services 2-6 online help, using 2-14 using Application panels 2-7 CiscoWorks Product Updates panel 2-8 Common Services panel 2-7 Device Diagnostic Tools panel 2-8 navigation tools 2-9 Resources panel 2-8 too lbar buttons 2-9 web server port numbers, changing 2-14 web server port numbers for Solaris, changing 2-14 web server port numbers for Windows, changing 2-16 CiscoWorks LMS Portal invoking 2-2 CiscoWorks Server, troubleshooting 10-1 collecting information on 10-1 FAQs 10-3 locked out of 10-5 MDC support 10-2 process status, checking 10-1 self-test, performing 10-1 CiscoWorks Server back-end process 4-75 CiscoWorks Server Processes 4-75, 4-79 CiscoWorks Trust Store or KeyStore, definition A-7 cmf as part of database path, explanation of 10-5 Common Services Home 3-1 Layout 3-2 Panes 3-3 Backup Status 3-6 Device Credentials and Admin Settings 3-8 Device Management Tasks 3-11 Management Tasks 3-13 Online Users 3-6 Recently Completed Jobs 3-7 Reports 3-12 Security Settings 3-3 System Tasks 3-10 Common Services Server, overview of 1-5 connection security, understanding A-5 security certificates A-5 terms and definitions A-6 Base64-encoded X.509 certificate format A-7 CA (certificate authority) A-7 CiscoWorks TrustStore or KeyStore A-7 PKCS#8 A-6 public key, private key A-6 SSH A-6 SSL A-6 connectivity Connectivity Tools Tasks (table) 10-3 tasks 10-1 checking process status 10-1 collecting server information 10-1 MDC support 10-2 performing a self-test 10-1 testing 10-3 Custom roles in ACS 4-59 D Daemon Manager, using 4-71 restarting on Solaris 4-71 restarting on Windows 4-71 database inaccessible, troubleshooting 10-24 path includes "cmf," explanation 10-5 database password, changing 4-87 available formats 4-89 Solaris 4-88 Windows 4-88 DCR administering 5-98 default credentials 5-107 device polling settings 5-101 Master-Slave configuration, prerequisites 5-99 mode, changing 5-99 unreachable devices deletion 5-104 user-defined fields, adding 5-105 user-defined fields, deleting 5-106 user-defined fields, renaming 5-106 architecture 5-8 Master DCR 5-8 Slave DCR 5-8 Standalone DCR 5-9 AUS management adding devices 5-78 deleting AUS 5-79 editing devices 5-79 CSV file samples 5-66 CSV 2.0 5-67 CSV 3.0 5-67 devices, managing 5-46 adding 5-46 deleting 5-56 excluding 5-76 exporting 5-72 importing 5-59 viewing the device list 5-77 Device Selector, using (See Device Selector) 5-85 reports, generating 5-79 using features, Master-Slave Setup 5-136 dcr implications on ACS 5-134 DCR (Device and Credential Repository) CLI interface, using 5-121 adding devices 5-122 DCR mode, changing 5-128 deleting devices 5-123 editing devices 5-124 exporting using 5-132, 5-133 importing using 5-129 listing attributes 5-125 listing default credential sets 5-126 viewing current DCR mode 5-127 viewing device details 5-127 Default 5-108 deleting AUS (Auto Update Server) 5-79 device groups 6-21 devices from DCR 5-56 from the device list, using dcrcli 5-123 user-defined fields from DCR 5-106 users 4-13 Device and Credential Admin 5-1 Device Center 8-1 debugging tools, enabling 8-5 management station to device 8-5 packet capture 8-14 Ping, using 8-8 SNMP Set 8-11 SNMP Walk, using 8-9 Traceroute, using 8-9 invoking 8-2 launching 8-2 management functions management tasks 8-18 reports, displaying 8-18 using 8-3, 8-4 Device Selector 8-3 reports 8-18 Device Diagnostic Tools panel of CiscoWorks Home Page 2-8 devices, discovery 5-9 scheduling 5-34 adding 5-35 deleting 5-36 editing 5-35 viewing status 5-37 viewing details 5-38 devices added to DCR 5-43 devices updated to DCR 5-43 reachable devices 5-41 summary 5-38 total devices discovered 5-40 unreachable devices 5-42 devices, discovery settings configuring 5-10 configuring filter settings 5-23 configuring global settings 5-27 configuring module settings 5-11 configuring seed devices 5-13 configuring SNMP settings 5-19 viewing 5-32 viewing summary 5-31 devices, discovery starting 5-34 devices, managing 5-46 adding 5-46 for AUS management 5-49 for cluster management 5-52 for standard management 5-47 credentials editing 5-57 exporting 5-72 importing 5-59 deleting 5-56 device list, viewing 5-77 excluding 5-76 exporting 5-72 using CLI 5-132 using Device and Credential Admin user interface 5-74 exporting to ACS server using CLI 5-133 importing 5-59 using CLI 5-129 using Device and Credential Admin user interface 5-60 See also Groups, administering See also Software Center Device Selector 5-85 Device Selector settings 5-91 searching devices 5-88 Advanced Search 5-88 Simple Search 5-88 selecting devices 5-87 using Device Selector 5-85 diagnosing problems. See troubleshooting discovering devices 5-9 discovery, scheduling 5-34 discovery CLI interface, using 5-120 start 5-120 stop 5-120 view discovery 5-121 discovery features in ACS mode 5-137 Master-Slave setup 5-137 discovery filter settings, configuring 5-23 discovery global settings, configuring 5-27 discovery module settings, configuring 5-11 discovery settings viewing summary 5-31 discovery settings, viewing 5-32 discovery SNMP settings 5-19 discovery start 5-34 disk space, threshold configuring 4-115 documentation xvi additional online xvii audience for this xv related to this product xvi typographical conventions in xv E editing AUS (Auto Update Server) 5-79 device credentials in DCR 5-57 device group details 6-19 devices in the device list, using dcrcli 5-124 local user profile 4-10 user profiles 4-12 ESS (Event Service Software) changing the port for in Solaris 10-22 excluding devices from the device list 5-76 expired server certificate, how to handle 10-10 exporting devices and credentials 5-72 using CLI 5-132 using Device and Credential Admin user interface 5-74 exporting to ACS server using CLI 5-133 F file ownership, and permissions A-2 G Groups, administering 6-1 CLI features 6-26 exporting 6-26 importing 6-27 concepts 6-3 common 6-4 container groups 6-3 dynamic groups 6-3 group hierarchy 6-3 secured views 6-5 shared 6-4 static groups 6-3 system-defined, user-defined 6-3 creating 6-9 deleting groups 6-21 details modifying 6-19 viewing 6-18 editing 6-19 exporting 6-22 sample export file 6-22 exporting from UI 6-23 exporting through CLI 6-26 Group Administration 6-9 group membership, assigning 6-17 importing 6-24 importing from UI 6-25 importing through CLI 6-27 multi-server setup 6-6 properties, specifying 6-10 refreshing 6-20 rules, defining 6-11 composite group rule example 6-15 composite rule 6-13 example for IP range 6-16 examples 6-14 range operator 6-14 simple group rule example 6-15 simple rule 6-12 single server scenario 6-6 single server setup 6-6 syntax checking 6-13, 6-14 system- and user-defined attributes 6-16 system defined attributes 6-16 H help CiscoWorks Product Updates panel of CiscoWorks Home Page 2-8 online documentation xvii Hostname change script, using 4-123 I IBM SecureWay Directory, changing login module to 4-35 importing devices and credentials 5-59 using CLI 5-129 using Device andf Credential Admin user interface 5-60 IP Address range operator, See range operator J Java Plug-in, version to use 10-5 jobs deleting 4-103 filtering 4-101 managing 4-98 stopping 4-103 viewing 4-99 jrm, checking 10-7 K KerberosLogin, changing login module to 4-36 L licensing CiscoWorks applications license information, viewing 4-94 licensing procedure 4-94 obtaining a license 4-94 updating licenses 4-95 links, registering with CiscoWorks Home Page 4-120 LMS Setup Center 7-1 categories 7-2 Data Collection Schedule 7-7 Data Collection Settings 7-5 Data Purge Schedule 7-9 Security Settings 7-4 System Settings 7-3 launching LMS Setup Center 7-2 local user policy setup 4-7 locked out of CiscoWorks Server, troubleshooting 10-5 log files, maintaining 4-104 Log File Status report, generating 4-65 on UNIX 4-107 on Windows 4-107 logrot utility, configuring 4-110 logrot utility, running 4-111 login module setting to ACS 4-45 application, unregistering through CLI 4-51 application registration 4-49 application registration through CLI 4-50 setting to non-ACS 4-33 CiscoWorks Local, changing to 4-34 IBM SecureWay Directory, changing to 4-35 KerberosLogin, changing to 4-36 local NT system, changing to 4-38 Local UNIX system, changing to 4-37 MS Active Directory, changing to 4-38 Netscape Directory, changing to 4-42 Radius, changing to 4-43 TACACS+, changing to 4-44 logrot utility configuring 4-110 running 4-111 M managing Common Services jobs 4-98 Common Services resources 4-103 messaging online users 4-98 MS Active Directory, changing login module to 4-38 Multiple ACS servers, configuring 4-58 multi-server mode, and security 4-22 N NAR. See Network Access Restrictions. navigation tools on CiscoWorks Home Page, using 2-9 NDG, creating 4-55 Netscape Directory, changing login module to 4-42 Network Access Restrictions 4-63 Network Device Groups, creating. See NDG, creating O online help, using 2-14 online users, messaging 4-98 osagent, changing the port for Solaris 10-6 Windows 10-6 overview authentication using login modules 4-30 overview of CiscoWorks Common Services 1-1 Common Services Server information 1-5 time zone settings, understanding 1-5 what's new in this release 1-2 Common Services Server 1-5 P packet capture, using 8-14 peer server certificates setting up 4-24 Permissions report, generating 4-66 PKCS#8, definition A-6 port numbers for web servers, changing 2-14 Predefined roles in ACS 4-59 preferences for system, modifying 4-112 private key, definition A-6 processes, managing 4-79 Process Status report, generating 4-67 PSUCLI 9-11 device packages, installing 9-12 device packages, listing dependents 9-15 device packages, listing device packages 9-15 device packages, uninstalling 9-13 device updates, downloading 9-14 software updates, downloading 9-13 software updates, querying 9-12 public key, definition A-6 R Radius, changing login module to 4-43 range operator 6-14 remote connectivity, security and A-4 reports Common Services reports 4-65 audit logs, viewing 4-69 Log File Status report 4-65 Permissions report 4-66 Process Status report 4-67 Users Logged In report 4-67 DCR Admin reports, generating 5-79 Device Center reports 8-18 resources, managing in Common Services 4-103 Resources panel of CiscoWorks Home Page 2-8 restoring data 4-85 CS data 4-87 solaris 4-85 windows 4-86 runtime security, understanding A-3 S Secure Shell (SSH), definition A-6 security access control, and A-4 certificates, understanding A-5 understanding A-1 general A-1 server A-2 security, setting up 4-2 AAA mode, setting up 4-30 Cisco.com login, setting up 4-64 Cisco Secure ACS support 4-32 configuring, ACS Integration 4-53 login module setting to ACS 4-45 setting to non-ACS 4-33 multi-server mode 4-22 peer server certificates setting up 4-24 proxy server, setting up 4-64 security levels, understanding 4-10 SSL 4-2 enabling from the CiscoWorks Server 4-3, 4-5 enabling from the CLI 4-4, 4-6 SSO (Single Sign-On) mode changing 4-28 enabling 4-25 user management local user profile, modifying 4-10 peer server, setting up 4-22 user profiles, editing 4-12 users, adding 4-11 users, deleting 4-13 users, setting up through CLI 4-13 seed devices, configuring 5-13 Self Signed certificates 4-16 self-test information, collecting 4-98 server, configuring 4-1 AAA mode, setting up 4-30 authentication using login modules 4-30 ACS Integration 4-53 applications, licensing licensing information, viewing 4-94 licensing procedure 4-94 obtaining a license 4-94 updating licenses 4-95 certificate setup 4-16 Cisco.com login, setting up 4-64 CiscoSecureACS support 4-32 Common Services, administering 4-70 backing up data 4-82 Daemon Manager, using 4-71 jobs, managing 4-98 processes, managing 4-72 processes, managing through CLI 4-79 resources, managing 4-103 server information, collecting 4-95 disk space, threshold configuring 4-115 log files, maintaining 4-104 List of log files 4-104 on UNIX 4-107 on Windows 4-107 logging, configuring 4-114 login module ACS 4-45 ACS, setting up 4-46 setting to ACS 4-45 setting to ACS, application registration 4-49 setting to ACS, application registration through CLI 4-50 setting to non-ACS 4-33 peer server certificates setting up 4-24 proxy server, setting up 4-64 reports, generating 4-65 audit logs, viewing 4-69 Log File Status report 4-65 Permissions report 4-66 Process Status 4-67 Users Logged In 4-67 security. See security, setting up Self-signed certificates 4-16 SSO (Single Sign-On) mode changing 4-28 enabling 4-25 system preferences, modifying 4-112 user management adding 4-11 adding through CLI deleting 4-13 local user policy setup 4-7 local user profile, modifying 4-10 peer server, adding 4-22 setting up through CLI 4-13 user profile, editing 4-12 users, local, setting up 4-10 server certificate for CiscoWorks, expiration, how to handle 10-10 server information, collecting (Common Services) 4-95 server security, understanding A-2 administrator-imposed A-5 connection A-5 security certificates A-5 terms and definitions A-6 server-imposed A-2 access control A-4 files, file ownership, permissions A-2 other systems A-4 remote connectivity A-4 runtime A-3 setting up, local user modify profile 4-10 security levels 4-10 user accounts 4-9 setting up, local user policy 4-7 setting up, local users 4-9 SNMP Set, using 8-11 SNMP settings, configuring 5-19 SNMP Walk, using 8-9 Software Center 9-1 activity logs, viewing 9-9 event log 9-10 scheduled job 9-10 device downloads, scheduling 9-8 device updates, checking 9-6 device updates, performing 9-5 packages, deleting 9-8 software updates, downloading 9-4 software updates, performing 9-2 list of applications installed, viewing 9-2 software updates, selecting 9-3 Software Center CLI utility 9-11 Solaris, changing ports in for ESS 10-22 for osagent 10-6 SSL, enabling on the server 4-2 from the CiscoWorks Server 4-3, 4-5 from the CLI 4-4, 4-6 SSL, definition A-6 SSO (Single Sign-On) mode changing 4-28 enabling 4-25 starting CiscoWorks applications, troubleshooting 10-5 supported browsers 2-10 T TACACS+, changing login module to 4-44 technical support CiscoWorks Product Updates panel of CiscoWorks Home Page 2-8 terms and definitions in security certificates A-6 Base64-encoded X.509 certificate format A-7 CA (certificate authority) A-7 CiscoWorks TrustStore or KeyStore A-7 PKCS#8 A-6 public key, private key A-6 SSH A-6 SSL A-6 time zone settings, understanding 1-5 toolbar buttons on CiscoWorks Home Page, using 2-9 Tool Bar items on CiscoWorks Home Page, using 2-9 troubleshooting applications not appearing 10-20 back-up data, directory structure of 10-23 CiscoWorks applications, starting 10-5 CiscoWorks Server 10-1, 10-3 device connectivity, testing 10-3 FAQs 10-4 locked out of, diagnosing 10-5 server status, verifying 10-1 database inaccessability 10-24 path includes "cmf" 10-5 devices, with the Device Diagnostic Tools panel of CiscoWorks Home Page 2-8 ESS port change Solaris 10-22 FAQs list 10-4 Apache and Tomcat 10-26 Backup-restore 10-23 CiscoWorks Home Page 10-20 Common Services General 10-4 Database 10-24 Device Center 10-19 EDS and ESS 10-22 Security 10-9 Software Center 10-15 Java Plug-in, which version to use 10-5 jrm 10-7 osagent port change Solaris 10-6 Windows 10-6 See also debugging tools under Device Center suggestions 10-32 typographical conventions in this document xv U UNIX systems changing login module to local UNIX system 4-37 log files, maintaining on 4-107 user accounts setting up Cisco.com 4-64 local 4-10 Users Logged In report, generating 4-67 V verifying CiscoWorks Server status 10-1 viewing application license information 4-94 audit logs 4-69 device list 5-77 group details 6-18 Software Center activity logs 9-9 W web server port numbers, changing 2-14 Whats New In This Release 1-2 Windows 2003 or Windows NT systems log files, maintaining on 4-107 Windows systems changing the port for osagent 10-6 jrm, running 10-7
	© 1992-2009 Cisco Systems, Inc. All rights reserved. Terms & Conditions \| Privacy Statement \| Cookie Policy \| Trademarks of Cisco Systems, Inc.