Chapter 17. Troubleshooting CiscoWorks Common Services
VPN/Security Management Solution (VMS) is a suite of Cisco Management Framework (CMF) technologies. CiscoWorks Common Services provides a common environment for Client Applications (Management Consoles known as MCs) for Intrusion Prevention System (IPS), firewalls, routers, and so on for configuration and reporting purposes. This chapter delves into troubleshooting issues that crop up when using CiscoWorks Common
Overview of CiscoWorks Common Services
CiscoWorks Common Services provides a Web interface for the configuring and monitoring of different management consoles (MCs) for different network devices. Because CiscoWorks Common Services provides the underlying framework for client applications (MCs) to function correctly, CiscoWorks Common Services must be installed before any client applications. Client applications such as Firewall MC, IDS/IPS MC, etc., integrate with CiscoWorks Common Services and use its management functions.
Communication Architecture
The CiscoWorks Common Services Desktop can be accessed using one of the supported Web browsers by pointing to the IP address of the CiscoWorks Common Services server with two specific default ports (1741 and 1742). In normal mode, http is used as a transport protocol and 1741 is used as a transport port. However if SSL is turned on, https is used instead of http, and 1742 is used as a port instead of 1741. However, you can change the web server with the procedure explained in the following link:
To launch CiscoWorks Common Services, on the browser type:
http://server_name(or ip):1741
Note
If you enter http://server_name (or ip):port_number/login.html in your Web browser, the CiscoWorks Server will not launch. Hence, do not bookmark the CiscoWorks URL with the login.html.
User Management on CiscoWorks Common Services
- Role Is a set of privileges.
- Privileges Are the applications, features, and actions a user can access and use.
Common Services has five built-in roles with pre-defined privileges as shown in Table 17-1.
Application | System Admin | Network Admin | Network Operator | Approver | Help Desk |
---|---|---|---|---|---|
Licensing | X | X | |||
Compact | X | X | |||
Backup | X | X | |||
Restore | X | X | |||
Preferences | X | X | |||
Checkpoint | X | X | |||
ACS/CMF Server | X | X | |||
Logging | X | X | X | ||
Edit User | X |
CiscoWorks Common Services supports the following database for authentication:
- CiscoWorks Local
- TACACS+
- IBM Secureway Directory
- KerberosLogin
- Local NT System
- MS Active Directory
- Netscape Directory
- RADIUS
For both authentication and authorization, CiscoWorks Common Services can be configured in one of these two modes:
- Local This is the default mode when you install CiscoWorks Common Services.
- Cisco Secure ACS To use this mode, you must have a Cisco Secure ACS server installed on your network.