Cisco Prime 'Nouser' device alarms...
Dear All,
I have a recently setup Cisco Prime solution running in our test lab with a view to managing various wireless lan controllers and associated AP's. As part of the device management process we are using SNMPv3 but do not want to allow the PRIME v1.2 appliance to use HTTPS or SSH for management. So left this config empty when setting up the device telnet/SSH and HTTP fields when adding our WLC within the device centre.
We now get the following alarm regularly....Is there any way of avoiding this and disabling the telnet/SSH/HTTP options or is it a MUST DO thing?
User 'nouser' with IP Address '10.172.198.19' has made too many unsuccessful login attempts.
Any advice gratefully received.
Thanks.
Hi,
Here is the link to the document containing the detailed steps regarding Credential Sets.
After defining your sets then set up Credential Set Policies.
Thanks!
Similar Messages
-
Cisco Prime LMS - Device discovery
How do you configure Cisco Prime LMS Device Discovery, so that you can have two credentials sets for specific "special devices" (host based statement) and one for the of the devices (global subnet statement)?
Thanks in advance.Hi,
Here is the link to the document containing the detailed steps regarding Credential Sets.
After defining your sets then set up Credential Set Policies.
Thanks! -
Cisco Prime modify/add alarm categories
Hello all,
I'm using prime to manage the failed authentication attempts for a 802.1x environment. I changed the notification severity level to Major so that it would show up in alarms. However, i realized that the alarm category is listed as client and in E-mail notifications for alarms the "Client" category is not listed. Can i modify the list to include the client category ?Hi,
Same problem here.
I am using Cisco Prime Infrastructure 2.0 (evaluation version for 60 days). I want to deploy port monitoring for my trunk ports between switches and some other important ports e.g. servers. Basically I want to get alarms when these ports are down, there are errors on ports and etc.
So in Design>Port Grouping I created User Defined group with important ports. In Deploy>Monitoring Deployment I selected Interface Health (default)>Deploy selected Port Groups and when selected port group I created.
Now the rule shows Deployed: Yes and Status: Active. After that I just pulled out one port which was in monitored group, waited 5min as it is set in Interface Health (default) template, and nothing happened, and worse, alarms started to show up of other ports where regular users are connected (computers was turned off), which I do not want to see at all. I tried redeploy template, I even created my own template but still no desired result.
Any suggestions how to make port monitoring work? -
Cisco Prime LMS device unreachable dont know why
Hi
Currently running Cisco Prime LMS v4.2
I am trying to get some Nexus 7K Switches to work and become reachable.
They are running kickstart: version 6.2(2)
system: version 6.2(2)
Now as far as I can see i have 2 identical switches but one is unreachable and the other is reachable.
When i use my snmp tester they both work with the correct V3 auth/priv passwords and the correct ssh
works on the switches.
When i go to monitor/Troubleshooting Tools/Troubleshooting Workflows
Then for the non working one i get the following fails....
Device Information Device availability x
Collector Status
Data Collection Failure
User Tracking Failure
Fault discovery Failure
On the working one The above all are a Success.
Also
Reachability Details
Both ping and traceroute work fine on both switches
For the life of me I cannot see any difference in the configuration of the two devices.
Has anyone come across this before ?
I have attached a copy of the snmp config.
Thanks
SteveWhat is the server OS? Windows/Linux or Unix?
From the server to ping and poll device for SNMP and see if both device works fine?
SNMP walk is available under :
Windows : NMSROOT/objects/jt/bin
Linux/unnix/: /opt/SCOpx/objects/jt/bin
Example:
NSROOT/objects/jt/bin/snmpwalk -v2c -c public <ip_add> <OID>
Try to configure the problematic device for SNMP v2 and try to add it from there and test if it works fine.
-Thanks
Vinod -
In Prime LMS 4.2, has anyone seen this issue/bug before?
I've added in all devices indicating their Device Names and Hostnames. However in the Monitor section and only High Severity Faults part, the Device Name is actually showing IP addresses.
In the Syslog report that sent via email, Device Name fields are showing IP addresses as well. Other sections or portlets are totally fine.
Thanks.Hi Bin,
Check the below link:
http://www.cisco.com/en/US/docs/net_mgmt/ciscoworks_device_fault_manager/3.2/user/guide/useDevMg.html#wp1367517
Workaround to get the HOSTNAME in DFM is :
1> Added the Device Name and IP on the DNS Server or /etc/HOSTS file
2> Modified NMSROOT/objects/smarts/conf/discovery/discovery.conf, and changed the DisplayNameFormat from "AUTOASSIGNED" to "MIBIISYSNAME".
That caused DFM to display the sysName as the display name.
Also set the NameFormat to TM_USEAUTONAME, then restarted daemon Manager (net stop crmdmgtd && net start crmdmgtd )
3> Delete and re-add a device in DFM
============
Open name-resolver.conf file and make same changes that we have made in discovery.conf. ie, the following entry should be there in this file also.
#NameFormat = "TM_USESEEDNAME"
NameFormat = "TM_USEAUTONAME"
Thanks-
Afroz
[Do rate the useful post] -
Hi,
I want to configure the smtp in cisco prime for receive alarm message in my account .than ,when i press the test button ,the following message is display.
Failed to send mail to primary SMTP server. Please make sure that you save mail configuration by hitting 'Save' button.
think'shttp://www.cisco.com/c/en/us/td/docs/net_mgmt/prime/infrastructure/1-2/user/guide/prime_infra_ug/maint_sys_health.html#pgfId-1059487
-
Cisco Prime 1.2 device interface alarms
Hello All,
I am working on Cisco Prime Infrastructure 1.2.1.012. I have enabled prime to report interface up and down messages.
But I am seeing some strange messages such as below,
Alarm Condition:Link down
Message: Port '{0}' is up on device '{1}'.
This is happening for some of the interfaces of the switch. For the same switch if there is any interface activity I can see alram message as,
Message: Port 'GigabitEthernet0/43' is up on device '10.104.xx.xx'
which is good and undestandable. Why the interface name is shown as {0}?
Any suggestions would be much appreciated.
Regards,
GirishJust found the solution to the problem!
Bug ID: CSCuf55719, Incomplete link down detection: Port '{0}' is down on device '{1}'.
It seems this issue will be fixed in PI 2.0.
Regards, -
Cisco Prime: Event Larm Port 'x' is down on device.
Hi,
I'm writing regarding; event-larms; that is reporting from Cisco Prime; connected to controller. Interfaces is reporting via event-larm; that they are down.
"Virtual Domain: ROOT-DOMAIN
PI has detected a change in one or more alarms of category Controller and severity Critical in Virtual Domain ROOT-DOMAIN.
The new severity of the following items is Clear:
1. Message: Port '3' is down on device '10.1.1.2'.
(6 times)
2. Message: Port '4' is down on device '10.1.1.2'.
(6 times)
3. Message: Port '5' is down on device '10.1.1.2'.
(6 times)
4. Message: Port '6' is down on device '10.1.1.2'.
(6 times)
5. Message: Port '7' is down on device '10.1.1.2'.
(6 times)
6. Message: Port '8' is down on device '10.1.1.2'.
(6 times)
E-mail will be suppressed up to 30 minutes for these changes."
Is there a solution how to not recieve those event-larms? The only LACP interfaces that is configured is 1 & 2, in a group.
See attached screenshot, when trying to disable the other interfaces.
The LACP is enabled and configured on "management" interface.
Best Regards,
DavidFrom: https://supportforums.cisco.com/discussion/12077376/prime-infrastructure-alarm-port-down#comment-9405836
"As far as I understand the error message you only need to disable SSO before you can disable the LAG ports."
"(Cisco Controller) >config port adminmode 3 disable
Blocked: Lag is enabled. Disabling the lag port is blocked when system is in redundancy state (SSO)"
"I would suggest to do this only in a maintenance window." -
Cisco Prime Infrastructure 2.0 - no traps/info are pushed from devices
Good evening,
I have setup Cisco Prime Infrastructure 2.0 and, though I have added manually my 4 network cores as devices without any problem, I can't get a single trap or a single SNMP information to be pushed into my Cisco Prime Infra.
Here is my SNMP config on my core :
snmp-server user *edited* *edited* v3
snmp-server group *edited* v3 noauth notify *tv.FFFFFFFF.FFFFFFFF.FFFFFFFF.FFFFFFFF.FFFFFFFF.FFFFFFFF.FFFFFFFF.FFFFFFFF.FFFFFFFF.FFFFFFFF.FFFFFFFF.FFFFFFFF.FFFFFFFF.FFFFFFFF.FFFFFFFF0F
snmp-server community *edited* RO
snmp-server enable traps snmp authentication linkdown linkup coldstart warmstart
snmp-server enable traps flowmon
snmp-server enable traps transceiver all
snmp-server enable traps call-home message-send-fail server-fail
snmp-server enable traps tty
snmp-server enable traps rf
snmp-server enable traps memory
snmp-server enable traps cpu_threshold
snmp-server enable traps eigrp
snmp-server enable traps ospf state-change
snmp-server enable traps ospf errors
snmp-server enable traps ospf retransmit
snmp-server enable traps ospf lsa
snmp-server enable traps ospf cisco-specific state-change nssa-trans-change
snmp-server enable traps ospf cisco-specific state-change shamlink interface
snmp-server enable traps ospf cisco-specific state-change shamlink neighbor
snmp-server enable traps ospf cisco-specific errors
snmp-server enable traps ospf cisco-specific retransmit
snmp-server enable traps ospf cisco-specific lsa
snmp-server enable traps flex-links status
snmp-server enable traps fru-ctrl
snmp-server enable traps entity
snmp-server enable traps ethernet cfm cc mep-up mep-down cross-connect loop config
snmp-server enable traps ethernet cfm crosscheck mep-missing mep-unknown service-up
snmp-server enable traps ether-oam
snmp-server enable traps aaa_server
snmp-server enable traps flash insertion removal
snmp-server enable traps l2tc threshold sys-threshold
snmp-server enable traps power-ethernet police
snmp-server enable traps rep
snmp-server enable traps vswitch dual-active vsl
snmp-server enable traps udld link-fail-rpt status-change
snmp-server enable traps vtp
snmp-server enable traps vlancreate
snmp-server enable traps vlandelete
snmp-server enable traps auth-framework sec-violation
snmp-server enable traps dot1x auth-fail-vlan guest-vlan no-auth-fail-vlan no-guest-vlan
snmp-server enable traps envmon fan shutdown supply temperature status
snmp-server enable traps entity-diag boot-up-fail hm-test-recover hm-thresh-reached scheduled-test-fail
snmp-server enable traps port-security
snmp-server enable traps ethernet evc status create delete
snmp-server enable traps energywise
snmp-server enable traps ipsla
snmp-server enable traps vstack
snmp-server enable traps bfd
snmp-server enable traps bgp
snmp-server enable traps bulkstat collection transfer
snmp-server enable traps cef resource-failure peer-state-change peer-fib-state-change inconsistency
snmp-server enable traps config-copy
snmp-server enable traps config
snmp-server enable traps config-ctid
snmp-server enable traps event-manager
snmp-server enable traps hsrp
snmp-server enable traps ipmulticast
snmp-server enable traps isis
snmp-server enable traps msdp
snmp-server enable traps pim neighbor-change rp-mapping-change invalid-pim-message
snmp-server enable traps bridge newroot topologychange
snmp-server enable traps stpx inconsistency root-inconsistency loop-inconsistency
snmp-server enable traps syslog
snmp-server enable traps isakmp policy add
snmp-server enable traps isakmp policy delete
snmp-server enable traps isakmp tunnel start
snmp-server enable traps isakmp tunnel stop
snmp-server enable traps ipsec cryptomap add
snmp-server enable traps ipsec cryptomap delete
snmp-server enable traps ipsec cryptomap attach
snmp-server enable traps ipsec cryptomap detach
snmp-server enable traps ipsec tunnel start
snmp-server enable traps ipsec tunnel stop
snmp-server enable traps ipsec too-many-sas
snmp-server enable traps errdisable
snmp-server enable traps ethernet cfm alarm
snmp-server enable traps vlan-membership
snmp-server enable traps mac-notification change move threshold
snmp-server enable traps vrfmib vrf-up vrf-down vnet-trunk-up vnet-trunk-down
snmp-server host *ip-address-edited* version 3 noauth *edited*
Basically all traps are enabled but absolutely nothing is showing up in my Prime Infra except that my 4 devices are "Reachable".
Here is a show snmp on the same device :
sh snmp
Chassis: *S/N Edited*
38554534 SNMP packets input
0 Bad SNMP version errors
14 Unknown community name
0 Illegal operation for community name supplied
0 Encoding errors
38453185 Number of requested variables
0 Number of altered variables
17790703 Get-request PDUs
20583581 Get-next PDUs
0 Set-request PDUs
0 Input queue packet drops (Maximum queue size 1000)
38490708 SNMP packets output
0 Too big errors (Maximum packet size 1500)
0 No such name errors
0 Bad values errors
0 General errors
38371069 Response PDUs
13 Trap PDUs
SNMP global trap: enabled
SNMP agent enabled
SNMP logging: enabled
Logging to *edited*, 0/10, 13 sent, 0 dropped.
Can anyone point out what is wrong or missing in my configuration? I can't seem to single it out myself.
Thanks
JeremyHi Jeremy,
SNMP traps are shown in the events and alerts section of PI.
SNMP config looks fine. Can you run the SNMP debug (debug snmp packets ) .check the logs and see if the device is actually sending the TRAPS to the PI server.
Thanks-
Afroz
[Do rate the useful post]
****Ratings Encourages Contributors **** -
Including Interface Description in Cisco PRime Infrastructure Alarm Message
Hi all,
i succesfully configured a Cisco Prime Infrastructure 2.1 applliance to display an alarm and to send me an e-mail when switch uplink ports goes down.
The text displayed in alarm message is :
port 'interface_id' is down on device 'device_ip_address'
I'd like to include in this text also the interface description so the text will display :
port 'interface_id' 'interface_descriprion' is down on device 'device_ip_address'
Is this possible?
Thankyou in advanceHi,
i followed these steps :
SWITCH SIDE
- configured Prime Infrastructure as snmp-server host;
- enabled snmp-traps for linkup and linkdown events globally;
- disabled snmp-traps for linkup and linkdown on non relevant interfaces using the no snmp trap link-status command
PRIME INFRASTRUCTURE SIDE
- under "Deploy/Monitor Deployment" i deployed template "Interface Health" for all the interested switches
- under "Administration/System Settings/Mail Server Configuration" configured my internal SMTP server to make Prime Infrastructure able to send e-mails
- under "Operate/Alarms & Events" click on "Email Notifications" , then on "Switches and Hubs"
- check the "critical" box , insert the destination e-mail address into the "To" field then click "Save"
- check the "switches and Hubs" box and then click Save
As i know is possible to avoid to configure every single not-interesting port on the switches with "no snmp trap link-status" command (it's a bit annoying when you have tens of switches), using Port Grouping configuration on PI but i tried it without success.
Hope this helps.
Best Regards, -
Cisco Prime infrastructure Change severity Switches and hubs - link down alarm
Hi, I want to change the severity of the link down alarm in the Cisco Prime Infrastructure 1.3, but in the menu Administration -> System Settings -> Severity Configuration i can not find the alarm. Some body knows where is it? o where i can change the severity of that alarm?
Thanks in advanced.Hi Rollin and Daniel,
the first test i did changing the severity was with a new installation, with no devices added and it worked, when i did it in a Prime infrastructure with devices added it didn´t work, well, for this Prime with devices i upgraded it with the patch for 1.3 version and now it works too, the alarms is ok as the alarm severity, this is the link for the patch:
http://software.cisco.com/download/release.html?mdfid=284652876&flowid=38562&softwareid=284272933&release=1.3.0&relind=AVAILABLE&rellifecycle=&reltype=all
i hope this helps,
Regards,
Milton Tizoc. -
Deleted WLC from its folder under the Device work center of Cisco prime 1.2
I kindly need your help as regarding cisco prime infrastructure.
I added the wireless LAN controller to the prime. I later had to troubleshoot the WLC because the reachability status showed UNREACHABLE.
Due to my troubleshooting, I synched the WLC a couples of times and the collection status has been showing SYNCHING since then.
I also tried deleting the WLC from its folder under device work center and it deleted but it still reflects under the ALL folder.
Please would I have to wait for the SYNCHRONIZATION of the WLC to stop before I can completely delete it and re-add??
Also I noticed that after deploying ''Interface Health'' under Monitoring Configurations, the CPU and memory utilization did not reflect for the devices cisco
prime is managing.
What have I missed out?
Kindly help.Prime Infrastructure won't support those legacy models.
-
Cisco Prime Infrastructure 1.4 SNMP Traps are not converted into Alarms
Hi everybody,
I just configured SNMP Traps on a Cisco Catalyst 3750-x to send to our Cisco Prime Infrastructure 1.4 Appliance.
Now I forced the Switch to send some traps (Power off a Power Supply, Interface errdisable). The only events I see in Alarms & Events on PI is the same information message everytime:
Configuration management event has been recorded in ccmHistoryEventTable.
I think the forced traps should be converted into alarms? Why can't I see them?
Thanks,
MarcOk, I started debugging as you said. I get the following output:
Mar 13 09:28:13.711: SNMP: V2 Trap, reqid 11689, errstat 0, erridx 0
sysUpTime.0 = 198609846
snmpTrapOID.0 = ciscoSyslogMIB.2.0.1
clogHistoryEntry.2.1688 = PM
clogHistoryEntry.3.1688 = 5
clogHistoryEntry.4.1688 = ERR_RECOVER
clogHistoryEntry.5.1688 = Attempting to recover from bpduguard err-disable state on Gi1/0/13
clogHistoryEntry.6.1688 = 198609844
Mar 13 09:28:13.737: SNMP: Queuing packet to xx.xx.xx.xx
Looks like the Switch is sending SNMP Traps from the ciscoSyslogMIB. Is this why PI can't show the Traps and convert it into a alarm?
After this test I configured logging (syslog) to the PI. Now the errors are showed but still not converted into alarms. I just want to be notified by email when such errors occurs.
Thanks,
Marc -
My Cisco Prime Infrastructure ver. 1.2.1.12
Cisco Prime Infrastructure - I can't see the hardware virtual image when I selected a device managed by Prime Infrastructure. See attached picture.
Please let me know how to access or enable the feature.
Thanks,
TekThis is by no means a full solution, but deleting and re-adding only takes a few minutes if you use the "Export Device" and "Bulk Import" features from the Device Work Center. You can export the desired devices to a CSV file, delete them, then import from the CSV.
Of course, you might lose historical data when deleting the devices, but I'm guessing that's not as relevant since the devices themselves have been replaced by different hardware. -
Cisco Prime Infrastructure 1.2 - web browser freezes when managing rogue APs alarms
Hello all,
has anybody faced a freezing problem when you click in Cisco Prime Infrastructure 1.2 down on alarm bar and then to Rogue AP alarms and then try to add an annotitation or change a rogue alarm to Friendly?
I tried it on different PC, different browsers (Firefox 14.0.1. Chrome ...) and the problem is still there.
Has anybody an idea?
Thanks.
Regards
KarelI just tried it from my lab VM and had no problems. I use Chrome and the browser does sometimes not refresh for a while but that is just when I start to click around.
Thanks,
Scott
Help out other by using the rating system and marking answered questions as "Answered"
Maybe you are looking for
-
Difference SAP Business Workflow and ccBPM
Hi, well both mentioned are for connecting Applications. In my point of view there is only a difference in... SAP Business Workflow: connects Applications via Tasks across SAP-Systems ccBPM: with help of PI it should connect Applications via Adapter
-
Duplicate invoice check ( MIRO)
Hi All I have done all the settings for duplicate invoice check. And I posted an invoice with the following parameters on a limit PO Company code:ABC Document date:12.09.2009 Reference:INV1 Currency:USD Vendor:102221 Amount:20 Now I am trying to post
-
Opening new window in xMII Portal navigation tree
I'm doing a 5-level deep drilldown where each drilldown needs a new window (browser page). I do it with JavaScript and window.open(strURL); and xMII 11.5. This works well with "standalone" pages, but I would like to use xMII Portal navigation tree al
-
External superdrive not recognizing an audio cd
I have a new iMac with a new Apple external superdrive attached. The superdrive won't accept one of my brand new audio cds, but works fine with other cds. The new cd loads fine on my older 2009 iMac's internal drive. Anyone else seeing a problem like
-
Can Aperture use Iweb pages?
Greetings All: I've got several site that have been created using Iweb. But would like to generate the photo type pages using Aperture and then melt the two together. Is it possible to import my Iweb template into Aperture so the photo pages will loo