Cisco VMS exclusion

Hi
When I run the "Startup/Running Out of sync" report, all my device are out of sync. I went in my router in CLI and I found that some lines of my code are not written the same way in my running-config that in my startup-config. This is why VMS determine that all my router are out of sync.
Is it possible to exclude code of my router in the VMS configuration database ?
Thank you very much

Thank you very much, this is what I was looking for and it works properly.
But the problem is that my line code are related with crypto Global section.
Here's the lines that are not the same in my running that in my startup :
***Running***
crypto pki certificate chain [truspoint name]
certificate [certificate ID]
3DAC8C03 F89B2EEB 35D622D0 1DCC8C53
F89F2ECB 35D797D0 1DC09C03 F89F2FFB
35D197B0 ...
***Startup***
crypto pki certificate chain [truspoint name]
certificate [certificate ID] nvram:[truspoint name]#[ID].cer
Each of my spokes have a different certificate so if I want to exclude some line code, I must do it for each certificate :(.
Can I exclude a section of RME database
ex.: "Crypto-Crypto Global"
Thank you very much for your help

Similar Messages

  • Cisco VMS problem

    I have installed the cisco VMS 3.1 Enterprise edition but after installation. I am not able to open it in web page. I have checked all the services and it was running fine. But after the new installation, it is not opening in internet explorer. I have try with hostname adn IP address it is showing me following error
    Internal Server Error
    The server encountered an internal error or misconfiguration and was unable to complete your request.
    Please contact the server administrator, [email protected] and inform them of the time the error occurred, and anything you might have done that may have caused the error.
    More information about this error may be available in the server error log.
    Additionally, a 403 Forbidden error was encountered while trying to use an ErrorDocument to handle the request.

    Have you changed the hostname recently. Check the information at http://www.cisco.com/en/US/docs/net_mgmt/ciscoworks_common_services_software/3.0/user/guide/diagnos.html#wp1078582 for more information.

  • Can not use Cisco VMS 2.3 to send email alert to admin

    Hi all,
    I am using IDSM version 5 + Catalyst 6513.
    I am going to configure for Cisco VMS 2.3 to send alert email to admin. I downloaded scritp from cisco forum but now I can't configure.
    1. I rename the file emailalertv5.txt to emailalertv5.pl
    2. I copy the file to directory "E:\CSCOpx\MDC\etc\ids\scripts\"
    3. I configure in Cisco VMS 2.3 (like the attachment)
    However, I can't receive the alert email from Cisco VMS 2.3. When I connect to Security Monitor, I see many attack events.

    Hi all,
    if you know the answer, please answer me. I am looking for your answer.
    I read all materials about IDSM-2 but I can't configure email alert.
    Thank you very much.

  • Cisco vms 2.3 can't query to IDSM-2

    Hi all,
    I use Catalyst 6513 (Router IOS) + IDSM-2 and use Cisco VMS 2.3 to manage IDSM-2. I upgrade IDSM-2 from version 4 to version 5. However, after updating completely, I use Cisco VMS 2.3 to query to IDSM-2, I see a error:
    "status: Error importing configuration files from the sensor - Unable to get sensor version from the sensor. Possible reason: X.509 certificate is invalid or sensor version was downgraded. "

    Hi,
    Normally doing the following fixes the problem.
    You need to regenerate the IDSMC Certificate and add the VMS as the trusted host to the sensor.
    To generate the certificate do the following.
    c:\progra~1\cscopx\mdc\apache\gencert.bat
    where c: drive is the drive you installed your VMS.
    After this is done, please restart the CiscoWorks Daemon Manager.
    You will also need to generate tls key as well as manually re-install the TLS certificate on your sensor.
    tls trusted-host from the IPS CLI and specify your VMS's IP address.
    tls generate-key
    no tls trusted-host ip-address (vms server ip)
    tls trusted-host ip-address (vms server ip)
    Thanks.
    Edward

  • Cisco VMS can support management of router and switches

    I want to use Cisco VMS to manage my IPS and firewalls.
    A also have two routere and five switches in place can i use the same software to monitor and manage them or I need separate software.

    VMS 2.3 components and the capabilities of each. VMS is packaged in one sub-box with Obtaining Documentation directing you to VMS documentation and the following two CDs:
    1.VMS Management and Monitoring Centers Disk 1 of 2Contains these VMS components and associated product documentation:
    CiscoWorks Common Services
    Auto Update Server
    Management Center for Firewalls
    Management Center for IPS Sensors1
    Monitoring Center for Performance
    Monitoring Center for Security
    Management Center for VPN Routers
    2.VMS Management and Monitoring Centers Disk 2 of 2Contains these VMS components and associated product documentation:
    http://www.cisco.com/en/US/products/sw/cscowork/ps2330/products_installation_guide_chapter09186a00803bd364.html#wp1036990
    Management Center for Cisco Security Agents
    Resource Manager Essentials
    Resource Manager Essentials IDU 12
    Management Center for IDS Sensors 2.0.12
    Monitoring Center for Security 2.0.13
    Note You must install IDU 12 included on Disk 2 for RME to work with VMS 2.3 even if you already have RME 3.5 installed on your server.

  • Unable to view IDS logs from cisco VMS server

    Hi,
    Pls help me out for viewing IDS logs from my cisco vms server (4th edition with SP2,java 1_4_1.02)
    Configured IDS sensor with IDS MC (2.0.1) and updated signatures with latest sig files,
    Configured Security monitor to view my IDS sensor and showing TLS was connected and cisco IDS REDP/SDEE,when viewing logs error was server codes need to be update., unreconiged last saved IDS alarms.
    Pls give me the solution
    Regards
    Ajay

    Hi Ajay,
    when you upgrade to sec mon 2.0.1, the database is the same, but the formats are different.. you need to do somethings for converting these formats, which might take hours together, if ur database has too many events...
    for information to convert the file format, refer to this URL:
    http://www.cisco.com/en/US/products/sw/cscowork/ps3990/prod_release_note09186a0080386f72.html#wp1087204
    see the section "Using the ConvertAndImport.pl Script after Upgrading from Security Monitor 1.2.3 to Security Monitor 2.0.1 "
    do this and see.. let us know
    Raj

  • Cisco VMS Black Screen

    VMS displays a black screen after connecting to our IP cameras. I can see the cameras when we browse directly to their IP address, Cameras and VMS software on the same subnet, VMS is running on a Microsoft Hyper V, 2.5 gig processor, 1 GB RAM, 120 GB hard drive. Any assistance would be appreciated.
    Thanks.

    Hello,
    According to the Admin Guide, the minimum specs are:
    Dedicated display adaptor with 512 MB internal memory required. ATI
    Radeon 4650, nVIDIA GeForce GF-9600, or above (ATI
    recommended)
    http://www.cisco.com/en/US/docs/security/csbvsc/swvms16/administration/guide/sw_vms16.pdf
    We frequently see issues with Windows Server as well as VMs, as they usually do not have a large amount of video resources.

  • CISCO VMS Ver2.3

    Even if there are no reports pending to be generated the REPORT RUNNING icon blinks. This stops from Compacting the database with message that DATABASE IS IN USE TRY LATER. How to stop the report running blink, so that compact DB works.

    May be you can try stopping and restarting the "CiscoWorks Daemon manager" in the windows services.

  • How to Add FWSM 2.2 to Cisco Works VMS Inventory & syslog server

    i've two FWSM & Cisco VMS 2.2 i want to configure them to send syslog messages to the syslog analyzer under RME 3.5, they are added to firewall MC 1.3, they send syslog messages to unexpected syslog devices under the syslog analyzer.

    Checek if you have more than 5 Locale installed in the Unity connection :
    http://cisco.com/en/US/docs/voice_ip_comm/connection/2x/os_administration/guide/2xcucosag070.html#wp1043540

  • Event time issue - IPS 4240, v5.0, VMS.

    Hi,
    I am having this unique issue. Whereas the IPS system time is correct, and I have set a UTC offset of 330 min (being in the GMT +5.30 hrs time zone.), I am still seeing the event time on the IEV as UTC, and not the system time. This is kinda tedious trying to keep track of the actual local time the event occcurred. The system clock on the IPS shows correct local time.
    Also, on the VMS server, the system time is the same as the IPS. However, whenever I open up the SecMon, to view the event, it gives me a funny default start & end time, which is about 3 beyond the system time (I expect the time range reflected in the SecMon, should correspont the system time of the VMS machine, when the SecMon->Monitor->Events link was clicked.) For e.g. if I click on the SecMon->Monitor->Events link at say 10.00 am, on 13th April, I expect the fetch events time range to show from 13-April-2005 10:00:00 hrs to 13-Aril-2005 10:00:00 hrs. However, what it actually displays is 13:00:00 hrs to 13:00:00 hrs. I am at a loss where this time difference is creeping up from. Also, if instead of the time range, I specify, say last 1 or 2 hrs, it wont show me any events. (This I suspect is because of the funny 3 hr time difference that has crept in.) I can only see the events, if I ask the events of beyond last 3 hrs.
    Any suggestions how to resolve the same? I am not using any NTP servers currently. Would that help?
    Thanks in advance.
    Ajay.

    Hi Ajay
    Its not a major problem either in your CISCO IDS and CISCO VMS. It is time synchronizing factor involved in this mismatch time view on your Sec Mon.
    What version of VMS you deployed?
    If it is not updated version then download the PERL script Workaround files from Download Center then run on it.
    After that, the problem will be resolve.
    If it will not resolve then pls reply.
    Thanks

  • Ftp Adapter put to VMS

    I'm using the FtpAdapter to send ascii files to a VMS machine from an Oracle BPEL process. The files are written to the remote VMS machine, but they contain no line terminators.
    Can anyone help? Is there some configuration I need to setup for VMS?
    btw. If I ftp the files to an intermediate UNIX machine then manually ftp to the VMS machine (all in ascii mode), the files are ok.
    Thanks.

    We used binary mode to send files to VMS host. Our files has hex values of 0d0a(ascii 10 13 or CRLF) as line terminators. Also, there is no support for VMS exclusively and by default we have our ftp adapter set to work as for unix systems.
    Try transfering file to vms and without opening the file can you transter and open the file locally? Check if it has line terminators.
    +DP                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   

  • Help on VMS-communication and prerequisite

    HI, we're in the middle of waiting for the Cisco VMS 2.3 and i have a few concerns:
    1) VMS has SSH sessions to all the devices being managed. Does these session stay up permanently or only when needed.
    2) From what i know VMS comes with Ciscoworks common services and therefore don't need to buy any additional components. Does RME has any additional enhancements if installed together ??
    Appreciate all your help. Thanks
    LeNnY

    hello lenny
    the ssh sessions are built up only when needed.its not up always.. for eg, when we force a configuration archive change for a device, a ssh session is formed and the activity is completed..
    VMS basically comes with common services, RME, monitoring centers etc.. you dont need to buy anything extra to install RME on ur VMS box.. RME has to be installed on a ciscoworks VMS server with common services. withouth common services, u cant install RME.. its built in inside the VMS software..
    hope this helps you... let us know if you have any other queries...
    Raj

  • Ftp adapter against VMS

    We are using the FTP 'get' adapter against a VMS source. We do not wish to delete the file, thus are forced into specifying a File Name Substring that holds the file date/time because VMS does not support 'mdtm' which is used by the 'File System' and 'Directory Listing' methods to obtain the file modification date.
    The file name format has an encoded date - something like h31 might mean 31st April, thus is of no use unless the adapter code could be modified.
    Can the Directory Listing command be changed from mdtm to DIR for the VMS system?

    We used binary mode to send files to VMS host. Our files has hex values of 0d0a(ascii 10 13 or CRLF) as line terminators. Also, there is no support for VMS exclusively and by default we have our ftp adapter set to work as for unix systems.
    Try transfering file to vms and without opening the file can you transter and open the file locally? Check if it has line terminators.
    +DP                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                   

  • Cisco Security Manager Appliance bundle

    I have a customer subscribed to the Security ELA, so all security related licenses and subscriptions are free.  It is possible to order this product as an appliance without the bundled licenses?

    Yes, if we do get a UCS, it will be sized to accommodate more than just CSM due to the other stuff we could load it with, although now that Cisco VMs run under Hyper-V....?  We are also getting FS (their VM is not big enough, shame) in hope that appliance/product will absorb CSM in a future release.
    Thanks,

  • Exchange Retention Policy Tag for Voicemails - worked for UM but not for new Cisco Unity - Any ideas?

    Hi All,
    We're in the process of moving from Unified Messaging to Cisco Unity. In the past, I had successfully applied the following Retention Policy Tag which worked with UM:
    New-RetentionPolicyTag "Voice Mail 60 Day Retention" -Type All -MessageClass voicemail -Comment "Untagged messages removed after 60 days." -RetentionEnabled $true -AgeLimitForRetention 60 -RetentionAction DeleteAndAllowRecovery
    Now, with Cisco Unity, I see that the voicemails show "Expires: Never."
    The Cisco voicemails differ from UM in that instead of being *.mp3 files, they are *.wav.
    I cannot figure out a way to create a Retention Policy tag that deletes a specific file type. Any ideas?
    Thank you,
    MrMister

    Hi All,
    We're in the process of moving from Unified Messaging to Cisco Unity. In the past, I had successfully applied the following Retention Policy Tag which worked with UM:
    New-RetentionPolicyTag "Voice Mail 60 Day Retention" -Type All -MessageClass voicemail -Comment "Untagged messages removed after 60 days." -RetentionEnabled $true -AgeLimitForRetention 60 -RetentionAction DeleteAndAllowRecovery
    Now, with Cisco Unity, I see that the voicemails show "Expires: Never."
    The Cisco voicemails differ from UM in that instead of being *.mp3 files, they are *.wav.
    I cannot figure out a way to create a Retention Policy tag that deletes a specific file type. Any ideas?
    Thank you,
    MrMister
    Those don't exist. The tags work on message class. The Cisco VMs are not the same forms as the Exchange UMs essentially.
    Twitter!:
    Please Note: My Posts are provided “AS IS” without warranty of any kind, either expressed or implied.

Maybe you are looking for

  • Account Determination for entry 1000 KBS 0001 ---- 2030 error in MIGO

    Dear All A PO has been made with acc. assgnment as "Z" i.e capital order with account modifier as ZCA in OME9 transaction.For this account modifier and valuation class of material an entry is there in OBYC GBB trasaction.. But when I am doing GRN thr

  • Sharing libraries from different computers

    i have two computers. i originally had itunes only on one pc. when i downloaded the program onto my other computer the only option i had is to completely erase my ipod to update it with the new library on the second computer. can anyone tell me how t

  • How to add new slides in iAD Producer?

    Hello, there! I am trying to producer a new slide where I can write text in iAD. I have problems with it though and can you please tell me how to add new slides, where I can either write text or add new objects or assets? Also when I try to use the C

  • Where to learn about Struts?

    Hi, I wanna learn Java on the server-side, and the first thing I'd like to learn is Struts, cause I constanly hear about it, so I've searched for a tutorial about it but couldn't find, could someone please advise me some tutorial or a good place to s

  • Possible fix for no audio & grayed-out volume control

    Hi, I just thought I'd post this fix I found for my Mac Mini losing audio and also having the volume control grayed-out as if permanently muted. I have had this problem a couple of times on my Intel 2 GHz Core 2 Duo Mac Mini. I have tried some of the