Transport settings for ASA's

Hi,
Is there a way to change transport settings for archive collection based on groups?  We have ~1100 switches/routers that use telnet and 7 ASA's that use SSH. I have the transport order set to telnet first and then SSH.  This is causing ASA failed password attempts to be logged to the MARS appliance and I don't want the SSH passwords to be sent in plain text.  We are using LMS 3.2.
Thanks,

No, there is no way to tie transport settings to certain device types.  It's an all-or-nothing thing.  For what you want to do, set your protocol order to SSH then TELNET.  For the majority of devices, the SSH will fail, but you can be assured that the ASAs won't have that clear text password logged.

Similar Messages

  • Recommended port-security settings for ASA HA failover

    I have a pair of ASA 5510s configured in active/standby mode. I have already configured the failover settings on the firewalls. Both firewalls are connected to a 2960G. I made a change to the interfaces on the 2960 to allow 2 mac addresses on each port. Here is the switch port config:
    interface GigabitEthernet0/8
    description ASA-Primary-Out
    switchport access vlan 200
    switchport mode access
    switchport port-security maximum 2
    switchport port-security
    switchport port-security aging time 2
    switchport port-security violation restrict
    switchport port-security aging type inactivity
    ip arp inspection limit rate 500
    no cdp enable
    spanning-tree portfast
    spanning-tree bpduguard enable
    Upon testing failover via the failover active command, I get port-security errors on the outside interface for each device:
    %PORT_SECURITY-2-PSECURE_VIOLATION: Security violation occurred, caused by MAC address aaaa.bbbb.cccc on port GigabitEthernet0/8. After a few minutes, the error goes away and I can then connect to each firewall. It seems that it still waits for the aging time to expire before allowing the other MAC address. Shouldn't the "maximum 2" setting allow for both mac addresses?
    I'd rather not have to hardcode the firewall's MAC addresses on each switchport because I could see this causing problems for us down the road. Is there anything else that can be done?

    Hello,
    This is expected because of the way ASA failover works. When a failover event occurs, the 2 units will swap their IP and MAC addresses (i.e. the Active unit is always using the same IP and MAC, but this role changes between the 2 physical units).
    Per the port-security config guide:
    http://www.cisco.com/en/US/docs/switches/lan/catalyst2960/software/release/12.2_25_fx/configuration/guide/swtrafc.html#wp1090391
    "...if a station with a secure MAC address configured or learned on one secure port attempts to access another secure port, a violation is flagged."
    Since the MAC address moves to the other switchport when the failover happens, a violation is being logged.
    -Mike

  • What are the settings for Transport?

    What are the settings for Transport?

    u will get three panel in transport connection in BW side
    here u need to collect object and drop them to 2nd panel
    then u need to select whether u want o select all objects or only necessary objects
    select as per ur requirement hten u need to write thse object in a NEw request
    now executte nad go to Se10 and relaease sub task and main task
    now ask basis team to impot it in QAS test it and again trnasport these to Production environemnt.
    assign points if helps

  • "Settings for material number conversion not found" occurs when ...

    After I run an initial load data into the InfoCube 0PUR_C01, I want to check the InfoCube Content by the following path:
    RSA1 -> pick up the InfoCube 0PUR_C01, right click it and select Manage -> Get to Content tab -> Click InfoCube Content button -> Deselect all selection, only tick the 1st column checkbox next to 0Material, then hit enter, get a small window titled as "Cancel" with a red STOP msg sysing "Settings for material number conversion not found" with an "Exit" button and a question mark button, click Exit button leads to SAP Easy Access screen, if clicking the question mark button, another window pops up with the msg showed above, click Technical Information button causes the original window short dump and the short dump msg shows below in between two dashed lines:
    Runtime Errors         RPERF_ILLEGAL_STATEMENT
    Date and Time          11/28/2005 14:43:13
    ShrtText
        Statement "CALL SCREEN" is not allowed in this form.
    What happened?
        Error in ABAP application program.
        The current ABAP program "SAPLSHL2" had to be terminated because on
        statements could not be executed.
        This is probably due to an error in the ABAP program.
    Error analysis
        There is probably an error in the program
        "SAPLSHL2".
        The program was probably called in a conversion exit
        or in a field exit. These are implemented by
        function modules called CONVERSION_EXIT_xxxxx_INPUT/OUTPUT or
        USER_EXIT_xxxxx_INPUT.
        Conversion exits are triggered during screen field transports or
        WRITE statements, field exits during field transports from the
        screen to the ABAP/4 program.
        In this connection, the following ABAP/4 statements are not allowed:
        -  CALL SCREEN
        -  CALL DIALOG
        -  CALL TRANSACTION
        -  SUBMIT
        -  MESSAGE W... and MESSAGE I...
        -  COMMIT WORK, ROLLBACK WORK
        -  COMMUNICATION RECEIVE
        -  STOP
        -  REJECT
        -  EXIT FROM STEP-LOOP
        Moreover, conversion exits for output conversion
        (implemented by function modules called
        CONVERSION_EXIT_xxxxx_OUTPUT) do not allow
        -  MESSAGE E...
        to be used.
    Trigger Location of Runtime Error
    Program                                 SAPLSHL2
    Include                                 LSHL2F19
    Row                                     3
    Module type                             (FORM)
    Module Name                             TECHNISCHE_INFO5
    rce Code Extract
    e  SourceCde
    1 ***INCLUDE LSHL2F19 .
    2 form technische_info5.
    >>   call screen 1900 starting at 5  8.
    4 endform.
    5
    6 &----
    7 *&      Form  SHRINK_VALUES
    8 &----
    9 *       text                                                           *
    10 ----
    11 *  -->  p1        text
    12 *  <--  p2        text
    13 ----
    14 form shrink_values.
    15
    16   loop at dynpselect.
    17     clear checktable.
    18     if dynpvaluetab-lowvalue ne space and dynpvaluetab-lowvalue na '*'.
    19       move 'EQ' to checktable-op.
    20       move dynpvaluetab-lowvalue to checktable-low_value.
    21       append checktable.
    22     endif.
    What could cause the problem by selecting only 0Material when checking the InfoCube 0PUR_C01 content?  What does that mean by this STOP msg "Settings for material number conversion not found"?
    Thanks

    Hi Kevin,
    Set the length of 0MATERIAL and change conversion to alpha:
    Re: Error Installing 0MATERIAL from Business Content
    Best regards,
    Eugene

  • Basic Settings for BADI

    Hi All,
    I would like to set BADI to transmit contracts from SRM to MM and I am going >>>Customizing under BADi --> Follow on documents --> Create Contract in back-end  but then I do not know how to move.
    Could you please explain me basic settings for BADI.How to set  and configure ?
    Thanks in Advance,
    #Bill J.

    Bill,
    Hi. You would only implement this BADI if you would like to modify the functionality/values of the contract interface to MM.
    To do this proceed as follows:-
    1) Press the execute button (As per you navigation in SPRO mentioned).
    2) Specify an implementation name (Start with a Z or Y) - press enter (You will need a developers key from service.sap.com)
    3) Give the implementation a name and SAVE to a transport package
    4) Select the interfaces table and navigate (double click) on the method applicable (CONTRACT_INTERFACE_FILL or CONTRACT_PROCESS_TYPE_FILL)
    5) Enter the code you would like SAVE & activate.
    6) Go back to the implementation (F3 to go back) and activate the implementation (CTRL-F3).
    7) Test and if this works transport the development through the landscape.
    Cheers
    Rob

  • Correct settings for HDV capture

    Hi. I'm using Premiere CS5.5. I went on a few forums to get the correct settings for HDV capture.
    I can record the footage fine. However I saw a few things which didn't seem right.
    After capturing the HDV footage, the file was a .mpeg file. Secondly, the clip was 1 hour and 10 minutes and
    it was only 11.3 GB. Does this sound right? A 55 minute .avi file is 11.6GB. I thought a HDV clip would be quite a large size file.
    If this dosen't sound right, is there somewhere I could go to, to check that my settings are correct? By the way I'm filming and capturing with a Canon XHA1.
    The footage is 1080i. HDV. I've exported it and it looks fine. Just want to make sure I've captured it correctly and to the best quality.
    Thanks for your help.

    The HDV format was advanced by Sony and others to use the same miniDV tapes used for SD.  In fact, your Canon XHAI can record and play either without changing the tape transport speed.
    Your observation in relative file sizes is due to the fact that HDV is highly compressed (MPEG), whereas, SD (AVI) is not as highly compressed.  This is one of the reasons folks (such as Harm) don't consider HDV to be an edit format, but just a delivery format.
    Note that what Harm was saying is symantics--you capture an analog source through a capture card that digitizes it.  When you transfer a image file from HDV or SD, it is already digitized, so a bit-to-bit transfer occurs.

  • Best Log Setting for ASA & MARS

    Hi,
    I'm going back and trying to clean up our MARS install a little bit now that I have some time. I need to update MARS to the latest version, but right now I'm just trying to wade through some of the undefined logs coming from our ASA. Is there any guideline as what is the best log settings to use comming from the ASA for MARS? Right now it looks like everything is setup to be forwarded. Anyone have any suggestions for what they have their log settings at to capture the best amount of information, but not have to wade through everything else?
    Thanks

    Which syslogs are these specifically? We don't get any undefined events from our FWSM(s)? We get a plenty from the Netscreen (but AFAIR this is documented on CCO) that the support is not 'complete' as of yet.
    The recommended level for ASA/PIX as per the Cisco Guide and 'many' discussion on Cisco MARS User Group is 'debugging'. Under normal operation not a lot of level 7 messages are generated.
    Regards
    Farrukh

  • QuickTime X Transport Settings

    I'm not finding any way to adjust the transport settings under QuickTime X.
    In QuickTime 7 and prior we sometimes had to have our users adjust their transport settings due to various issues.
    But I'm not seeing any way to adjust the transport settings under QuickTime X
    Does anyone know if it's possible?
    Thanks in advance.

    Hi Mitchell
    Thanks for the 'Share' tip - I never new that existed either.
    Good work
    B

  • Custom Streaming Transport Settings

    I can't get QT preferences to retain custom settings for Streaming Transport. I need to see if I am receiving stream via http port 80 or UDP 554. Each time I change and apply settings then close the window, re-open preference the streaming Transport is re-set to automatic
    I have Windows version of QTPro 7.04

    My location: at work:
    If you are using a workplace computer on a local network this may well be the case. A Firewall blocks out all Internet traffic except those services that local network administrators consider essential. You will need to contact your local network administrators and have the University's streaming server included in the acceptable services. There's an adminsitrator's guide to allowing streaming Quicktime through a firewall <a href "http://www.apple.com/quicktime/resources/qt4/us/proxy/proxy.html">here. To check to see that you can access any streaming movie, open the Quicktime Player and clicking Edit > Preferences > Quicktime preferences > Streaming transport. Click the Auto Configure button. Quicktime should confirm that it can use UDP/RTSP port 554. If it switches to http:// port 80, then you are most likely behind a firewall that is configured to block Quicktime streaming files.
    My location: at home:
    If you have a DSL router with a NAT firewall you will need to configure it to allow streaming media files. Open the Web-based interface for the router, select Advanced and choose "Port forwarding" (wording may differ for your router). Open port 554 for RTSP/TCP data and ports 6970 through 6999 (inclusive) for RTP/UDP data. Consult your router's documentation for specific instructions on configuring port forwarding, or contact the router vendor. To check to see that you can access any streaming movie, open the Quicktime Player and clicking Edit > Preferences > Quicktime preferences > Streaming transport. Click the Auto Configure button. Quicktime should confirm that it can use UDP/RTSP port 554. If it switches to http:// port 80, then you are most likely behind a firewall that is configured to block Quicktime streaming files.

  • Transport Request for EBS

    I have configured setting for Electronic Bank Statement. I went to Img> Financial Accounting>Bank Accounting>Business Transaction>Payment Transactions>Electronic Bank Statement>Make Global Settings for Electronic Bank Statement.
    Is this transportable or do I have to enter these settings manually to QAS and Production. I didnt get an option to create a transport request when i saved my data.
    Please advise.
    Thanks.

    Hi,
    These can be transported. Manual transport request needs to be created from Menu Bar > Table view > Transport.
    It will create a change request number.
    Thanks
    Murali.

  • Transport request for Set Control Parameters for Actual Data.

    Hi Viewers,
    I am unable to create the transport request for the below settings
    Controlling->Profit Center Accounting->Basic Settings->Controlling Area Settings->Activate Direct Postings->Set Control Parameters for Actual Data.
    Is it possible to move the request through transport request or do we need to create the settings directly in the target system.
    Thanks
    Aswin.

    Hi,
    Please read the IMG help at the given path.  There are certain profit center accounting settings which cannot be transported directly from the same path, but there is another node in SPRO path for doing this.  If possible I will try to locate the path but I am not sure I can post it immediately as I am not having system handy.
    thanks,
    Kumar

  • HELP Make Settings for Units of Measurement for Monitoring of Consumption

    Hello All:
    I just cant' define an unit of measure to stablish consumption calculation. I know how to make all the other settings, but I just can't stablish the unit of measure to use in there.
    Could please somebody gime this explanation ? Step by step ?
    I've read that are preconfigured units of measure for examplo MPG miles per gallon US but I will use Kilometers per litre.
    I want to know how to create this unit
    how to link it with an existing SI group
    So I can use it in the step Make Settings for Units of Measurement for Monitoring of Consumption
    thanks in advance
    Luis Henrique

    Dear Luis,
    Please use CUNI t code for creating unit of measurement. Please follow any exist Unit of measurement and replicate the same. This is a configuration so will have transport requirement
    Regards
    Gajesh

  • Transport setting for application node (sicf) system logon

    Hi,
    I am facing the problem that we created a system logon class (maintained in: sicf - > node -> error pages -> logon errors -> system logon -> configuration - custom implementation (ABAP Class) and this works great in the development system. Now we need to transport this to the productive environment. But the productive environment is not modifiable. How can we transport the settings for our custom implemented abap class or maintain this setting in the productive environment?
    Kind regards,
      Vanessa

    Hi,
    Is this working ?
    -> Select the node
    -> Right click
    -> Obj. Directory entry
    regards
    Fred

  • ATP Buckets of Global settings for Availability check

    Hi ALL
    I have changed the Bucket Parameters and activated ATP time series in Global Settings for Availability Check in Devolpment Server.
    I try to transport these settings but ATP Buckets (Active) are not transprting to the Quality.
    Please give your suggestions , how to transport these settings to the quality and prodction envirorment?
    Thanks
    Kanth

    Hi Datta,
    Thanks for your time and reply.
    There is a requirement before you transfer changes to ATP bucket paramters .
    >Can you please eloborate your above statment.
    Make sure that the updating of ATP time series is activated in Quality and also in production system.
    You set this indicator in Model and Planning Version Management from the SAP Easy Access screen by choosing Master Data -> Planning Version Management -> Model and Version Management.
    >You mean that i need to activate ATP Time series in all envirorments for which i need to delete the version.In our process already PPDS was implemented and  running in Production.We cannot delete the active version.
    These settings are not transpotable?
    Regards
    Kanth

  • Settings for the new plant under same company code

    Dear all,
    As I am into the roll out project. I need to know the necessary configuration settings from FICO (FI and Contolling Settings) point of view.
    I need this very urgently. If u have any documentation with regard to the same, u can forward to my mail id  [email protected]
    Input will be of great help and rewarded too.
    Thanks
    Niha

    Hi Neha,
    please follow the follwing steps relating to new plant in all madual.
    Steps needs to be configured
    1.New Plant to be created (Copy the new plant from the existing Plant)– Configuration
    2.Create Plant as Location - Configuration
    3.Define Shipping Point- Configuration
    4.Transport Planning Point Description to be changed – Configuration.
    5.Create a new Profit Center – Master Data
    6.Create a new Cost Center – Master Data
    7.Cost Center allocation to Shipment Cost – OKB9 – Configuration
    8.Assign Business Area to New Plant – Configuration
    9.Assign New Plant to Sales Organization & Division - Configuration
    10.Update all the GLs related to the new Plant. Default assignment to a Profit Center - 3KEI – Configuration
    11.Update Table J_1IT030K_V for Indian Tax Account Determination. - Configuration
    12.Account Assignment Category – VKOA – Assign GL Accounts to Sales Org/AcctAssgGr/AcctAsgnmt/Plant/Acct Key – Configuration
    13.Maintain Excise Registration for New Plant- Configuration
    14.Maintain Plant settings for New Plant- Configuration
    15.Maintain Excise Group for New Plant- Configuration
    16.Define GL Accounts for taxes – Configuration
    17.Specify GL account for Excise Transaction- Configuration
    18.Create all Inbound and Outbound Routes for new Plant –Configuration
    19. Assign new plant to company code.
    Please note that the above steps are for new plant by copying the existing plant and modification. If you define a new plant without copying the existing plant lot of steps are involved.
    as per FI/CO part point nos 5 to 8, 10 to 17.
    Hope this will help u, please assign the points if its helpful.
    please cheek your mail i have sent the material.
    regards
    sai krishna

Maybe you are looking for