Client Installation Requirements

Client Installation Requirements

Accessing CiscoWorks2000 and IDS Management Center is accomplished through a Web interface. This allows clients to access the IDS Management Center by using a browser. The minimum system requirements for a client are specified in Table 10.2.

Table 10.2: Client System Requirements

Component

Minimum Requirement

Hardware

IBM PC Compatible with minimum 300MHzPentium Processor

Sun Ultra 10 or Sun SPARCstation with a 333MHz processor

Software

Windows 2000 Server, or Professional Edition with Service Pack 3 Windows XP Professional, Service Pack 1 with Microsoft Virtual Machine

Solaris 8

Memory

256MB

Virtual Memory

400MB

512MB

Browser

Microsoft Internet Explorer 6.0, Service Pack1 for Windows operating systems with Microsoft Virtual Machine.

Netscape Navigator 4.79 on any of the following: Windows 2000 Server Professional Edition with Service Pack 3 Windows XP Professional, Service Pack

Netscape Navigator 4.76 for Solaris

Installation Steps

Once the prerequisite components have been verified, the basic installation steps for the IDS MC are as follows:

  1. Log in as the local administrator.

  2. Insert the CD-ROM containing the "Monitoring Center for Security and Management Center for IDS Sensors" program. If the installation program does not start, select Run from the Start button. Browse for the setup program on the CD-ROM drive. Open the Setup program and click OK. If the installation program does start, click Install on the Installer page. Click Next.

  3. The Software License Agreement page appears. Be sure you understand the Agreement, then click Yes to accept its terms..

  4. The installation now begins. To install both the IDS MC and the Security Monitor, click the Typical Installation radio button. To install only the IDS MC or the Security Monitor, click the Custom Installation button, and select either the IDS MC only radio button or the Security Monitor only radio button. Click Next.

  5. The System Requirements page appears. Verify that the system meets the minimum disk space and memory requirements. Click Next.

  6. The Verification page appears. Verify the selected components. Click Next.

  7. The Select Database Location page appears. By default, the IDS database is located in the directory where CiscoWorks Common Services is installed. To specify a different directory for the database, enter a directory path in the Database File Location field provided. Click Next.

  8. The "Select Database Password" page appears. Enter the database password in both the Password and Confirm Password fields. Click Next.

  9. Either the Select CW2000 Syslog Port page or the Restart page appears.

    • If the Security Monitor is installed, the Select CW2000 Syslog Port page appears. Specify the UDP port to be used by CiscoWorks. The default value of 52514 is recommended. Click Next. The Configure Communications Properties page appears. Enter the host ID, organization ID, IP address, hostname, and organization name into the appropriate fields. Click Next.

    • If only the IDS MC is installed, the Restart page appears. On the Restart page, select Yes to restart the computer. Choose No to restart the computer at a later time. Select Finish. The computer must be restarted before it is possible to use the IDS MC or Security Monitor.

Getting Started

Access to the IDS MC is provided through the Apache Web server on the CiscoWorks2000 host. This provides for easy access through either a web browser meeting the requirements defined in Table 10.2. The CiscoWorks 2000 Apache Web server listens for incoming connections on TCP port 1741 of the CiscoWorks2000 host. To access the CiscoWorks2000 system, enter one of the following URLs:

  • http://127.0.0.1:1741 Use this if the IDS MC server is the local machine

  • http://A.B.C.D:1741 Use this if A.B.C.D is the IP address of the IDS MC server.

Log into the CiscoWorks2000 Server Desktop, as shown in Figure 10.5. The default login name and password for the CiscoWorks2000 system include the following:

Click To expand
Figure 10.5: The CiscoWorks Login Screen

  • Default login name: admin

  • Default password: admin

After entering the login Name and Password, click Connect. Note, it is highly recommended that the password of the admin account be changed from the default value of admin immediately upon installation and configuration of CiscoWorks2000 in order to prevent unauthorized users from gaining administrative access to the CiscoWorks2000 software.

Authorization Roles

CiscoWorks provides for five different default types of accounts or authorization roles that can be created for IDS MC users. These authorization roles and their respective privileges are summarized in Table 10.3.

Table 10.3: Authorization Roles

Authorization Role

Privileges

View

Create/Modify/Delete

Help Desk

View reports and alarms

Cannot delete reports or alarms. Cannot generate reports.

Approver

View reports and alarms

Approve configurations. Cannot delete reports or alarms. Cannot generate reports.

Network Operator

View reports and alarms

Deploy configurations. Delete reports and alarms. Generate reports.

Network Administrator

View reports and alarms

Edit devices and device groups.

System Administrator

View reports and alarms.

Edit devices and device groups. Delete reports and alarms. Generate reports. Import lists (files) and notification scripts.

Creating accounts with different authorization roles allows an administrator to delegate different responsibilities to different IDS Management Center users. Each account holder or user can be given the authority needed to carry out his responsibilities.

Installation Verification

To verify the successful installation of CiscoWorks 2000 and the IDS MC, select the Server Configuration entry on the CiscoWorks2000 Server Desktop, as shown in Figure 10.6. Then select About the Server and Applications and Versions.

Click To expand
Figure 10.6: Server Configuration

Verify that the following key CiscoWorks components are installed:

  • Apache The Apache Web server provides the Web interface used by a client to access the IDS Management Center.

  • CWCS SQL Components A Sybase SQL server is used to provide the database services required by the IDS Management Center.

  • Cisco Works Common Services (CWCS) There are a multitude of services provided by CWCS that are required by the IDS Management Center