Cisco Security Management Technologies

The Cisco Security Management Suite is a framework of products and technologies designed for scalable policy administration and enforcement for the Cisco Self-Defending Network. This integrated solution can simplify and automate the tasks associated with security management operations, including configuration, monitoring, analysis, and response. The key components of this suite include the following:

■ Cisco Security Manager: Cisco Security Manager is a powerful but easy-to-use solution for configuring firewall, VPN, and IPS policies on Cisco security appliances, firewalls, routers, and switch modules. Using a GUI, Cisco Security Manager allows security policies to be easily configured per device, per device group, or globally.

■ Cisco Security MARS: Cisco Security MARS is an appliance-based solution that allows network and security administrators to monitor, identify, isolate, and counter security threats. Cisco Security MARS obtains network intelligence by understanding the topology and device configurations from routers, switches, NetFlow, IPS, firewalls, and other network devices and by profiling network traffic. The integrated network discovery in the system builds a topology map containing device configuration and current security policies that enables Cisco Security MARS to model packet flows through the network. Because the appliance does not operate inline and makes minimal use of existing software agents, there is minimal impact on network or system performance.

These products are built on an architecture that facilitates integration with other security management tools, such as the following:

■ Cisco SDM: Cisco SDM is a web-based device-management tool for Cisco routers that can improve the productivity of network managers; simplify router deployments for integrated services such as dynamic routing, WAN access, WLAN, firewall, VPN, SSL VPN, IPS, and quality of service (QoS); and help troubleshoot complex network and VPN connectivity issues. Cisco SDM supports a wide range of Cisco IOS Software releases and is available free of charge on Cisco router models from Cisco 830 Series Routers to Cisco 7301 Routers.

■ Cisco Adaptive Security Device Manager (ASDM): Cisco ASDM provides security management and monitoring services for the Cisco ASA 5500 Series Adaptive Security Appliances, Cisco PIX 500 Series Security Appliances (running Cisco PIX Security Appliance Software Release 7.0 or later) and the Cisco Catalyst 6500 Series Firewall Services Modules (FWSM version 3.1 or later) through an intuitive, easy-to-use web-based management interface. Cisco ASDM accelerates security appliance deployment with intelligent wizards, robust administration tools, and versatile monitoring services.

■ Cisco Intrusion Prevention System Device Manager (IDM): Cisco IDM is a web-based Java application that allows configuration and management of IPS sensors. The web server software for Cisco IDM resides on the sensor and is accessed through Netscape or Internet Explorer web browsers with SSL. The whole range of IPS v5.0-capable platforms can be managed using Cisco IDM.

■ CiscoWorks Management Center for Cisco Security Agents: Using Management Center for Cisco Security Agents (a component of the CiscoWorks VPN/Security Management Solution), network devices are assembled into specified groups, and then security policies are attached to those groups. All configuration is done through the web-based user interface and then is deployed to the agents. The Management Center for Cisco Security Agents software is installed on a system that maintains all policy and host groups. The administration user interface is accessed securely using SSL from any device on the network that can connect to the server and run a web browser. The web-based interface is used to deploy policies from the Management Center for Cisco Security Agents software to agents across the network.

■ Cisco Secure Access Control Server: Cisco Secure ACS provides identity-based services that provide centralized control for role-based access to all Cisco devices and security management applications, including Cisco IOS routers, VPNs, firewalls, dialup and DSL connections, cable access solutions, storage, content, VoIP connections, Cisco wireless solutions, and Cisco Catalyst switches.

Was this article helpful?

0 0

Post a comment