Cisco Ids/Ips - Juniper SECURITY THREAT RESPONSE MANAGER 2008.2 - CONFIGURING DSMS REV 1 Manual
Configuring dsms
Hide thumbs
Also See for SECURITY THREAT RESPONSE MANAGER 2008.2 - CONFIGURING DSMS REV 1:
- Administration manual (370 pages) ,
- Manual (94 pages) ,
- Getting started (14 pages)
Table of Contents
Advertisement
16
C
IDS/IPS
ISCO
You can integrate a Cisco IDS/IPS server version 5.x and 6.x with STRM. A Cisco
IDS/IPS DSM polls the Cisco IDS/IPS events using the Security Device Event
Exchange (SDEE) protocol. SDEE specifies the message format and the protocol
used to communicate the events generated by security devices. STRM only
supports direct SDEE connections to the device and not the management
software, which controls the device.
Note: You must have security access or web authentication on the device before
connecting to STRM.
You are now ready to configure the SDEE protocol within the STRM interface. For
more information, see the Managing Sensor Devices Guide. To configure STRM to
receive events from a Cisco IDS/IPS device, choose one of the following options:
If you are using STRM 6.0, select Cisco IDS from the Sensor Device Type
•
drop-down list box.
•
If you are using STRM 6.0.1 and above, select Cisco Intrusion Prevention
System (IPS) from the Sensor Device Type drop-down list box.
For more information on configuring devices, see the Managing Sensor Devices
Guide.
For more information regarding your Cisco IDS/IPS, see your vendor
documentation.
Configuring DSMs Guide
Advertisement
Table of Contents
