we are running LMS 3.0.1. When I attempt to update the devices for RME I received the following error messages.
Number of Packages Selected for Install : 82
For Product(s) : Resource Manager Essentials
Install Invoked by user : admin
The Package(s) Selected for Install :
[code]....
I am trying to update a switch I bought to the latest IOS using the Cisco Network Assistant but the it is failing becasue it's saying I dont have the space.
In the CLI I get,
Switch#dir all-filesystemsDirectory of flash:/
2 -rwx 109 Mar 01 1993 00:01:47 +00:00 info 3 -rwx 270 Jan 01 1970 00:01:37 +00:00 env_vars 7 -rwx 3081999 Mar 01 1993 00:03:23 +00:00 c2950-
[Code]....
I have running a LMS master/slave installation with version 3.2.1 and patch for the cisco download running.Now I get on two of the three servers a NullPointerException if I want to go to the Device Update in CS.This is the output from stderr.log:
Feb 17, 2012 8:58:34 AM org.apache.catalina.core.StandardWrapperValve invoke
SEVERE: Servlet.service() for servlet action threw exception
java.lang.NullPointerException
at com.cisco.nm.xms.psu.ui.gui.model.ViewProduct.getAllProducts(ViewProduct.java:45)
at com.cisco.nm.xms.psu.ui.gui.model.ProductList.getAllRegProducts(ProductList.java:21)
[code].....
I did the installation the same way on all three servers.
Everytime I try to use the Cisco.com device update I receive the error in the attached file.
I'm not sure if this is related to me not configuring the proxy settings since we do not use a proxy server.
I've configured our CCO username and password only. Is there a known issue with using the web GUI to get updates using the cisco.com option?
I have upgraded to prime LMS 4.2.2 (from 4.0.1) and can not perform system or device upgrade. Using wireshark I can see why. it looks like LMS is trying to go to this old web [URL] to get software. I believe this was fixed years ago in bug CSCto46927.
Can I reapply bug fix CSCto46927 on 4.2.3 or is there another fix?
i used the software center to download latest device packages, all downloaded to PSU_Downloads folder , i want to know how to install them with GUI if possible , as i tried to use CLI but it seems that i'm using bad syntax.
View 2 Replies View RelatedI have CiscoWorks LMS3.2 with RME4.3.1 and CS 3.3.0.
When I will update the devices and I go to Common Services - Software Center Device Update and I mark Resource Manager Essential then I receive this window:
Now I choose the Rtr2900 package (same problem for all six packages) and when I will download it, then after define the destination path for the file I see this window:
Then I have tried to download it manually with the following command: PSUCli.bat -p rme -d -dst c:psu_download -all
The six packages that are showed in the picture above were not downloaded.
I assume that there is an error on Cisco side because the size of the six packages is NA.
Or is there another possibility to download the package for the Rtr2900?
we have two ASA5520-AIP40-K8 in our office and we purchase IPS service for one only, can we also update the signature of second device before purchasing additional IPS Services for second unit
View 1 Replies View RelatedWe are using LMS 3.2.1 with SP1 and Campus Manager 5.2.2.Server runs Windows 2003 R2.Everything runs fine except for User Tracking on two Catalyst 6500 switches running CatOS. These devices are discovered, reachable, SNMP works fine, neighbors seen. But when we try to launch acquisition, the UT utility complains with this error message:"Failed to start acquisition: Device unreachable. Please enter a valid device."When we wanted to add ports via Device Trap Configuration, LMS has fired a different error message: "There are no ports to configure for the selected device(s).Check whether you have selected any router(s)." I have checked the portsData.xml file, which doesn't have any ports included for the two devices: [code] We have tried to exclude / include the switches in the data collection, but that didn't work.
View 3 Replies View RelatedMy BEFSR81 is my primary router and has DHCP turned on. The router's DHCP range is set to accommodate 12 devices. I have three computers wired to it and their Host names (as specified in the set-up of each computer) show up in the router's DHCP device table. I also have two printers (one old Brother HL5250DN laser printer and one new HP Photosmart Premier C410a inkjet printer) connected and there are blanks where the Host name should go. I would like to be able to tell which printer is which when I am looking at the DHCP device table. How can I get a names associated with each printer's IP address in the router's DHCP device table? (The real problem is that the router seems to have both printers at the same IP address (192.168.1.100) and if I can get one of them to change I'd like to know which one it was!)
View 1 Replies View RelatedThe problem: I need to track a bus from city to city in real time.I'm thinking of a gps device without screen or apps, it only sends the current location to a server. Is this possible? What device can be useful?
View 1 Replies View RelatedI know that CW Common Services 3.3 does not work with pre-defined roles on ACS AAA. So I followed these forums and enabled non-ACS AAA and selected TACACS+. I have a single rule that is matching in my ACS (after looking at the audit trail):
Authentication Details
Status:
Passed
[Code]....
As you may have noticed even though it is matching an access service that allows Priv15. That doesn't seem to be passing through as you can see on top I am only receiving Priv 1. What can I do to properly pass through the access service profile?
In our company we are using Ciscoworks LMS3.0.( DFM 3.0.1, RME 4.1.1.) In DFM, every day at 8:00 PM we receive alarm authorization failure on Core switch ( source is cisco works server IP).
View 6 Replies View RelatedWhenever I try to open multiple sites, I will get a DNS lookup failure. Whenever I torrent something, websites give me a DNS lookup failure. Watch Youtube and open anoter site, DNS lookup failure. It seems that when I try to use too much internet I crash something... which doesn't make any sense because this problem has only come up recently. The only thing that I can think of is that I was messing around with the DNS to be able to connect to the American Netflix (I'm Canadian). I was using a site called "ZenOK" I believe, which gives you a server to connect to, and then a week later tells you it's no longer free (which they didn't mention in the signup)... so I removed the DNS number in my internet protocols, but I still get American Netflix.
View 14 Replies View RelatedI have a following question. I configured different authentication passwords in Master and slave VRRP setup.
View 2 Replies View Relatedwe cant create EoX and PSIRT reports For Job-Log please see attached 1007.1.log.Patch lms40x-win-CSCto46927-0 has been installed already.CCO-Credentials + Proxy-settings in LMS must be oK, because we are able to auto download device packages for instance.
View 4 Replies View RelatedWe have several unknown devices within our inventory. When running an inventory report the message I get back is "No Credentials available".
For inventory checks is it just SNMP that is used or is it the standard credentials that are needed ?
I am planning to edit the credentials for the single device manually to see if this makes a difference. Our integration is with ACS and we have a machine account with admin priveleges.
Device Verification for the device states "Device Not reachable" for SNMP and SSH. There are no drops on any of our firewalls but snmpwalk does work from the command prompt from the LMS server.
Are there any further checks I can make for these 2 messages:
* "No Credentials available". * "Device Not reachable"
I manage a small business with 10 computers running off my network. They are all connected to the internet through a RV016. We recently created a new website and purchased a new domain through In Motion Hosting. I have a randomly reoccuring issue, usually in the morning, that seems to resolve itself after a couple hours on it's own. I have dealt with tech support from In Motion Hosting and my ISP who have both come to the determination that the problem lies within my gateway.
When I attempt to log on to my companies website [URL] my browser is unable to locate the webpage. Also, if I try to access the website for In Motion Hosting [URL] or to access our webmail [URL]I am unable to do so because the DNS lookup failed. I can view any other web page on the internet without a problem. I can not ping or tracert either website successfully, however when I called In Motion Hosting and got the IP addresses for the two I was able to ping and tracert them without a problem.
As I said the problem happens randomly and seems to resolve itself within 2-8 hours. However we are unable to access our email during these "blackouts" which is becoming a huge problem.
Is there a setting within the RV016 that might be causing this to happen?
I have Samsung Tablet Windows 8 32-bit I installed VPN Client Version 5.0.07.0410 successfully installed, but I cant connect through the profile always got Driver failure 440.
View 3 Replies View RelatedSome times the ISP side interface remains up with a failure of internet. At those situation how we can efficiently track the ISP failure from asa 5510
View 2 Replies View RelatedI'm using the Cisco ANM 5.2 version and I'm trying to import the configurations from ACE modules of Cisco switches. The first step is to import the configuration from Cisco switch and the second one is to import the ACE module in the ANM software. I'm getting an authentication problem to import the configuration from Cisco switch and of course I cannot import the ACE as well. The switches and the ACE are using AAA authentication and I have created a specific username to authenticate and import the configurations in the ANM. If I remove the AAA configurations from the switches and ACE modules it works fine.
Is there some problem with the AAA configurations in the switches or ACE module?
After I upgrading all device packages, inventory collection failure to complete. All devices stuck on pending state and at the end of the job all devices are under not attempted and job result description ses " Timed out. Make shure that ICServer is running". I made sure that ICServer is running.
LMS runs on windows 2008 R2 server
I'm trying to upgrade a 3750-24TS from c3750-ipservices-mz.122-25.SEE2 to a more recent image. On the first pass, I got
Error: There is insufficient space in flash: to install the requiredError: image. Clean up some old images, and try again.
So I used the delete /recursive flash:image-dir-name to clean out the old files, but I'm still getting the same message after doing this. What's the problem? Now I have a switch with no IOS and need to at least get something on there.
Switch#sh verCisco IOS Software, C3750 Software (C3750-IPSERVICES-M), Version 12.2(25)SEE2, RELEASE SOFTWARE (fc1)Copyright (c) 1986-2006 by Cisco Systems, Inc.Compiled Fri 28-Jul-06 08:46 by yenanhImage text-base: 0x00003000, data-base: 0x010CE290ROM: Bootstrap program is C3750 boot loaderBOOTLDR: C3750 Boot Loader (C3750-HBOOT-M) Version 12.2(25r)SEC, RELEASE SOFTWARE (fc4)Switch uptime is 1 hour,(code)
I recently bought a Cisco WAP 321 for my company, but when i connect it to the network, the switch on which I connect crashes, and I lose all connectivity to the network, (internet also). i have to unplug the WAP321 and wait for a few minutes to be able to use the network again.
I'm currently using a small 8 port switch, There are usually 3 or 4 users connected on it. When I try connecting the WAP321 on another switch, only connected to 1 computer, it seems to be working : I can access the configuration page, and make some modifications.
I recently tried to deploy an ACS appliance with version 5.2 installed on it for a customer.
After setting up the WLC to use the ACS as a radius server, and successfully testing connection from the ACS to the AD, I get an error message " 12321 PEAP failed SSL/TLS handshake because the client rejected the ACS local-certificate" anytime a client tries to connect to the network.
This is surprising because I had already generated a certficate for the ACS from a CA and binded the CA signed certificate with the ACS, I also specified the CA in the client machine's wireless properties and checked the "validate certificate" button.
When I tried to connect using the internal identity store, the client was successfully authenticated without any certificate issues.
My company just upgraded our VPN software to use Cisco AnyConnect 3.0.1047. We were previously using 2.5.0217. I successfully upgraded the VPN client on my iMac. I am trying to do the same on my MacBook Pro but the process is failing. Both Macs are using OSX 10.6.7. Both use Chrome but I have reproduced the error using Safari and Firefox on the failing system.
On the failing MacBook, the IP address my IT department gave me produced this error:After the 26 second timeout completed, I was brought to this screen:
I clicked the "Mac..." link above and a file called "cstub" was downloaded. I could not execute the file directly as its permissions started at 644. I changed its permissions through the terminal to 755. I tried executing the binary but it failed returning error code 250.I tried uninstalling AnyConnect 2.5.0217 to see if that improved things. No change.
I am trying to get CiscoWorks LMS 4.0 to connect to my routers in order to back up configurations, but I am getting SSH authentication failures reported in the router logs (and archiving fails).
The credentials LMS is using is a username and password with priviledge 15: the account is established in TACACS+. I can log into the devices directly with this user account.However, I cannot TFTP from the routers to the LMS either (I get a permission denied message in the router).
LMS did manage to fetch some configs, but 90% of my devices are having this issue.
I'm having an issue with LMS 4 where it's failing to collection configuration from devices.
The following is the status of your Scheduled Config collection job:
Job ID : 1045
Status : Job Failed(111)
Description : System config collection job
[Code]....
I researched through this forum and found a thread where the ConfigMgmtServer server wouldn't run. Looking at the processes it says that this service is running normally.
i know in Cisco PIX til 8.2 OS, if i have Nat control disabled and ACL permitting connection from Low Secirity ( DMZ ) to High Secuurity (INSIDE) then connectino should be successful, and i dont need any STATIC identity nat of inside IP to be created.
But i have Cisco PIX 525 with Version 7.2(2) Which is not allowing connection from DMZ to INSIDE , although nat control is disabled. and giving RFP check failure, any thought?
PIT525PIXINET# sh running-config nat-control no nat-cont
packet-tracer input dmZ tcp 192.168.85.4 65000 10.34.21.25 3389
Phase: 1
Type: FLOW-LOOKUP
Subtype:
Result: ALLOW
Config:
[Code]...
we have a problem with a Cisco 1841 router while booting. The router is loading the image from the CF card but gets stucked at this point:
This product contains cryptographic features and is subject to UnitedStates and local country laws governing import, export, transfer anduse. Delivery of Cisco cryptographic products does not implythird-party authority to import, export, distribute or use encryption.Importers, exporters, distributors and users are responsible forcompliance with U.S. and local country laws. By using this product youagree to comply with applicable laws and regulations. If you are unableto comply with U.S. and local laws, return this product immediately.
A summary of U.S. laws governing Cisco cryptographic products may be foundURL
having the same problem with my Aquos TV. We have a 2wire router, that is directly connected to a home computer. all other computers are connected via wireless with no problems. I have followed the manual instructions, the TV finds the router with enough bars, input the wep key, but it fails to connect. [code]
View 4 Replies View RelatedSo we had a PCI scan, and we failed on a couple things where the devices are HP printers.For those that don't know, PCI = Payment Card Industry
Quote:
service tcp 34862
Linux nfs-utils Overflow
The rpc.mountd service was detected on this server. This is a remote procedure call (RPC) based service that is known to have an overflow vulnerability which can give root-level access to an attacker. Note that this service may have been activated by default when you installed your operating system.
Quote:
service udp 2049
RPC nfsd Detected
The nfsd program faciliates the Unix Network File System, which is rarely meant to be exposed to the public Internet. Many Unix/Linux systems activate a number of RPC services by default during installation. The nfsd program has also had vulnerabilities which could allow an attacker to gain control of this system.
Quote:
Windows Registry Accessible The Windows Registry is accessible by remote users and can be accessed using a NULL session (no credentials) or using the built-in Guest account. The Registry is a critical collection of information that governs how Windows and installed applications operate. The Registry is a primary target for attackers to view or modify.
These 3 came from an HP LaserJet M4345 MFP.What needs to be disabled? Strangely, the other M4345's didn't get these. I compared configurations, but everything was the same that I could see (except for the SNMP setting).
I'm having with my VPN Server on my Cisco 2621xm.
I started by creating a VPN - everything worked great. I assigned the DNS Servers, Domain name, WINS Server so when I connect I'm able to resolve local hostnames on the network with no problem, however I couldn't connect to the internet. I then set up a split tunnel access list. Since I've set that up, I'm now able to ping internet based addresses (www.google.ca), but no longer able to resolve internal host names. I can ping the ip addresses, just name resolution no longer works.
