AMC Administration - Cisco
CH A P T E R5AMC AdministrationThis chapter covers the Admin portion of AMC. It includes the following sections:Note AON Licensing, page 5-1 Managing AON Users, page 5-1 Managing AMC Certificates, page 5-7 Managing Extensions, page 5-7Only the System Administrator can perform all of the tasks described in this chapter. Other user typeshave limited abilities on the Admin Tab. See the “Assigning Roles to Users” section on page 5-3 forfurther details.AON LicensingAMC provides the ability to upload licenses that enable additional features and functionality. Contactyour Cisco representative to obtain more information about licensing.How to Get ThereGo to Admin Licensing, then click the Add button.Actions to TakeClick the Browse button to navigate to the location on your PC where the license file is stored, then clickthe Upload button to send the file to the AMC.Managing AON UsersAMC users fall into one of the following categories: Local users—these users are created and managed within AMC. External users—these users are created on and managed by an external LDAP server.AONS Administrator Guide5-1
Chapter 5AMC AdministrationManaging AON UsersNoteA new installation of AMC includes several local users with aonsadmin as their default password. Toensure that only authorized personnel have access to the AMC, change the default passwords or deleteunneeded users.Managing Local UsersLocal users are created and managed by the AMC. You can use this page add to perform the followingtasks: Add and delete users Display information about users Edit a user’s information, including privileges. Change a user’s passwordHow to Get ThereGo to Admin Users Manage Local UsersActions to TakeClick one of the following buttons: New—creates a new users. See Creating New Users, page 5-2 Show—displays information on the selected user. See Displaying Information on Users, page 5-3 Edit—changes information about the selected user. See Editing Users, page 5-3 Password—changes the password of the selected user. Delete—removes the selected user from the system.Creating New UsersAMC enables you to create new local users.How to Get ThereGo to Admin Users Manage Local Users, then click the New button.Actions to TakeEnter the appropriate information for the user and select a role. Use Control click to select multipleroles. For description of available roles, see Assigning Roles to Users, page 5-3.After completing the fields, click the Submit button to save your changes.AONS Administrator Guide5-2
Chapter 5AMC AdministrationManaging AON UsersDisplaying Information on UsersYou can use AMC to display information on a selected user, including name, email address, and rolesassigned.How to Get ThereGo to Admin Users Manage Local Users, then select a user. Click the Show button to display theinformation.Editing UsersAMC provides the ability to edit the properties of existing local users.How to Get ThereGo to Admin Users Manage Local Users, then select a user. Click the Edit button.Actions to TakeMake changes as necessary. If you are changing the role of a user, see the “Assigning Roles to Users”section on page 5-3.Once you have made your changes, click the Submit button to save them.Deleting UsersThe Delete User Confirmation page lists details of the user being deleted, including projects to whichthe user may be assigned. Click No to cancel the deletion and return to the previous page. Clicking Yesbrings about one of the following options: If the user is not working on an open project, the user is immediately deleted. If the user is working on an open project, a new page will ask for final confirmation before deletingthe user.Assigning Roles to UsersAMC users can be given roles based on their need to perform certain actions on AMC. Each role grantsspecific privileges within AMC. For example, the Application Designer role can only access the projectto which it is assigned and upload extensions to the AMC, however, a Network Administrator can accessfunctions related to managing and monitoring nodes. To give a user full access to AMC, assign theSystem Administrator role to that user.Role-Based Access ControlTwo new user roles are introduced in AON Version 2.4. Users with the System Administrator role arepermitted to access any project. Users with the Application Developer role are able to access only theprojects to which they are assigned. Users that were assigned the roles Network Administrator, SecurityAdministrator, and Application Administrator in previous AON releases are now assigned the roleSystem Administrator, If a user does not have permission to access system-wide resources, AMC hidesthose resources from the user.AONS Administrator Guide5-3
Chapter 5AMC AdministrationManaging AON UsersThe table below shows the roles available in AMC, and the sections on each tab these roles can access.Table 5-1RoleAMC User RolesProject TabApplication All actions onAdminassignedNetworkTab—projects exceptdeletion and newproject creationApplication Open and viewDesignerassigned—Properties Tab Application JMS Monitoring AON Security Service Profiles—Deploy MonitorTabTabKeystores TabAll—All— Keypairs PublicCertificatesAMCDiagnostics Extensions AMCSecurity DataMigration Users AMCDiagnostics Extensions—projects onlyApplication Open and viewDeveloper assigned—projects onlyNetworkAdminOpen and viewall projectsAllSecurityAdminOpen and viewall projects—SystemAdminAllAll Application JMS Monitoring AON Security Service ProfilesMonitoring AuthenticationandAuthorization AONSecurity NodeManagementSecurityAllAllAllAdmin Tab Keypairs PublicCertificatesAMCDiagnostics Extensions AMCSecurity DataMigration Users—All———AllAll Users AMCSecurityAllAllAllAllEditable RolesWhen you edit users’ roles, you can assign only those roles that are equal to or less than your own role.For example, an application administrator cannot give the system administrator role to a user. The tablebelow lists each role and the roles that user is able to edit.AONS Administrator Guide5-4
Chapter 5AMC AdministrationManaging AON UsersAssigned RoleEditable RolesSystem administratorAllApplication administrator All application-related rolesNoteApplication designerNoneApplication developerNoneNetwork administratorNoneSecurity administratorAll except system administratorDo not remove the system administrator role from the user named aonsadmin unless you have firstassigned that role to at least one other user.To assign roles to a user, see one of the following sections: Creating New Users, page 5-2 Editing Users, page 5-3 Assigning Roles to External Users, page 5-6Managing External UsersAMC provides the ability to use an existing LDAP server for user management. To do this, complete thefollowing tasks in the order specified:1.Creating an LDAP Profile, page 5-52.Assigning Roles to External Users, page 5-63.Creating an Authentication Realm, page 5-6Creating an LDAP ProfileAn LDAP profile provides the information needed by AMC to retrieve user data from an existing LDAPserver.How to Get ThereGo to Admin Users Manage Local Users LDAP, then click the New button.Actions to TakeComplete the fields as appropriate for the LDAP server being used. Contact your LDAP administratorfor details.AONS Administrator Guide5-5
Chapter 5AMC AdministrationManaging AON UsersAssigning Roles to External UsersHow to Get ThereGo to Admin Users Manage Local Users Role Mapping, then click the New button.Data to EnterTable 5-2 shows the field of the Role Mapping page.Table 5-2EntryDescriptionNameName of your choosing for this property set.LDAP Attribute NameThe LDAP attribute that is to be used to specify the AMC role.Condition OperatorChoose one of the following from the drop-down list: equals—information retrieved from LDAP server must match exactlywith LDAP attribute value specified below. contains—information retrieved from LDAP server must containLDAP attribute value specified below. defineRoles—information retrieved from LDAP will define the role ofthe user.LDAP Attribute ValueThe value for the attribute specified above.Assign RolesClick the Edit List button to choose roles that are to be assigned to userswho match the LDAP attribute. See “AMC User Roles”Actions to TakeAfter completing the fields, click the Submit button to save your changes.Creating an Authentication RealmThe LDAP Authentication Realm binds the LDAP information specified in the “Creating an LDAPProfile” section on page 5-5 with the role mapping information specified in “Assigning Roles to ExternalUsers” section on page 5-6.How to Get ThereAdmin Users Manage Local Users Authentication Realm, then click the New button.Data to EnterTable 5-3 shows the Authentication Realm page.Table 5-3EntryDescriptionNameName of your choosing for this property set.Realm NameName of your choosing for the realm.AONS Administrator Guide5-6Authentication Realm
Chapter 5AMC AdministrationManaging AMC CertificatesTable 5-3Authentication Realm (continued)EntryDescriptionLDAP ConnectionProfileChoose an available LDAP profile from the drop-down list. See the “Creating anLDAP Profile” section on page 5-5 to create a new profile.Role MappingPoliciesClick the Edit List button to select from the available Role Mapping property sets.See the “Assigning Roles to External Users” section on page 5-6 to create a newproperty set.Actions to TakeAfter completing the fields, click the Submit button to save your changes. Once you completed this task,the LDAP configuration appears in the drop-down list on the AMC log-in page.Managing AMC CertificatesThe AMC Security Page enables you to manage the keypairs and certificates used by AMC for securecommunication. Keypairs–view, edit, or delete keypairs that have been assigned to AMC. Public Certificates–view, edit, or delete public certificates that have been assigned to AMC. Root Certificates–view, edit, or delete root certificates that have been assigned to AMC.How to Get There NoteGo to Admin AMC SecurityIf no keypairs or certificates are present, you must use the Keystores tab to generate them.Managing ExtensionsThe Extensions page enables you to upload custom software to adapt your AON environment to thespecific business needs of your network. This page provides the ability to upload the following: JMS resources Schema packages Transform packages Transform parser packages Custom bladelets and extensionsIf you have opened the System project, you can also upload the following: Adapter packages Adapter extension packagesExtensions are uploaded into and deployed from a particular project. Any property set categoriesincluded in the extension are accessible only to the project that uploaded the extension. Each projectmust upload its own unique extensions. An extension uploaded by an application project cannot beshared among other projects. However, extensions uploaded into the system project can be shared.AONS Administrator Guide5-7
Chapter 5AMC AdministrationManaging ExtensionsWhen an extension package is uploaded, AMC appends the project prefix to the package name. However,the prefix is not applied to the custom extension itself, nor is it applied to any custom policy categoriesand predefined property sets in the package.AMC does not allow extension packages to have duplicate names. An attempt to upload a duplicateextension will fail. Additionally, AMC verifies that any custom property sets contained in an extensiondo not exist in other projects. If there is duplication, the upload attempt will fail.NoteBefore you can upload an extension with AMC, you must use AON Development Studio to package it.For more information about developing and packaging extensions, see the AON Programming Guide.AONS Administrator Guide5-8
CHAPTER 5-1 AONS Administrator Guide 5 AMC Administration This chapter covers the Admin portion of AMC. It includes the following sections: AON Licensing, page 5-1 † Managing AON Users, page 5-1 † Managing AMC Certificates, page 5-7 † Managing Extensions, page 5-7 Note Only the System Administrato
2 AMC 1961 Rambler American Technical Service Manual 2 AMC 1961 Rambler Classic 6-V8, Ambassador V-8 3 AMC 1962 Rambler American Technical Service Manual 3 AMC 1962 Rambler Classic 6, Ambassador V-8 4 AMC 1962 Rambler Technical Service Manual 4 AMC 1963 Rambler American Technical Service Manual 4 AMC 1964 Rambler Classic Ambassador
Cisco ASA 5505 Cisco ASA 5505SP Cisco ASA 5510 Cisco ASA 5510SP Cisco ASA 5520 Cisco ASA 5520 VPN Cisco ASA 5540 Cisco ASA 5540 VPN Premium Cisco ASA 5540 VPN Cisco ASA 5550 Cisco ASA 5580-20 Cisco ASA 5580-40 Cisco ASA 5585-X Cisco ASA w/ AIP-SSM Cisco ASA w/ CSC-SSM Cisco C7600 Ser
Supported Devices - Cisco SiSi NetFlow supported Cisco devices Cisco Catalyst 3560 Cisco 800 Cisco 7200 Cisco Catalyst 3750 Cisco 1800 Cisco 7600 Cisco Catalyst 4500 Cisco 1900 Cisco 12000 Cisco Catalyst 6500 Cisco 2800 Cisco ASR se
Cisco Nexus 1000V Cisco Nexus 1010 Cisco Nexus 4000 Cisco MDS 9100 Series Cisco Nexus 5000 Cisco Nexus 2000 Cisco Nexus 6000 Cisco MDS 9250i Multiservice Switch Cisco MDS 9700 Series Cisco Nexus 7000/7700 Cisco Nexus 3500 and 3000 CISCO NX-OS: From Hypervisor to Core CISCO DCNM: Single
Cisco Nexus 7706 Cisco ASR1001 . Cisco ISR 4431 Cisco Firepower 1010 Cisco Firepower 1140 Cisco Firepower 2110 Cisco Firepower 2130 Cisco FMC 1600 Cisco MDS 91485 Cisco Catalyst 3750X Cisco Catalyst 3850 Cisco Catalyst 4507 Cisco 5500 Wireless Controllers Cisco Aironet Access Points .
Sep 11, 2017 · Note: Refer to the Getting Started with Cisco Commerce User Guide for detailed information on how to use common utilities for a record in Cisco Commerce. See Cisco Commerce Estimates and Configurations User Guide for more information.File Size: 664KBPage Count: 5Explore furtherSolved: Cisco Serial Number Lookups - Cisco Communitycommunity.cisco.comHow to view and/or update your CCO profilewww.cisco.comSolved: How do I associate a contract to my Cisco.com .community.cisco.comHow do I find my Cisco Contract Number? - Ciscowww.cisco.comPower calculator tool - Cisco Communitycommunity.cisco.comRecommended to you b
Apr 05, 2017 · Cisco 4G LTE and Cisco 4G LTE-Advanced Network Interface Module Installation Guide Table 1 Cisco 4G LTE NIM and Cisco 4G LTE-Advanced NIM SKUs Cisco 4G LTE NIM and Cisco 4G LTE-Advanced NIM SKUs Description Mode Operating Region Band NIM-4G-LTE-LA Cisco 4G LTE NIM module (LTE 2.5) for LATAM/APAC carriers. This SKU is File Size: 2MBPage Count: 18Explore furtherCisco 4G LTE Software Configuration Guide - GfK Etilizecontent.etilize.comSolved: 4G LTE Configuration - Cisco Communitycommunity.cisco.comCisco 4G LTE Software Configuration Guide - Ciscowww.cisco.comCisco 4G LTE-Advanced Configurationwww.cisco.com4G LTE Configuration - Cisco Communitycommunity.cisco.comRecommended to you b
Cisco Certified Internetwork Expert logo, Cisco IOS, Cisco Press, Cisco Systems, Cisco Systems Capital, the Cisco Systems logo, Cisco Unified Computing System (Cisco UCS), Cisco UCS B-Series Blade Servers, Cisco UCS C-Series Rack Servers, Cisco UCS S-Series Storage Servers, Cisco UCS Manager, Cisco UCS
