5-7

User

Guide

for

the

Cisco

Application

Networking

Manager

5.2

OL-26572-01

Chapter

5

Importing

and

Managing

Devices

Preparing

Devices

for

Import

For

more

information

about

configuring

SSH

access

on

the

ACE,

see

either

the

Cisco

Application

Control

Engine

Module

Administration

Guide

or

the

Cisco

4700

Series

Appliance

Administration

Guide

on

Cisco.com.

Enabling

SNMP

Polling

from

ANM

You

can

enable

SNMP

polling

from

ANM,

which

uses

SNMPv2

for

polling

ACE,

CSS,

CSM,

or

CSM-S

devices.

To

receive

traps

fr

om

t

hese

devices,

ANM

supports

use

of

SNMPv2

traps.

Note

To

send

SNMP

traps

to

ANM,

configure

the

SNMP

trap

host

to

the

ANM

server

so

that

it

can

receive

traps

from

ANM.

For

alarm

condition

notifications,

ANM

uses

SNMPv1

EPM-Notificaton-MIB

based

SNMP

traps.

For

the

ACE,

in

order

for

ANM

to

successfully

perform

SNMP

polling,

you

must

configure

the

ACE

Admin

context

with

a

management

IP

with

a

suitable

management

policy

that

permits

SNMP

traffic.

All

other

contexts

can

be

polled

using

this

Admin

context

management

IP.

For

each

device

type

(ACE,

CSS,

CSM,

or

CSM-S),

see

the

corresponding

configuration

guide

to

configure

the

device

to

permit

SNMP

traffic.

Step

3

class-map

type

management

match-any

ANM_management

2

match

protocol

ssh

any

3

match

protocol

telnet

any

4

match

protocol

https

any

5

match

protocol

snmp

any

6

match

protocol

icmp

any

7

match

protocol

xml-https

Configures

discovery

for

ANM.

The

following

comments

apply

t

o

the

line

number

specified

before

the

command

text

in

the

left

column:

•

Line

2

classifies

the

SSH

traffic.

•

Line

4

is

needed

by

ANM

for

making

configuration

changes

on

the

ACE.

•

Line

5

is

needed

by

ANM

for

periodic

statistics.

•

Line

6

is

not

mandatory

but

useful

for

network

and

route

validation.

•

Line

7

i

s

needed

onl

y

for

ACE

4710

devices.

Step

4

policy-map

type

management

first-match

ANM_management

class

ANM_management

permit

Allows

protocols

matched

in

the

management

class

map.

Step

5

interface

vlan

30

ip

address

192.168.65.131

255.255.255.0

access-group

input

acl

service-policy

input

ANM_management

no

shutdown

Configures

a

management

interface

with

the

ACL

and

specifies

the

management

service

policy.

This

configuration

is

not

recommended

for

a

client

or

server

interface.

Step

6

username

admin

password

5

$1$faXJEFBj$TJR1Nx7sLPTi5BZ97v08c/

role

Admin

domain

default-domain

Defined

by

the

administrator.

Step

7

ip

route

0.0.0.0

0.0.0.0

192.168.0.1

Specifies

the

default

route

(or

appropriate

route)

for

traffic

to

reach

ANM

using

the

management

interface

if

ANM

is

not

on

the

same

subnet.

Command

Purpose