02-27-2015 10:28 AM - edited 03-10-2019 06:20 AM
Issue with IDM access to IPS module
To anyone that can assist!
I have a situation where I can only connect to via IPS module using the ASA console and opening a session to the module itself. I cannot open an IDM session at all.
This device is acting as a secondary device and the primary is functioning correctly.
The problem has occurred after inputting the following configuration in via a sevice account to disable weak ciphers.
su -
cd /usr/cids/idsRoot/etc
cp tls.conf tls.conf.orig
sed '/TLS_RSA_WITH_DES_CBC_SHA/d' tls.conf.orig > tls.conf
/etc/init.d/cids reboot
The IPS was stuck in INIT for two hours and caused the ASA isssues with failover so the device was phycially powered off. After being restored, I can log in via the console, but cannot browse to it or monitor the module via IME.
Does anyone have an idea on how to resolve this issue?
Many thanks
James Cotterill
02-27-2015 11:55 AM
Hi James,
Try logging to IPS via CLI and regenerate the certificate with:
Remove and re-add IPS on IDM
03-05-2015 08:15 AM
Hi CSCO12625692,
Thanks for replying, unfortunately that did not resolve anything.
I cannot browse to the page either. It is almost as if the web service has now stopped completely.
Any ideas?
thanks
James
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide