I am using Prime LMS 4.2.2 software to archive configuration for my cisco Network Device switch and firewall . All works fine except for two new Cisco ASA 5525 and ASA 5545 ( Software Version 126.96.36.199 ) . I have already checked credential , ssh access , snmp configuration and all seem correct. But Archive configuration job end with failure. This is the error message:
*** Device Details for ASAPCI-MI ***
Protocol ==> Unknown / Not Applicable
Selected Protocols with order ==> SSH,Telnet,TFTP,HTTPS,RCP
CM0151 PRIMARY RUNNING Config fetch failed for ASAPCI-MI Cause: Failed to fetch the configuration. Check the dcmaservice.log for details. TELNET: Failed to establish TELNET connection to 172.20.55.13 - Cause: connect timed out.
PRIMARY-RUNNING config Fetch Operation failed for TFTP.
Action: Check if protocol is supported by device and required device package is installed. Check device credentials. Increase timeout value, if required. Verify if firewall configuration permits traffic from LMS to the device and vice versa for the protocols configured in Admin > Collection Settings > Config > Config Transport Settings.
I have also ols ASA model ( 5510 and 5505 ) and for these device Archive Configuration work well.
I have checked dcmaservice.log but I have not found anything useful. I attach this file if for someone is useful.
I am having a similar problem. Looking at the dcmaservice.log of my server the LMS server is trying to connect to a different IP address on the firewall (the outside ip address which is a higher value than the inside ip address). the LMS server is not using the IP address that was configured when the device was added. Inventory and credentials checking works fine. How can I change it so that the RME module (or what ever is doing the config sync) uses the configured IP address and not one it selects based on some definition I cannot find?
Firewall rules are blocking access to the ASA IP address that RME picked, it needs to connect to the inside ip address.
I think this may be Marco's problem as well since his dcmaservice.log file shows that the LMS server is trying to connect to 192.168.1.1 instead of 172.20.55.13
What is AppQoE?
AppQoE is a WAN optimization stack and optimizes WAN traffic for different use cases for applications that are deployed on-prem or in cloud.
What are the benefits of using AppQoE?
AppQoE improves application experience by d...
The application delivery challenges have been the enemy of network since the advent of Internet. So, what are these application delivery challenges that can bring down a network to its heels?
Above are some of the common problems faced not only by tradit...
It is our pleasure to officially announce the finalists in the 2021 IT Blog Awards. Now we are looking to YOU, our amazing tech community, to weigh in. Check out the amazing educational content we've uncovered and vote for your favorites before Friday, Fe...
SD-WAN Advanced Deployment What is SD-WAN? SD-WAN is Software define wide area network and SD-WAN is key part of the technology of software-defined networking . SDN is a centralized approach to network management which abstract...