BRKNMS 2035

Ten Cool LMS Tricks to Better Manage
Your Network
BRKNMS-2035
Joe Clarke Distinguished Support Engineer
Jason Davis Distinguished Services Engineer
BRKNMS-2035
2012 Cisco and/or its affiliates. All rights reserved.
Cisco Public
Non-Information
Silence your phone, PDA, pager, MP3 player
At CiscoLive! your evaluation is extremely important
Please remember to wear your badge at all times
Please visit the World of Solutions
You can ask questions any time
BRKNMS-2035
Cisco Public
Meet the Engineer

To make the most of your time at Networkers at Cisco Live 2012, schedule
a Face-to-Face Meeting with top Cisco Engineers.
Designed to provide a "big picture" perspective as well as "in-depth"
technology discussions, these face-to-face meetings will provide fascinating
dialogue and a wealth of valuable insights and ideas.
Visit the Meeting Center reception desk located in the Meeting Centre in
World of Solutions.
BRKNMS-2035
Cisco Public
Session Abstract
For Your
Reference
Cisco Prime LAN Management Solution is a very powerful tool for managing
virtually all aspects of your network. With all of its capabilities, it may be
easy to overlook some of LMS's features that can make configuring,
monitoring and understanding your network easier.
In this session, we will start with a brief overview of LMS, then jump into ten
tips and tricks using various LMS features to help you get the most out of
your network management platform. Some of the examples discussed will
be configuration baseline essentials, simplified software management, and
customizable performance monitoring.
This session is relevant to network management administrators, engineers,
and system integrators using Cisco Prime LMS in their enterprise.
Attendees should already be familiar with the basics of LMS.
BRKNMS-2035
Cisco Public
Cisco Prime LMS

Product Overview
The LMS 4.2 Paradigm

Improved User Experience
Release Highlights
W Faster Installation
W Intuitive Getting Started
Wizard
W Revamped GUI
W Modern Standardized
Style
W Pragmatic
W Intuitive
W MegaMenu
W Consistent Navigation
W Actionable Global Search
W Quick Access to all the tools
BRKNMS-2035
W Standards-based
compliance and auditing
W Graphical configuration
template builder
W Simplified device discovery
W Medianet Work Center
W Smart Interactions
W Open a TAC case
W Search Cisco Support
Community
Fine Tuned for Operational

needs
W Functionally Designed
MegaMenu for Operational
Excellence
W Auto Information Retrieval
W Quick Access to all the tools
W Auto-Monitoring
W Consolidated Event view
W Dashboards
W Enhanced Troubleshooting
W Consolidated Reporting
Cisco Public
Easier Installation
Single DVD installation
Installation down to 45 mins from 2 hours
Installation includes database as well as the application
New hardware options for Installation
Cisco UCS B and C Series Chassis
Variety of OS supported for Installation
Windows 2008 (64-bit only), 2008 R2
Turnkey virtual appliance
Solaris 10
Virtualization
VMWare vSphere 3.x, 4.x, 5.0
Hyper V
Solaris Zones
BRKNMS-2035
Cisco Public
Intuitive Getting Started Wizard
Surefire way to quickly manage your

network
Quickly start using LMS 4.2 with the
guided workflow
Takes out the guess work Configure
mandatory items first, and then learn about
optional items
Triggers ALL the basic collections
automatically
BRKNMS-2035
Cisco Public
Dynamic and Powerful UI

Actionable Search
Global Search field available on all LMS pages
Ability to search on any IP or MAC Address
If you are stuck, help is just a few words away
Actionable
Mouse-Overs for More
Contextual Tools!
BRKNMS-2035
Cisco Public
10
Consistent
Global
Menu
Easy Task-Driven Navigation
Legacy
Navigation
MegaMenu
BRKNMS-2035
Cisco Public
11
Deploying Cisco Prime LMS 4.2: Virtual Appliance

Steps:
Steps:
1. Log in to vSphere Client (pointed
to either ESX Host or vCenter).
2. Choose File > Deploy OVF
Template.
1.
Log in to vSphere Client (pointed to either

ESX Host or vCenter).
2.
Choose File > Deploy OVF Template.
Option 1
Option 2
3. Upload .ova stored locally or

from FTP server.
BRKNMS-2035
Cisco Public
12
Deploying Cisco Prime LMS 4.2: Virtual Appliance
2
1
2
1
BRKNMS-2035
If the .ova file is properly

downloaded, you should see
the .ova content information.
You can see the

recommended sizes for thin
and thick provisioning.
Cisco Public
13
Flexible Configuration Templates

Benefits
W Operationally Simple
W Error Free
W Cisco Validated Design
Certified
W Turnkey Solution
W Available out-of-the-box
W Eases new device deployment
Easy Workflow
W Import
W Manage
W Deploy
BRKNMS-2035
Cisco Public
14
Built-In Performance Management

Auto-Monitor Parameters
Pre-Defined for Best Practices for Every
Monitoring Category
One Place for Making

Changes to Existing Pollers
Monitoring Dashboard Automatically Populated

Once the Data Is Available
Web 2.0 Portal for Portal Customization
BRKNMS-2035
Cisco Public
15
Compliance Reports
PCI DSS
Compliance
Report
Compliance Reports : Provide informaon about regulatory compliance state like HIPPA, SoX , PCI
DSS etc. and network specic compliant requirement
BRKNMS-2035
Cisco Public
16
Consolidated Report Center
Neatly
Organized
BRKNMS-2035
Easy to Find
Cisco Public
17
Tip 1
Tips for a Better Device Discovery
Tip 1 Tips for a Better Device Discovery

Simplified discovery can make getting started with LMS a lot easier
Minimal input required for LMS to start discovering and managing the
network
Credential sets can be used to automatically add all necessary credentials
to devices as they are learned
But what if we want to tweak how discovery works?
BRKNMS-2035
Cisco Public
19
Standard Discovery Settings

LMS detects the servers
default gateway and uses that
to nd the rest of the network.

Standard Discovery uses CDP

and LLDP to discover devices in
the network.

BRKNMS-2035
Use the Credenal Set policy

conguraon to have all
necessary credenals
automacally applied to new
devices.
Cisco Public
20
Credential Set Configuration
Doing this ensures funcons

such as conguraon
management work
immediately for new devices
Most important sengs
1. Create one or more

credenal set policies
2. Map those policies to
devices automacally using
IP ranges or hostnames
BRKNMS-2035
Cisco Public
21
Going Beyond the Defaults

Leading pracce is to use
loopbacks for management.
More on Device Discovery at
hps://suppororums.cisco.com/docs/DOC-9005
Enable Sysname for

preferred DCR Device Name
and Update DCR Device
Name to ensure that all
devices appear with a user-
friendly name in LMS device
selectors.
BRKNMS-2035
Organize new devices for easy

compliance and upgrade tasks!
Cisco Public
22
Tip 2
Dynamic Device Groups
Tip 2 Dynamic Device Groups

Scenario
We have a recurring Configuration Archive job that runs weekly
The jobs original device scope is no longer accurate because we added
new devices.
We need a dynamic method to automatically associate new devices to the
existing job
Solution
Use the Group Selector versus the Device Selector to define the jobs
target devices.
BRKNMS-2035
Cisco Public
24
Create a Dynamic Device Group

First, ensure you have a device group
built to suit your match

Inventory > Group Management / Device

Then click Create
BRKNMS-2035
Cisco Public
25
Make sure Automac is selected so the

group will update when new matching
devices are added.
BRKNMS-2035
Cisco Public
26
Many variable types are

available
BRKNMS-2035
Cisco Public
27
When using Device Selector

mode the system will
automacally use the stac
number of devices (13) when
the job is created
BRKNMS-2035
Cisco Public
28
When using Group Selector

mode the system will
automacally use the dynamic
number of devices matched by
the group When the Job Runs
BRKNMS-2035
Cisco Public
29
Tip 3
Syslog Automated Actions
Tip 3 Syslog Automated Actions

Scenario
We occasionally see CPU spikes on our devices and would like to find out what
process is causing them
Wed prefer not to do continuous, periodic polls we dont want to add more work to
the NMS, network or device and wed like to limit the AAA logging to CiscoSecure
ACS
Solution
Set up the device with an IOS Resource Manager configuration monitoring the CPU
[can be deployed with NetConfig]
Use the Syslog event message %SYS-4-CPURERISING to be an automated action
trigger that kicks off a script that runs a cwcli netshow to get show process cpu
sorted 1min and sends an email alert with the results
BRKNMS-2035
Cisco Public
31
Resource Monitor config

resource policy
policy HighGlobalCPU global
system
cpu total
critical rising 20 falling 10 interval 10
!
!
!
user global HighGlobalCPU
!
!
Resulting Syslog example

Mar 14 11:52:02.185: %SYS-4-CPURESRISING: System is seeing global cpu
util 23% at total level more than the configured critical limit 20 %
BRKNMS-2035
Cisco Public
32
Script Prep
Create a script in this directory:
Windows
<install_dir>\files\scripts\syslog
Solaris
/var/adm/CSCOpx/files/scripts/syslog
For Windows LMS can trigger a batch file. Create the following .bat file
which calls another Perl script (.pl)
For Solaris LMS can trigger a shell script
BRKNMS-2035
Cisco Public
33
Solaris - AutoNetshowProcs.sh
#!/bin/sh
#
# AutoNetshowProcs.sh
Jason Davis (jadavis@cisco.com)
#
Initiated by Cisco Prime LMS Syslog Automated Action event from %SYS-4-CPURESRISING
#
messages; script then invokes cwcli netshow to get top processes on the device
LMSBIN=/opt/CSCOpx/bin
EMAILTO=jadavis@cisco.com
DEVICE=$1
SYSLOGMSG=$2
CWCLIFILE=/opt/CSCOpx/scripts/cwlmscreds
export CWCLIFILE
CWCLIOUTPUT=`$LMSBIN/cwcli netshow createjob -u lmsautoadmin -device $DEVICE -customcmd "show proc cpu sorted
1min" -description "AUTOMATED CWCLI: Get $DEVICE CPU Processes`
JOBNUM=`echo $CWCLIOUTPUT | perl -ne 'm/(\d+)/; print "$1"`
sleep 60
CWCLIOUTPUT2=`$LMSBIN/cwcli netshow jobresults -u lmsautoadmin -id $JOBNUM`
echo "Device $DEVICE reported the following:\n$SYSLOGMSG\n\nCisco Prime LMS retrieved this:\n$CWCLIOUTPUT2\n" |
mailx -s "AUTOMATED LMS Job $JOBNUM Results" $EMAILTO
BRKNMS-2035
Cisco Public
34
Windows AutoNetshowProcs.bat
@echo off
rem Windows batch file to call AutoNetshowProcs.pl Perl script
set NMSROOT="C:\Program Files (x86)\CSCOpx
set Device=%1
set Message=
rem throw the first parameter away and put all others into one parameter list
:loop
shift
if [%1]==[] goto afterloop
set Message=%Message% %1
goto loop
:afterloop
cd %NMSROOT%\files\scripts\syslog
%NMSROOT%\bin\perl AutoNetshowProcs.pl -d %Device% -m %Message%
BRKNMS-2035
Cisco Public
35
Windows AutoNetshowProcs.pl (1/3)

#!/usr/bin/perl
# AutoNetshowProcs.pl (jadavis@cisco.com)
# Script called by Windows AutoNetshowProcs.bat to cause CW-LMS to use 'cwcli netshow
# and gather device process information and email it. Normally triggered by LMS Syslog
# Automated Actions upon receipt of high CPU Syslog
# Credit to jclarke@cisco.com for the sendMail subroutine
use Net::SMTP;
use Getopt::Std;
use vars qw($cmd);
$LMSBIN='C:\PROGRA~2\CSCOpx\bin;
$EMAILTO="jadavis\@cisco.com;
$EMAILFROM="lmsadmin\@rtpnmlv-lms40.cisco.com;
$ENV{'CWCLIFILE'}='C:\PROGRA~2\CSCOpx\files\scripts\cwlmscreds;$SMTPSERVER="mailman.cisco.com;
sub sendMail {
my ($from, $to, $subject, $data, $host) = @_;
my ($smtp, $header);
my $rc = 1;
$smtp = Net::SMTP->new($host);
$smtp->mail($from);
$smtp->to($to);
$header
$header
$header
$header
BRKNMS-2035
= "From: $from\n;
.= "To: $to\n;
.= "Subject: $subject\n;
.= "\n;
Cisco Public
36

$data = $header . $data;
$rc = $smtp->data($data);
$smtp->quit;
}
return $rc;
sub usage { print "usage: $cmd -d <device> -m <message>\n;

exit(1);
}
$cmd = $ARGV[0];
if (!scalar(@ARGV)) {
usage();
}
my $opts = {};
getopts('d:m:', $opts) or usage();
if (!$opts->{'d'} || !$opts->{'m'}) {
usage();
}
$DEVICE = $opts->{'d'};
$MESSAGE = $opts->{'m'};
BRKNMS-2035
Cisco Public
37

$CWCLIOUTPUT=`${LMSBIN}\\cwcli netshow createjob -u lmsautoadmin -device $DEVICE customcmd "show
proc cpu sorted 1min" -description "AUTOMATED CWCLI: Get $DEVICE CPU Processes"`;
if ($CWCLIOUTPUT =~ m/:\s+(\d+)/) {
$JOBNUM=$1;
}
# Give LMS some time to process the job
sleep 60;
# Get the job results from LMS
$CWCLIOUTPUT2=`${LMSBIN}\\cwcli netshow jobresults -u lmsautoadmin -id $JOBNUM`;
# EMail it
my $emailrc = sendMail($EMAILFROM, $EMAILTO, "AUTOMATED NOTIFICATION: CW-LMS Job $JOBNUM
Results", $CWCLIOUTPUT2, $SMTPSERVER);
if (!$emailrc) {
print "Failed to send email.\n;
} else {
print "Email sent.\n;
}
exit;
BRKNMS-2035
Cisco Public
38
Monitor > Fault Settings/Syslog > Automated

Actions
Go to
Monitor > Fault Sengs / Syslog >
Automated Acons

Create a New Syslog Automated Acon
BRKNMS-2035
Cisco Public
39
Select All Managed Devices

or Dene a Subset
BRKNMS-2035
Cisco Public
40
Dene the Message Type by Providing

an Automated Acon Name, then Add
a New Message Filter
BRKNMS-2035
Cisco Public
41
Dene the Filter Components

Facility, Severity and Mnemonic
BRKNMS-2035
Cisco Public
42
BRKNMS-2035
Cisco Public
43
Specify the Acon Type of Script,

then Dene the Script Locaon on the LMS Server

Windows Default C:\PROGRA~2\CSCOpx\les\scripts\syslog

Solaris Default
/var/adm/CSCOpx/les/scripts/syslog
BRKNMS-2035
Cisco Public
44
When a Syslog Message Matching

the Filter Comes in, the Script
Will Be Executed

In This Case, cwcli netshow Is
Executed to Obtain
show process cpu sorted 1min

Output Is Collected and Emailed
BRKNMS-2035
Cisco Public
45
Tip 4
Database Access
Tip 4 Database Access

Scenario
We know that LMS collects a LOT of data and wed like to access it directly
from the database to populate our own CMDB, do our own custom reporting
or some other custom integration.
Solution
Open Database Support for LMS
Open Database Schema Support for Cisco Prime LMS 4.2

hp://www.cisco.com/en/US/partner/docs/net_mgmt/ciscoworks_lan_management_soluon/4.2/database_schema/dbviews_42.html

Cisco Public
BRKNMS-2035
47
Enable Access to the Database

First, enable access to the database, by running the dbaccess.pl utility
from the command line:
NMSROOT/bin/perl NMSROOT/bin/dbaccess.pl {install|clean} [debug]
on Solaris or Soft Appliance systems
NMSROOT\bin\perl NMSROOT\bin\dbaccess.pl {install|clean} [debug]
on Windows systems
NMSROOT is the LMS installation directory

install is used to initially create the views
clean is used to fix the views, if necessary
BRKNMS-2035
Cisco Public
48
dbaccess
The system prompts for passwords for the lmsdatafeed and lmssecuredatafeed
users
BRKNMS-2035
Cisco Public
49
Database Names / DSNs

Application
Common Services (DCR)
Network Topology,
Layer 2 Services,
and User Tracking
Inventory,
Config,
and Image Management
Fault Management (History)
BRKNMS-2035
DSN
Port
cmfDb
43441
aniDb
43443
rmengdb
43455
dfmFhDb
43445
Cisco Public
50
LMS Application to Table/View Mappings
BRKNMS-2035
Cisco Public
51
Map Collection Interest with Data Columns
BRKNMS-2035
Cisco Public
52
BRKNMS-2035
Cisco Public
53
BRKNMS-2035
Cisco Public
54
BRKNMS-2035
Cisco Public
55
BRKNMS-2035
Cisco Public
56
Tip 5
Using cwcli to Customize Reporting
Tip 5 Using cwcli to Automate Diagnostics

Scenario
Our network administrators are requesting device name, model, serial number,
MAC, and IP information from each device in the network
They are unfamiliar with LMS and require only the specifically requested data
Solution
Were going to use the LMS API, cwcli, to access the inventory and produce a
CSV report that gives our administrators exactly what they need
Update Apache allow_files.conf
<install_dir>/MDC/Apache/conf/allow_files.conf
Add a new line with DIR=/USER
Reset Apache (pdterm/pdexec)
BRKNMS-2035
Cisco Public
58
Create an LMS Credential file that contains

Username<space>password
This allows us to use cwcli without providing the user password at the
command-line, enhancing security.
Set environment variable, CWCLIFILE, equal to the path and filename,
e.g.
Windows:
C:\Program Files\CSCOpx>set CWCLIFILE=C:\Program Files\CSCOpx\scripts\cwlmscreds
Solaris
lmsuser@lms42$ CWCLIFILE=/opt/CSCOpx/scripts/cwlmscreds
lmsuser@lms42$ export CWCLIFILE
BRKNMS-2035
Cisco Public
59
Cwcli export functions

lms42:/opt/CSCOpx/bin$ ./cwcli export ?
- config
- inventory
- changeaudit
Were going to focus on inventory.
BRKNMS-2035
Cisco Public
60
Grab the full inventory in XML format

lmsadmin@lms42:/opt/CSCOpx/bin$ ./cwcli export inventory -u lmsautoadmin device %
SUMMARY
========
Successful: export: /var/adm/CSCOpx/files/rme/archive/2012-04-08-08-18-21inventory.xml
Parse the XML with a perl script to produce the report

lmsadmin@lms42:/opt/CSCOpx/bin$ /opt/lms_scripts/bin/getinv.pl /var/adm/CSCOpx/files/rme/
archive/2012-04-08-08-18-21-inventory.xml /opt/CSCOpx/htdocs/USER/rtpnml-inv.csv
[Wait a few min]
BRKNMS-2035
Cisco Public
61
Review Output
lmsadmin@lms42:/opt/CSCOpx/bin$ cat /opt/CSCOpx/htdocs/USER/rtpnml-inv.csv
Name,Model,Serial Number,MAC,IP
SER206-48.ciscolive.local,WS-C3750X-24P-S,FDO1547K125,28:94:0f:9e:d4:41,10.127.6.49
SER208-24.ciscolive.local,WS-C3750X-24P-S,FDO1547P14A,28:94:0f:bc:76:c1,10.127.8.25
SER207-48.ciscolive.local,WS-C3750X-24P-S,FDO1547P145,28:94:0f:bc:6b:41,10.127.7.49
SER212-08.ciscolive.local,WS-C3560CG-8PC-S,FOC1544W1BV,d4:d7:48:57:4b:41,10.127.12.9
SER210-09.ciscolive.local,WS-C3560CG-8PC-S,FOC1544W1C6,d4:d7:48:56:ac:c1,10.127.10.10
SER210-00.ciscolive.local,WS-C3750X-24P-S,FDO1447P1FJ,e0:5f:b9:6f:db:56,10.127.10.1
SER210-24.ciscolive.local,WS-C3750X-24P-S,FDO1546P1D3,28:94:0f:82:7f:c1,10.127.10.25
SER213-00.ciscolive.local,WS-C3750X-24P-S,FDO1547R09N,28:94:0f:a1:a4:d6,10.127.13.1
SER203-00.ciscolive.local,WS-C3750X-24P-S,FDO1415P0PB,54:75:d0:82:a4:56,10.127.3.1
SER210-11.ciscolive.local,WS-C3750X-24P-S,FDO1547P14G,28:94:0f:bc:80:c1,10.127.10.12
SER209-24.ciscolive.local,WS-C3750X-24P-S,FDO1547K11W,28:94:0f:a1:ac:c1,10.127.9.25
SER210-10.ciscolive.local,WS-C3750X-24P-S,FDO1547R05B,28:94:0f:a3:c1:41,10.127.10.11
SER204-00.ciscolive.local,WS-C3750X-24P-S,FDO1415P0P2,54:75:d0:82:a0:56,10.127.4.1
SER211-00.ciscolive.local,WS-C3750X-24P-S,FDO1526P04M,30:e4:db:e2:51:d6,10.127.11.1
SER205-00.ciscolive.local,WS-C3750X-24P-S,FDO1415P0R4,54:75:d0:96:12:56,10.127.5.1
SER214-00.ciscolive.local,WS-C3750X-24P-S,FDO1526P04V,30:e4:db:d8:8b:56,10.127.14.1
SER206-00.ciscolive.local,WS-C6506-E,SAL1123QPE8,00:1c:57:04:ec:80,10.127.6.1
SER212-00.ciscolive.local,WS-C3750X-24P-S,FDO1447P1FG,e0:5f:b9:6f:dc:56,10.127.12.1
SER208-00.ciscolive.local,WS-C3750X-24P-S,FDO1415P0NN,54:75:d0:82:80:d6,10.127.8.1
SER210-12.ciscolive.local,WS-C3750X-24P-S,FDO1547K14H,28:94:0f:bc:77:41,10.127.10.13
BRKNMS-2035
Cisco Public
62
Review Output
lmsadmin@lms42:/opt/CSCOpx/bin$ cat /opt/lms_scripts/bin/getinv.pl
#!/opt/CSCOpx/bin/perl
use strict;
use XML::DOM;
my $parser = new XML::DOM::Parser;
my $doc = $parser->parsefile($ARGV[0]);
my $nodes = $doc->getElementsByTagName("RMEPlatform");
my $n = $nodes->getLength;
unless (open (OUTFILE, ">" . $ARGV[1])) {
die "Error opening $ARGV[1] for writing: $!";
}
print OUTFILE "Name,Model,Serial Number,MAC,IP\n";
for (my $i = 0; $i < $n; $i++) {
my $node = $nodes->item($i);
my $chassis = $node->getElementsByTagName("Cisco_Chassis")->item(0);
my $ne = $node->getElementsByTagName("Cisco_NetworkElement")->item(0);
my $serial = '';
my $model = '';
Cisco Public
BRKNMS-2035
if ($chassis) {
63
BRKNMS-2035
Cisco Public
64
Tip 6
Importing Existing IPSLA Collectors
Tip 6 Importing Existing IPSLA Collectors

Scenario
Someone deployed IPSLA collectors onto a device without using the
Cisco Prime LMS IP SLA performance management feature
[i.e., Used another tool; typed in through terminal emulator; etc.]
We would like to get the IPSLA collectors monitored within LMS without
deleting and re-adding the collectors on the device
Solution
Use the LMS CLI utility for importing existing IPSLA collectors
BRKNMS-2035
Cisco Public
66
Introducing the IPM CLI Utility
# /opt/CSCOpx/bin/ipm importcollector help

importcollector
: It imports the collectors whose details are present in the specified file or from the specified source devices.
Usage
argumentFile]
: ipm importcollector -u userid -p password [-m email] {-file filename | -source (sourceDisplayNames|All) [-oper OperationRttTypeName|All]} [-input
-u
: specifies the CiscoWorks user name
-m
: specifies an email address to send the results
-p
: specifies the password for the CiscoWorks user name
-file
: file containing the collector details which need to be imported
-source
: specifies all,one or more source display name(s) as a comma-separated list.
-oper
: specifies all,one or more operation name(s) of RTTType as a comma-separated list
Use following Operation Name
for
"-oper" option
Echo
To Import Echo Operations
UDPEcho
To Import UDPEcho Operations
PathEcho
TCPConnect
UDPJitter
DLSW
DHCP
FTP
VOIP
RTP
ICMPJitter
EthernetPing
EthernetPingAutoIPSLA
EthernetJitter
EthernetJitterAutoIPSLA
HTTP
DNS
Video
-input
To Import PathEcho Operations

To Import TCPConnect Operations
To Import UDPJitter Operations
To Import DLSW Operations
To Import DHCP Operations
To Import FTP Operations
To Import GatekeeperRegistrationDelay and CallSetupPostDialDelay Operations

To Import RTP Operations
To Import ICMPJitter Operations
To Import EthernetPing Operations
To Import EthernetPingAutoIPSLA Operations

To Import EthernetJitter Operations
To Import EthernetJitterAutoIPSLA Operations

To Import HTTP Operations
To Import DNS Operations
To Import Video Operations
: text file containing arguments to the command
Copyright (C) 1998 - 2012 Cisco Systems, Inc. All rights reserved.
BRKNMS-2035
The importcollector
Argument Will Allow Us to Import
Some or All of the Configured
Collectors on the Device
Cisco Public
67
Importing the Collectors

# /opt/CSCOpx/bin/ipm importcollector u admin p admin source rtpnml-2001
Importing collectors from device(s) may take some time.
Please wait ...........
<ipm> INFO -
---------------------------------------------------------------------SUMMARY OF IMPORT COLLECTOR STATUS FROM DEVICE(s)
---------------------------------------------------------------------Number of Collectors Imported
: 2
New Collectors that Will Appear in LMS
Number of Collectors Filtered
: 2
Collectors that Already Exist in LMS
Number of Collectors Not Imported : 0

Number of adhoc devices added
: 0
---------------------------------------------------------------------<ipm> INFO - Done with the execution of the command.
Without the oper Option, All Existing

Collectors Will Be Imported
SUMMARY
========
Using oper, We Can Specify that Only

details
Collectors Using Certain Operations Will
Be Imported
Successful: ipm importcollector: ImportCollector operation completed.
Please see ipmcli.log and ipmserver.log files for more

BRKNMS-2035
Cisco Public
68
Viewing the Results
Collectors Appear in the Collector List

You Can Run Reports, Graph, and
Monitor the Imported Collectors as You
Would a Collector Provisioned by LMS
BRKNMS-2035
Cisco Public
69
Viewing the Results (Cont.)
BRKNMS-2035
Cisco Public
70
Tip 7
Creating Custom Config Templates
Tip 7 Creating Custom Config Templates

Scenario
W Junior engineers push configs wed like to make the work-flow easier with less
opportunities for error
W We like NetConfig and its templates, but they are pre-made and dont fit our model
100%
W We want to develop our own templates and allow users to pick from choices without
possibility of fat-fingering input
Solution
LMS 4.2 has a Template Center feature create custom templates that prompt
users for input (string, menu select) and also limits a users ability to change
command syntax
In this example, well push a Device Management configuration standard that
includes Syslog and NTP server and Device Location settings.
BRKNMS-2035
Cisco Public
72
Step 1 Build the Template
Templates can be built with the LMS UI

(Templazer) or via a CLI/XML method (see Extras
slides for last years example.

LMS UI Method Go to Conguraon Menu, Tools
Secon, Template Center sub-menu and CLI
Template Creaon opon
BRKNMS-2035
Cisco Public
73
Dene a Name, Type and OS at a minimum.

Descripon and Help Descripon are oponal.
BRKNMS-2035
Cisco Public
74
Pick the Device Type appropriate for

the template.
Sub-types are possible by expanding
the individual opons.
BRKNMS-2035
Cisco Public
75

Dene the CLI components of the Template.
2 Schools of thought:
Build the template dening each variable serially or
Build the whole template dening all variables in one step
BRKNMS-2035
Cisco Public
76

Dene the variable Name, Type, Display Label, Help
Descripon and if it is required
BRKNMS-2035
Then click the arrow next to the row name

Cisco Public
77

Variable Types can be String, Integer or IPv4Address.
Integer type Variables can have oponal Ranges (from/to).
Validaon Expression can take Regex denions.
BRKNMS-2035
Cisco Public
78
BRKNMS-2035
Cisco Public
79

In this example well use Integer type for the Regional NTP Server with
values from 1 to 3.
This will allow us to also use If/Then condionals against the variable
in the CLI Template later.
BRKNMS-2035
Cisco Public
80

In the example the Device Locaon variable, DEVLOC, is dened with a
Regex Validaon Expression that requires 4 digit locaon code with 2 digit
oor and 3 digit rack value
BRKNMS-2035
Cisco Public
81

All variables dened
BRKNMS-2035
Cisco Public
82
Oponally review the users data input perspecve

by clicking Form View
BRKNMS-2035
Cisco Public
83
Review of CLI Content
service timestamps log datetime msec localtime show-timezone

service password-encryption
!
no ip http server
!
logging $RSYSLOG
logging syslog-corp
!
snmp-server location $DEVLOC

#INTERACTIVE
<MLTCMD> banner login @
This is device $(hostname), located at $DEVLOC

This is a device on a protected network.
Blah blah blah (legal mumbo-jumbo)
ONLY authorized users are allowed.
#if( $RNTP eq "1" )

ntp server ntp-us
#elseif ($RNTP eq "2")
BRKNMS-2035
Cisco Public
84
BRKNMS-2035
Cisco Public
85
BRKNMS-2035
Cisco Public
86
BRKNMS-2035
Cisco Public
87
Step 2 Assign Template to User
Note: Administrator-level users get ALL available template assigned by default. You
only need this funcon for non-admin users.
BRKNMS-2035
Cisco Public
88
Step 3 Deploy the Template
BRKNMS-2035
Cisco Public
89
BRKNMS-2035
Cisco Public
90
BRKNMS-2035
Cisco Public
91

Select individual devices and resolve variables/parameters

Note the response to an invalid input.
BRKNMS-2035
Cisco Public
92
BRKNMS-2035
Cisco Public
93
All variables entered
BRKNMS-2035
Cisco Public
94
BRKNMS-2035
Cisco Public
95

Complete Job Schedule opons
BRKNMS-2035
Cisco Public
96
BRKNMS-2035
Cisco Public
97
Tip 8
Advanced Baseline Templates
Tip 8 Advanced Baseline Templates

Scenario
Wed like to disable the linkDown / linkUp SNMP traps on all access ports
We still want these messages on important trunk links
Solution
Use LMS Configuration Baseline Compliance to match ports that are
configured for switchport mode access and then configure
no logging event link-status
BRKNMS-2035
Cisco Public
99
Conguraon >
Compliance /
Compliance Templates >
Templates

Create an Advanced Mode
Template, Provide a Name and
Select Appropriate Device Type(s)
BRKNMS-2035
Cisco Public
100
Create a Command Set

that Is a Prerequisite
Checking for Any Type of
Ethernet Interface with
Switchport Mode Access in
the Block
BRKNMS-2035
Cisco Public
101
Create a New Command Set

that Has Prerequisite of the Earlier
Command Set

This Time We Are Checking for
Existence of No Logging Event Link-
Status
BRKNMS-2035
Cisco Public
102
With the Template Run Non-

Compliant Devices Can Have a
Remediaon Job Deployed to
Them
BRKNMS-2035
Cisco Public
103
Tip 9
Using Smart Interactions
Tip 9 LMS Smart Interactions

Scenario
LMS reports a problem in the network
We want to take the context LMS has learned and use that to search Cisco for
a solution or engage the TAC
Solution
Use the Smart Interactions capabilities within LMS
Real-time access to Cisco Support Community contextual access for
discussion forum with networking experts
Integrated Cisco Service Request
management automates the service request process, attaches key info
needed for faster case resolution
BRKNMS-2035
Cisco Public
105
Getting Smart With LMS
Smart Interacons opons appear

in relevant places where context
such as alert data can be used to
search Cisco Support Community
or open a service request.
BRKNMS-2035
Cisco Public
106
Search Cisco Support Community

Find exisng relevant content or
post a new queson to get help
from experts in real-me.
BRKNMS-2035
Cisco Public
107
Still Need Help? Open a Service Request

W Any relevant event context
will be automacally
imported
W Service Request tool
automacally fetches
contract informaon using
the devices serial
W Aach show tech, cong
dis, events, or any le you
want
BRKNMS-2035
Cisco Public
108
Manage Case Data Within LMS
View and update cases from

within LMS
BRKNMS-2035
Cisco Public
109
Tip 10
Using Performance Management for Custom
MIB Objects
Tip 10 Using Performance Management for

Custom MIB Objects
Scenario
You run OSPF in your network, and you want to be able to monitor the number of
times the Shortest Path First (SPF) algorithm is run. Too many runs can indicate a
network stability problem.
Solution
Use the LMS 4.2 performance management feature; it has pre-built capabilities for
CPU, Memory, Interface and Errors
Well extend it to monitor OSPF SPF runs
Load the OSPF-MIB into LMS, then define a custom template for monitoring the
ospfSpfRuns object. Define a custom poller to monitor this object for all routers
across all OSPF areas. The results can be graphed and reports can be run to see
where network stability issues may exist.
BRKNMS-2035
Cisco Public
111
Loading the OSPF-MIB
Place the OSPF-MIB.my and

RFC1213-MIB.my Files into
NMSROOT/hum/mibmanager/
mibcompiler/mibs.
BRKNMS-2035
Cisco Public
112
Loading the OSPF-MIB (Cont.)
All of the MIBs Listed in the

IMPORTS Clause Must Be
Included in the mibs
Subdirectory
SNMPv2-CONF Already Exists,
So Only RFC1213-MIB Is
Required
BRKNMS-2035
Cisco Public
113
Loading the OSPF-MIB (Cont.)
Browse to the OSPF-MIB

Do NOT Explicitly Load the
Dependent MIBs (i.e. the
RFC1213-MIB)
BRKNMS-2035
Cisco Public
114
Building a Template
Create a New Template for the

ospfSpfRuns Object
BRKNMS-2035
Cisco Public
115
Building a Template (Cont.)
Select the ospfSpfRuns Object from

the Free
The Object Is Located Under
ospfMIB >
ospfAreaTable >
ospfAreaEntry
(Or You Can Search for It by Name)

BRKNMS-2035
Cisco Public
116
Defining a Custom Poller
Create a New Poller to Make Use

of Our New OSPF Template
BRKNMS-2035
Cisco Public
117
Defining a Custom Poller (Cont.)
Select the device groups

selector (Routers, for Example)
as well as the OSPF SPF
Monitor Template
BRKNMS-2035
Cisco Public
118
Viewing the Poller Data
Once the Poller Is Active, Portlets Can

Be Added to the LMS Dashboard to
Graph the Data
BRKNMS-2035
The Histo - Graph It Portlet Is a

Good Way to View Historical Data or
Compare Two Devices with Each
Other
Cisco Public
119
Viewing the Poller Data (Cont.)
The Live - Graph It Portlet Gives

an Instant View to the Data on a
Specific Device
BRKNMS-2035
Cisco Public
120
Reporting on the Custom Poller
A Report Can Be Built to View the

SPF Runs Across All Devices
BRKNMS-2035
Cisco Public
121
In Conclusion
LMS has gone through many UI and functional changes
We hope youve enjoyed these LMS Tips
Realize that LMS is a diverse product suite with many features
Use these to spur other ideas for monitoring in your unique environment
Come by the NOC or request a Meet The Engineer session with either of
us for additional 1-on-1 time
BRKNMS-2035
Cisco Public
122
Monday
Other NMS Sessions
If you like this one, you might like some of these:
Tuesday
Monday
Session
Title
BRKNMS-2515
A Difference-Maker for Operating Cisco Collaboration Services Proactive Problem Management
BRKNMS-2658
BRKNMS-3043
Securely Managing Your Networks with SNMPv3

Advanced Performance Measurement for Critical IP Traffic with Cisco IOS IP Service Level
Agreements
BRKNMS-1037
Cisco Unified Communications Management Suite Methodology and Best Practices
BRKNMS-3021
CCSNMS-1903
Advanced Cisco IOS Device Instrumentation

Customer Presentation: Learn How Human Kinetics Uses a New Cisco Solution to Dramatically
Improve Network and Security Operations
PSONMS-1038
Cisco Prime for Enterprise Innovative Network Management
BRKNMS-1032
Network Management KPI's
BRKNMS-3132
Advanced NetFlow
BRKNMS-2035
Ten Cool LMS Tricks to Better Manage Your Network
Advanced Cisco IOS Device Instrumentation

BRKNMS-3021
Source: Placeholder for Notes is 18 points
Advanced DHCP and DNS Deployments
BRKNMS-2640
BRKNMS-2035
Cisco Public
123
Monday
Other NMS Sessions
If you like this one, you might like some of these:
Thursday
Wednesday
Session
Title
BRKNMS-2512
Moving Cloud from hype to realty: Delivering Cloud using management architecture
BRKNMS-2031
SYSLOG Design, Methodology and Best Practices
PSONMS-1038
BRKNMS-2514
Cisco Prime for Enterprise Innovative Network Management

Performance Assurance: An integrated Approach to Managing Service Delivery in Enterprise
Networks
BRKNMS-2513
Best practices for cloud automation with Cisco Intelligent Automation software
BRKNMS-2202
Ethernet OAM Technical Overview and Deployment Scenarios
BRKNMS-2030
Onboard Automation with Cisco IOS Embedded Event Manager
BRKNMS-1036
Simplify Network Management and Reduce Operational Costs with Cisco Prime
BRKNMS-2511
Cisco Videoscape Management Solution
BRKNMS-2031
SYSLOG Design, Methodology and Best Practices
BRKNMS-1035
The NOC at CiscoLive
BRKNMS-2035
Cisco Public
124
BRKNMS-2035
Cisco Public
This p was deprecated for a newer one.

This process is sll valid, however.
Bonus Tip 1
Dynamic User Tracking
Tip 5 Dynamic User Tracking

Scenario
Users enter and leave the network throughout the day.
User Tracking acquisition is only picking up a small number of users
You want to be able to capture when all users connect and disconnect from the
network
Solution
Enable Dynamic User Tracking to provide the most up-to-date information for
network administrators and help desk users
Relies on CISCO-MAC-NOTIFICATION-MIB
Device/Image Support:
hp://tools.cisco.com/ITDIT/MIBS/AdvancedSearch?MibSel=250091

BRKNMS-2035
Cisco Public
127
Obtaining End Host Entries Dynamically
Campus Manager
LMS UT Processes
cmnMacChangedNotification
Traps
Dynamic Updates Are Written to
the UT Database in Real-Time
Switch Sends a
cmnMacChangedNocaon Trap
User Connects
BRKNMS-2035
Cisco Public
128
Configuring Switches for Dynamic Updates
Default Trap Port Is UDP/1431
LMS Uses cwcli to Deploy the Trap

Configuration to Switches
Traps Can Also Be Forwarded to
LMS from DFM or HPOV
BRKNMS-2035
Cisco Public
129
Verifying Dynamic Updates

Switch Sends a
cmnMacChangedNocaon Trap
CiscoLive! Vendor
Connects
UTLite Packet Containing

Username, IP, and MAC
BRKNMS-2035
Cisco Public
130
Bonus Tip 2
This p was deprecated for a newer

version that uses the Web UI as a
Templazer versus the XML/CLI method
that we described in 2011.
Creating Custom Config Templates
Tip 7 Creating Custom Config Templates

Scenario
W Junior engineers push configs wed like to make the work-flow easier with less opportunities for
error
W We like NetConfig and its templates, but they are pre-made and dont fit our model 100%
W We want to develop our own templates and allow users to pick from choices without possibility of
fat-fingering input
Solution
LMS 4.2 has a Template Center feature create custom templates that prompt users for input
(string, menu select), but limits their ability to change command syntax
Requires some XML familiarity
Cisco will be releasing a Templatizer add-on to LMS to help with template creation until then
import an existing device and use it as a framework for a template
In this example, well push a Device Management standard that includes Syslog and NTP servers
that vary based on region
BRKNMS-2035
Cisco Public
132
Step 1 Find a Device that We Can Template
Conguraon > Tools / Template Center > Import

BRKNMS-2035
Cisco Public
133
Once You Can View the Template

Device Cong, Remove Non-Essenal
Cong Components
BRKNMS-2035
Cisco Public
134
Turn Arguments into Variables with

${VARIABLE}
BRKNMS-2035
Cisco Public
135
Select Plaorm and Device Type(s)
BRKNMS-2035
Cisco Public
136
Dene Conicng Features, If Any
BRKNMS-2035
Cisco Public
137
Dene Template Details Such as

Name, Descripon, Version, Place in
Network and Type
BRKNMS-2035
Cisco Public
138
Go to Manage, then Select the New

Template and Export

Load Resulng Text File into Text/XML
Editor of Your Preference
BRKNMS-2035
Cisco Public
139
It Is Convenient If Your Text/XML

Editor Supports Hierarchical Layout and
Expanding/Collapsing Branches
BRKNMS-2035
Cisco Public
140
Add New Entries at This

Level
Collapse the
<device-ltering-details>
Level to See More Specic
Informaon
BRKNMS-2035
Cisco Public
141
Add in a <parameter-metadata> Block,

as Seen Here

Make Sure to Match cliName Value
with the Reference Below
Custom Defined
Parameters Go Here
BRKNMS-2035
Cisco Public
142
The Highlighted Block Represents a

Mandatory String Input Block for
System Locaon that Is Not Global
(Requires Input for Each Device)
BRKNMS-2035
Cisco Public
143

Mandatory Menu Select Block for
Regional Syslog Server that Is Not
Global
(Requires Input for Each Device)

The Name Parameter,
REGIONALSYSLOG, Needs to Match $
{variable} in clicommand Below
BRKNMS-2035
Cisco Public
144

Mandatory Menu Select Block for
Corporate Syslog Server that Is Global
(One Input for All Devices in Job)

The Name Parameter, CORPSYSLOG,
Needs to Match ${variable} in
clicommand Below
BRKNMS-2035
Cisco Public
145
Parameters for Local and Global NTP

Selecons
BRKNMS-2035
Cisco Public
146
Import the Newly Modied

XML File

Conguraon >
Tools / Template Center >
Import
BRKNMS-2035
Cisco Public
147
Import by Cong Template, Browse to

the XML File on Your Local System and
Click Finish
BRKNMS-2035
Cisco Public
148
Return to the Main Secon and Select

Deploy

Select the Updated Management
BRKNMS-2035
Standard Template and Next
Cisco Public
149
Select the Devices to Receive the

Template, then Next
BRKNMS-2035
Cisco Public
150
Resolve the Global and Device-Specic

Variables

Opons Include Manual UI Selecon or
Import of a CSV that Includes All Values
BRKNMS-2035
Cisco Public
151
The Select Menu Opons Can Be

Seen, When Expanded
BRKNMS-2035
Cisco Public
152
With All Variables Resolved
BRKNMS-2035
Cisco Public
153
If Any Addional, Ad-Hoc Conglets Are

Necessary, Enter Them Here
BRKNMS-2035
Cisco Public
154
Congure Job Properes, as Normal
BRKNMS-2035
Cisco Public
155
Selecting the Preview CLI option allows us to view the variable

substitutions, before deployment
BRKNMS-2035
Cisco Public
156
This p was deprecated for a newer one.

Bonus Tip 3
Software Image Management Automation
Tip 8 Software Image Management

Automation
Scenario: We have several devices requiring software image upgrades.
We prefer to have the senior admins specify the job characteristics and
the junior admins execute the work with minimal user-input
Solution Use LMS Config/Software Image Management in Advanced
Mode to supply a custom-defined user input file as the basis for a job
BRKNMS-2035
Cisco Public
158
The selected image and storage media is validated and verified for
dependencies and requirements based on the device information that you
have provided at the time of adding devices to the Device and Credential
Repository and the device data that is collected by the inventory.
The images that you want to distribute must be available in the Software
repository.
You can use this method to upgrade the System software on all Software
Management supported devices. You can also upgrade module software
on those modules which have a management IP address.
The modules/interfaces that do not have a management IP address
cannot be upgraded using this method.
BRKNMS-2035
Cisco Public
159
An input file that contains the details of the device and image must be available
in this directory:
On Solaris:
/var/adm/CSCOpx/files/rme/swim/advdistinput
On Windows:
<NMSROOT>/files/rme/swim/advdistinput
The input file must contain the information in CSV format and all the fields are
mandatory:
device_display_name,image_in_repository,flash_destination,module_identifier
For example:
Rtr1750,c1700-sy56i-mz.121-24.bin,flash:1,0
BRKNMS-2035
Cisco Public
160
BRKNMS-2035
Cisco Public
161
Navigate to
Conguraon
> Tools / Soware
Image Management > Soware D
istribuon
Cisco Public
BRKNMS-2035
162
Select a Distribuon Method of

By Devices [ Advanced]
BRKNMS-2035
Cisco Public
163
Specify the CSV Import File
BRKNMS-2035
Cisco Public
164
BRKNMS-2035
Cisco Public
165
Select Verify
BRKNMS-2035
Cisco Public
166
Review the Prequalicaon

Checks

Warnings May Indicate Insucient
RAM and/or Flash
BRKNMS-2035
Cisco Public
167
SW Updates Can Run in Parallel or Series

Parallel Runs with 15 Threads by Default

Make SURE You Understand the Topology
and Impact, Especially If Reboong Aer Download

Running in Series May Be Safer and Allow Re-Order
BRKNMS-2035

Cisco Public
168
Complete Your Online

Session Evaluation
Give us your feedback and you
could win fabulous prizes.
Winners announced daily.
Receive 20 Passport points for each
session evaluation you complete.
Complete your session evaluation
online now (open a browser through
our wireless network to access our
portal) or visit one of the Internet
stations throughout the Convention
Center.
BRKNMS-2035
Dont forget to activate your

Cisco Live Virtual account for access to
all session material, communities, and
on-demand and live activities throughout
the year. Activate your account at the
Cisco booth in the World of Solutions or visit
www.ciscolive.com.
Cisco Public
169
Final Thoughts
Get hands-on experience with the Walk-in Labs located in World of
Solutions, booth 1042
Come see demos of many key solutions and products in the main Cisco
booth 2924
Visit www.ciscoLive365.com after the event for updated PDFs, ondemand session videos, networking, and more!
Follow Cisco Live! using social media:
Facebook: https://www.facebook.com/ciscoliveus
Twitter: https://twitter.com/#!/CiscoLive
LinkedIn Group: http://linkd.in/CiscoLI
BRKNMS-2035
Cisco Public
170
BRKNMS-2035
Cisco Public

BRKNMS 2035

Uploaded by

Copyright:

Available Formats

You might also like

BRKNMS 2035

Uploaded by

Document Information

Original Title

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

BRKNMS 2035

Uploaded by

Copyright:

Available Formats

Ten Cool LMS Tricks to Better Manage

2012 Cisco and/or its affiliates. All rights reserved.

2012 Cisco and/or its affiliates. All rights reserved.

Meet the Engineer

2012 Cisco and/or its affiliates. All rights reserved.

2012 Cisco and/or its affiliates. All rights reserved.

Cisco Prime LMS

The LMS 4.2 Paradigm

2012 Cisco and/or its affiliates. All rights reserved.

Fine Tuned for Operational

2012 Cisco and/or its affiliates. All rights reserved.

Intuitive Getting Started Wizard

Surefire way to quickly manage your

2012 Cisco and/or its affiliates. All rights reserved.

Dynamic and Powerful UI

2012 Cisco and/or its affiliates. All rights reserved.

Easy Task-Driven Navigation

2012 Cisco and/or its affiliates. All rights reserved.

Deploying Cisco Prime LMS 4.2: Virtual Appliance

Log in to vSphere Client (pointed to either

Choose File > Deploy OVF Template.

3. Upload .ova stored locally or

2012 Cisco and/or its affiliates. All rights reserved.

Deploying Cisco Prime LMS 4.2: Virtual Appliance

2012 Cisco and/or its affiliates. All rights reserved.

If the .ova file is properly

You can see the

Flexible Configuration Templates

2012 Cisco and/or its affiliates. All rights reserved.

Built-In Performance Management

One Place for Making

Monitoring Dashboard Automatically Populated

Web 2.0 Portal for Portal Customization

2012 Cisco and/or its affiliates. All rights reserved.

2012 Cisco and/or its affiliates. All rights reserved.

Consolidated Report Center

2012 Cisco and/or its affiliates. All rights reserved.

Tip 1 Tips for a Better Device Discovery

2012 Cisco and/or its affiliates. All rights reserved.

Standard Discovery Settings

Standard Discovery uses CDP

2012 Cisco and/or its affiliates. All rights reserved.

Use the Credenal Set policy

Credential Set Configuration

Doing this ensures funcons

Most important sengs

1. Create one or more

2012 Cisco and/or its affiliates. All rights reserved.

Going Beyond the Defaults

More on Device Discovery at

Enable Sysname for

2012 Cisco and/or its affiliates. All rights reserved.

Organize new devices for easy

Tip 2 Dynamic Device Groups

2012 Cisco and/or its affiliates. All rights reserved.

Create a Dynamic Device Group

2012 Cisco and/or its affiliates. All rights reserved.

Make sure Automac is selected so the