Rockwell Automation Publication 1783-UM010C-EN-P - June 2019 75
Chapter 5
Centralized Management
Overview
Local management can get cumbersome when we must manage many IFWs in
the network. A centralized management enables consistent policy enforcement
and quick troubleshooting of security incidents, with offered summarized
reports across the security deployment. A centralized interface helps
organizations to scale efficiently and manage a wide range of security devices
with improved visibility.
As explained in earlier sections, the IFW has two components: the firewall and
FirePOWER module. Each component is managed separately. FireSIGHT
Management Center manages the FirePOWER component, and Cisco
Security Manager (CSM) manages the firewall component. The following
sections provide an overview of each application.
FireSIGHT Management
Center
The Cisco FireSIGHT Management Center manages the FirePOWER
module of the IFW. FireSIGHT Management Center is the administrative
nerve center for a number of security products that incorporate FirePOWER
technology. It provides complete and unified management of firewalls,
application control, intrusion prevention, URL filtering, and advanced
malware protection. The Management Center is the centralized point for event
and policy management for the IFW platform.
The FireSIGHT Management Center provides extensive intelligence about
the users, applications, devices, threats, and vulnerabilities that exist in your
network. It uses this information to analyze your network vulnerabilities and
provides tailored recommendations on which security incidents to investigate.
Figure 18
shows examples of the types of data that can be gathered via
FireSIGHT Management Center.
To Next Page
Loading...