Osirium for a Cisco Infrastructure

Integrating Osirium’s PxM Platform with a Cisco Environment

Osirium’s Privileged User Management is a great fit for a busy team managing a Cisco Infrastructure. In particular Osirium has range of pre-built tasks that allow non-privileged team members to make common changes associated with staff and office moves.

Osirium provides Enterprise Class Password Lifecycle Management across the range of Cisco operating systems and devices. It provides SSO and Task functionality. SSO is used to get the right users to the right devices using the right account of role. The Task Automation is used for quick, consistent, error-free results without the need to create accounts or grant privileges. Tasks can be integrated with ticketing systems and customised to limit access to particular ports.

Most infrastructures use ‘best of breed’ components so real networks are unlikely to be a pure Cisco play. Osirium supports a wide range of vendors and allows a seamless blend of SSO and Tasks across the infrastructure, servers, workstations and the hybrid cloud.

Osirium in a Cisco Environment
Osirium in a Cisco Environment

Osirium in a Cisco Environment
find out in 5 minutes

The development and support teams get together to present how Osirium’s PxM Suite can now handle single sign-on to MS SQL for Microsoft’s SQL Management Studio.

Launch Video

Supported Versions

Cisco IOS, IOS-XE and IOS-XR, Cisco NX-OS for SSH, Telnet, HTTP and HTTPS protocols.

Standard Tasks

Here’s a taste of Tasks that currently ship with our Cisco Templates. All these tasks can be customised and combined to build tasks that match your business logic and operational needs:

VLAN and Operational Tasks

  • ARP Flush
  • Create Backup – also used as a sub task to create restore points
  • Set Default Gateway
  • Set Port Speed and Duplex – also used as a subtask with other port operations
  • Set to Printer Port – sets characteristics and VLAN for printing
  • Set Port Unused – sets port for default characteristics and disables
  • Set Port to User+VOIP – sets port characteristics and adds to the User and VOIP VLANs
  • Set Port to User – sets port characteristics and add to the User VLAN
  • Show Default Gateway
  • Show DNS Settings
  • Show NTP Settings
  • Show SSH Settings

Diagnostics

  • Device Audit – used to check that the device has all the correct accounts in place and to list all other accounts
  • Create Techout – run a series of diagnostics and report back as a text file
  • Show Default Gateway
  • Show DNS Settings
  • Show NTP Settings
  • Show SSH Settings

Long Term Management

  • Create Backup – also used as a sub task to create restore points
  • Device Audit – used to check that the device has all the correct accounts in place and to list all other accounts
  • Create Techout – run a series of diagnostics and report back as a text file
  • Download Files – download backups and techouts
  • Regenerate Account Passwords – apply new Enterprise Class passwords to all managed and password managed accounts

It's very important to protect the configuration of some ports, for example:

Uplink Ports

Uplink Ports

Server Based Ports

Server Based Ports

Management Network Ports

Management Network Ports

Confidential VLANs

Confidential VLANs

With Osirium’s PxM Platform you can configure port ranges that are allowable inputs to tasks. This allows for task delegation with no risk of delegates interfering with critical configurations. Furthermore, the PxM Platform takes a backup before each change so that there’s a rollback from any mistake.

Solving the Infrastructure Password Problem

Because the infrastructure can have hundreds of network switches, tens of routers and all the associated firewalls and content protection it’s very convenient to use the same account credentials across all similar devices. The trouble is, that as time goes on more and more people get to know the passwords. At some point you can’t be sure how far this process has gone. With Osirium you can get this all under control, and have all the passwords on all the devices refreshed on schedule.

Osirium’s profile scheme means that you can grant someone access to the infrastructure, record their sessions and disable access without affecting other users and groups – great for 3rd Party and Vendor support sessions.

Osirium in a Cisco Environment

Osirium in a Cisco Environment