Connecting to the IDS Device Manager

The sensors contain a web server that’s running the Device Manager application. For security reasons, the web server uses an encryption protocol known as Transaction Layer Security (TLS), which is closely related to Secure Socket Layer protocol (SSL). When you enter the URL to the sensor in the address bar, the web browser attempts to connect to the sensor using TLS or SSL. You can disable the security feature by selecting Device | Sensor Setup | Network, where Device is the Area, Sensor Setup is the Sub-Area, and Network is the TOC item.

When you connect to the Device Manager application, you’re presented with a security alert dialog box warning that the certificate being used by the sensor has been issued by an unknown Certificate Authority (CA), as shown in Figure 25-5. The sensor generates its own certificate, so it isn’t a trusted CA. To connect to the sensor, you must choose to ignore this warning. To prevent this security alert dialog box from being presented each time you connect to the sensor, you must configure your web browser to trust the sensors as a CA.

Figure 25-5: Security warning dialog box

The IDS Device Manager application uses cookies for session tracking to provide a consistent view. Device Manager uses only temporary session cookies, not stored cookies. You must enable cookies on your web browser to use the Device Manager application.

When you connect to the Device Manager, you’re prompted for a user name and a password. The default user name is netrangr and the password is attack. The user name and the password can be changed once access to the Device Manager is accomplished.