14-13
Device Manager Guide, Cisco ACE 4700 Series Application Control Engine Appliance
OL-26645-02
Chapter 14 Monitoring Your Network
Using Dashboards to Monitor the ACE System and Virtual Contexts
• Certificates—Total count of SSL certificates and the count of SSL certificates that are expiring
beyond 30 days, expired, or that are expiring within 30 days. A hyperlink accesses a popup window
for you to view the SSL certificates list based on the selection, displaying the certificate name,
device name, days to expire, expiration date, and the date it was evaluated for you to determine the
days to expire. Certificates are considered expired it their expiration date is within the next day
(rounded down the next day). A hyperlink in the device name allows you to navigate to the
context-based SSL Certificate configuration page (see the “Using SSL Certificates” section on
page 9-6).
Counts are based on the selected ACE virtual context and not for all ACE virtual contexts.
This data is collected during discovery as well as during periodic monitoring polling. The timestamp
shown in the status bar indicates a varying poll time; that is, different virtual contexts were polled and
the contexts had different time stamps. The earliest time stamp of the polled virtual contexts is displayed
in the status bar.
All counts shown in the Device Configuration Summary table are based on the operational status of the
monitored objects listed above.
• Out Of Service—Indicates any status other than In Service (for example, Out Of Service, Failed, or
Disabled).
• Status not available—Indicates that DM was unable to poll the operational status of this object. The
display of this operational status could be due to polling errors or the device was unreachable. Also,
if a poll was recently initiated, this operational status could indicate that DM is in the process of
collecting data.
• Status not supported—Indicates that the device does not have the capability to provide an
operational status of this object. The display of this operational status could be due to missing
SNMP instrumentation on the ACE appliance.
Context With Denied Resource Usage Detected Table
The Context With Denied Resource Usage Detected table lists all contexts for which the resource request
is denied after reaching the maximum limit. An increase in the deny count (that is, the deny rate) will
result in the relevant context resource type to appear in this table. This data is collected by DM by using
the ACE show resource usage CLI command.
This table includes the following information:
• Context—Name of the configured context that contains a denied resource.
• Resource Type—Type of system resource in the context.
• Denies/Second—Number of denied resources (per second) as a result of oversubscription or
resource depletion.
• Total Deny Count—Number of denied uses of the resource since the resource statistics were last
cleared.
• Last Polled—Date and time of the last time that DM polled the device to display the current values.
Note This information is collected from the following MIBs: crlResourceLimitReqsDeniedCount and
crlRateLimitResourceReqsDeniedCount.
A hyperlink allows you to access the Resource Usage monitoring page to view a detailed list of resources
used and denied counts (see the “Monitoring Resource Usage” section on page 14-17).
Comments to this Manuals