F.Y.I
software update downloads by Firepower failing due to newer CA certificates not being present
CSCvm03931
Description
Symptom:
Downloads of software updates (system software, VDB, GeoDB, and SRU) may fail with the following error message:
Peer certificate cannot be authenticated with known CA certificates
Conditions:
The use of any of the following Firepower management platforms to download (manually, or automated / scheduled task) software updates from Cisco directly to the Firepower appliance:
Firepower Management Center
Firepower 7000/8000 Series
ASA with Firepower Services, managed locally (on-box) via ASDM
Firepower Device Manager
Workaround:
Manually download software updates from cisco.com, and then manually upload the update files to the Firepower appliance / management platform.
Further Problem Description:
Known Affected Releases: (9)
5.4.0
5.4.1
6.0.0
6.0.1
6.1.0
6.2.0
6.2.2
6.2.36.3.0
Known Fixed Releases: (6)
6.3.0
6.2.3.7
6.2.2.5
6.1.0.7
https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvm03931/?rfs=iqvred
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Rps-Cheers | If it solves your problem, please mark as answer. Thanks !