Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
374
Views
3
Helpful
6
Replies

FTD Backups sent to FTP Server is Failing

Go to solution
watson.james796@gmail.com
Level 1
Level 1

‎06-20-2025 07:02 AM

Good morning Team!

 

I have been tasked to investigate, why our FTD Firewall backups are failing to be sent to  out FTP server;

the local backups on the FTDs are working. Is there a way to view the failure logs of the FTDs using the FMC?

Any advise would be greatly appreciated, thanks in advance!

- James Watson

Labels:
0 Helpful
2 Accepted Solutions

Accepted Solutions

Go to solution
Aref Alsouqi
VIP
VIP

‎06-23-2025 09:02 AM

How did you configure the FMC to send the backup files to an FTP server?! maybe you meant to say SFTP? As far as I know the protocols supported for the remote backup from the FMC are SSH, SMB, and NFS. SFTP will also be supported because it used SSH port. Assuming you have an SFTP server, then the directory field must be specified, however, it would work just fine if you set the "/" because that will depend on the permissions and the landing directory configured on the SFTP server for the user "ServiceFMC". Also, the "Use for backups" tickbox has to be enabled. I'm not sure if the "test" button you see in the backup profile page does actually a complete test or only a L3 check. One thing might cause the backup to fail would be the write permissions on the SFTP server folders which is quite common, so, please check that the "ServiceFMC" user has all the permissions it needs to the root folder (as configured with the /) or specifiy the custom folder in the FMC backup profile for the user "ServiceFMC" instead of the "/".

View solution in original post

6 Replies 6

Go to solution
MHM Cisco World
VIP
VIP

‎06-20-2025 09:19 AM

Did you do right steps 

from fmc 
System > Tools > Backup / Restore

MHM

 

 

 

0 Helpful

Go to solution
watson.james796@gmail.com
Level 1
Level 1
In response to MHM Cisco World

‎06-23-2025 06:47 AM

Thanks for your help MHM!

I located the Managed Device Backup section on our FMC:

watsonjames796gmailcom_0-1750686340229.png

Does the Storage Location: /var/sf/remote-backup/   path mean that the Firewalls listed backups

will be stored there?

 

 

0 Helpful

Go to solution
MHM Cisco World
VIP
VIP
In response to watson.james796@gmail.com

‎06-23-2025 07:43 AM

For ftd mgmt by fmc 

1-We can backup directly to fmc ""/var/sf/remote-backup/""

 

2- Or backup to remote NFS storage 

https://www.cisco.com/c/en/us/support/docs/security/secure-firewall-management-center/221080-configure-remote-backup-for-fmc-using-nf.html

MHM

Go to solution
watson.james796@gmail.com
Level 1
Level 1
In response to MHM Cisco World

‎06-23-2025 08:19 AM

Thanks again MHM! 

With your help, I think I may have stumbled across an interesting finding.

When snooping around in the FMC  "System/Configuration" section, I was able to confirm the FMC to FTP server

connections are good, by running the quick test; However, I noticed that the "Directory Field" is empty this should include

the path to the storage folder on the FTP server, I also noticed that the "Use for backups" box isn't checked.

 

watsonjames796gmailcom_0-1750691967502.png

 

0 Helpful

Go to solution
Aref Alsouqi
VIP
VIP

‎06-23-2025 09:02 AM

How did you configure the FMC to send the backup files to an FTP server?! maybe you meant to say SFTP? As far as I know the protocols supported for the remote backup from the FMC are SSH, SMB, and NFS. SFTP will also be supported because it used SSH port. Assuming you have an SFTP server, then the directory field must be specified, however, it would work just fine if you set the "/" because that will depend on the permissions and the landing directory configured on the SFTP server for the user "ServiceFMC". Also, the "Use for backups" tickbox has to be enabled. I'm not sure if the "test" button you see in the backup profile page does actually a complete test or only a L3 check. One thing might cause the backup to fail would be the write permissions on the SFTP server folders which is quite common, so, please check that the "ServiceFMC" user has all the permissions it needs to the root folder (as configured with the /) or specifiy the custom folder in the FMC backup profile for the user "ServiceFMC" instead of the "/".

Go to solution
watson.james796@gmail.com
Level 1
Level 1
In response to Aref Alsouqi

‎06-24-2025 01:09 PM

Thanks again for the help everyone!

@Aref Looks like its a folder permission issue as you have stated, we are working on granting the proper write permissions

to the "serviceFMC" account. BTW yes, we are using a SFTP server LOL!

I will keep you all posted. Awesome help!!

-James Watson

Customers Also Viewed These Support Documents