08-12-2016 02:00 AM
We have just installed a set of 5585 firewalls running multiple virtual contexts.
What I want to do is to back up the system context (the other contexts are managed separately)
Adding the device in Prime works perfectly and the configuration is backed up - almost.
What doesn't appear to be backed up are the security keys. I think either the system is hiding them or it is not running the more running-config command to export the keys.
Any suggestions on how to get this to work.
Thanks
Giles
08-12-2016 02:38 PM
You're right - it will not backup keys in plain text.
You can run a scheduled cli job using EEM or manually via ad hoc command to send a full backup (including keys certificates etc.) to an external server (ftp etc.) using the "backup" command.
http://www.cisco.com/c/en/us/td/docs/security/asa/asa-command-reference/A-H/cmdref1/b.html
09-30-2016 02:55 AM
Just as a followup - EEM doesn't work in multiple context mode - so it will have be manual backups....
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide