08-12-2016 02:00 AM
We have just installed a set of 5585 firewalls running multiple virtual contexts.
What I want to do is to back up the system context (the other contexts are managed separately)
Adding the device in Prime works perfectly and the configuration is backed up - almost.
What doesn't appear to be backed up are the security keys. I think either the system is hiding them or it is not running the more running-config command to export the keys.
Any suggestions on how to get this to work.
Thanks
Giles
08-12-2016 02:38 PM
You're right - it will not backup keys in plain text.
You can run a scheduled cli job using EEM or manually via ad hoc command to send a full backup (including keys certificates etc.) to an external server (ftp etc.) using the "backup" command.
http://www.cisco.com/c/en/us/td/docs/security/asa/asa-command-reference/A-H/cmdref1/b.html
09-30-2016 02:55 AM
Just as a followup - EEM doesn't work in multiple context mode - so it will have be manual backups....
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: