09-11-2017 11:46 PM - edited 02-21-2020 06:17 AM
Hi,
I have an ASA5506 with Firepower and i manage it with ASDM.
Asa version is 9.8.1, Asdm version is 7.8.1.150, Firepower version is 6.2.0.2-151
I have connected the Management interface with the Ge1/8 interface directly.
In the past, i succeed to manage Firepower with asdm. But, now, i can't login in Firepower module with ASDM, it seems that ASDM finds Firepower module during startup, cf screenshot attached.
I can ping Firepower ip with my computer.
ASDM reports that Firepower module is UP.
I can login in the SFR module with an ssh connection to the ASA.
Firepower is functionnal, all my rules of url filtering are applied.
What can be the problem?
Why ASDM can not authenticate with Firepower module?
Regards
Here is an extract of my configuration:
Result of show interfaces with a console session in the SFR module:
----------------------[ eth0 ]---------------------- Physical Interface : eth0 Type : Management Status : Enaed MDI/MDIX : Auto MTU : 1500 MAC Address : A4:6C:2A:9A:02:9F IPv4 Address : 192.168.0.253
Show interfaces of the ASA:
interface GigabitEthernet1/1 nameif outside security-level 0 ip address dhcp setroute ! interface GigabitEthernet1/2 bridge-group 1 nameif inside_1 security-level 100 ! interface GigabitEthernet1/2.2 vlan 2 nameif Print security-level 80 ip address 192.168.2.1 255.255.255.0 ! interface GigabitEthernet1/2.3 vlan 3 nameif SrvPeda security-level 80 ip address 192.168.3.1 255.255.255.0 ! interface GigabitEthernet1/2.4 vlan 4 nameif Pedagogique security-level 80 ip address 192.168.4.1 255.255.255.0 ! interface GigabitEthernet1/2.5 vlan 5 nameif Ama security-level 80 ip address 192.168.5.1 255.255.255.0 ! interface GigabitEthernet1/2.7 vlan 7 nameif Camera security-level 100 ip address 192.168.7.1 255.255.255.0 ! interface GigabitEthernet1/2.8 vlan 8 nameif WifiProfs security-level 80 ip address 192.168.8.1 255.255.255.0 ! interface GigabitEthernet1/2.20 vlan 20 nameif Management security-level 100 ip address 192.168.20.1 255.255.255.0 ! interface GigabitEthernet1/3 nameif inside_2 security-level 100 no ip address ! interface GigabitEthernet1/4 bridge-group 1 nameif inside_3 security-level 100 ! interface GigabitEthernet1/5 bridge-group 1 nameif inside_4 security-level 100 ! interface GigabitEthernet1/6 bridge-group 1 nameif inside_5 security-level 100 ! interface GigabitEthernet1/7 bridge-group 1 nameif inside_6 security-level 100 ! interface GigabitEthernet1/8 bridge-group 1 nameif inside_7 security-level 100 ! interface Management1/1 management-only no nameif no security-level no ip address ! interface BVI1 nameif inside security-level 100 ip address 192.168.0.1 255.255.255.0
09-12-2017 09:00 AM
Cisco has a newer version of ASDM I would suggest to update to the latest ASDM code and if you continue to have this issue open a ticket
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: