04-06-2022 04:30 PM - edited 04-06-2022 04:45 PM
I try to migrate ASA 5555-X with 9.14(3) to Firepower 2130 with ASA image.
Is best to do more system:running configue and copy and paste the config to the new firewall or better to do backup and restore from the ASDM?
I'm worry that if doing copy and paste will not carry information like the certificates and VPN setting.
04-06-2022 11:45 PM
If the same version of ASA Code you can do config restore.
04-07-2022 04:34 AM
Yes. I upgraded to the same code.
04-07-2022 12:25 AM
if you have vpn cert based tunnel in that case most likely you have your ASA identity cert too. in order for the migration you need to import the identity cert from ASA.
The command is
crypto ca import <trustpoint> pkcs12 <passphrase>
once exported you need to import the cert (identity cert) into your new firewall.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide