please see my response to your questions.
I've been asked to take advantage of an upcoming plant outage to do some firmware updates on an active/standby pair of ASA5516 protecting an ICS/OT network. These firewalls are currently running ASA 9.10(1)22, ASDM 7.10(1), and have FXOS 2.4(1.244) installed. The Firepower module is NOT being used at all - the firewall is simply working as a traditional ASA with ASDM. I haven't done an ASA firmware upgrade in a long time, and I've never upgraded one of these newer ASAs with the Firepower module.
you are using ASA 5516 (They are EOL now) these units running ASA 9.10(1)22, ASDM 7.10(1). Great. but how ASA runing FXOS 2.4(1.244) at the same time. ASA5516 can run either as ASA code or FTD code. I assume and you mentioned the Firepower sensor is not used in your ASA.
1. Do I need to bother with any upgrades to the Firepower module if its not being used at all?
2. Are there any other problems I might run into if I proceed with just upgrading the ASA and ASDM firmware as per this guide?: https://www.cisco.com/c/en/us/td/docs/security/asa/upgrade/asa-upgrade/asa-appliance-asav.html#concept_F0701C3A86854801958757CEF1E4D999
Any tips or warnings from any of you with similar experience is appreciated. Thanks in advance!
If you planning not to use the Firepower module in that case you do not need to download/no need to install the firepower module on your ASA at all. remember in your case you already running your ASA in traditional way.
these guide is very soild you would be able to upgrade both appliances. just remember first upgrade the secondary/standby first as mentioned in cisco documention. word of advise read the documenation 3 to 5 time you are confident and make sure do this change in change window
please do not forget to rate.
