When creating a third party SSL cert for VPN using FMC 7x do you use the Intermediate or Root certificate for the CA?Thanks, David
Forum Posts
Resolved! fs-vmw-2-sw-k9 SKU migration
Hello Cisco Community, I would like to know if the existing FS-VMW-2-SW-K9 license available in a client's Smart Licensing portal can still be used to activate a new FMCv instance. Given that Cisco has announced the End-of-Life (EOL) for the FS-VMW-2...
Hello,I've successfully configured an external syslog server on FDM, and it's receiving messages correctly. I've set the Default Action Block to send syslog messages, and those are arriving as expected on the external server (among other messages).Ho...
Hi AllWe are looking at upgrading our ASA5545 to an FTD, what is the replacement model for this? I was thinking the 1150 model.When I look at the specs it says maximum vpn peers 800, does this mean anyconnect sessions and site to site ipsec etc?The 5...
Resolved! User privilege level with Radius
Hello all, Currently I have several switches (IOS and Nexus) which use RADIUS for login. The RADIUS server is a Windows server and uses Active Directory authentication. I would like to assign the active directory users different privilege levels on t...
I plan to migrate a FMC running in vsphere to AWS. Initially I plan to: 1. Build the FMC in AWS as brand new; 2. Backup the existing FMC (running v7 already) and then restore the backup in AWS FMC; 3. Login to AWS FMC serial console to change the MGM...
I have exported an ACP and it's objects from one FMC to another.Would like to clarify how the objects are imported into the new FMC. We will have had objects – both network and port objects – on the new FMC2600 with the same name as objects in the po...
Hello everyone, I'm planning to upgrade our Cisco ASAv from version **9.10(1)42** to **9.20(3)20** directly. Current environment:- **Platform**: Cisco ASAv (virtual appliance) Questions:1. Is a **direct upgrade** from 9.10 to 9.20 supported and sta...
Introduction Cisco Security Cloud Control Firewall Manager is a part of the Cisco Security Cloud Control platform where we can manage ASAs, FTDs, and many other Cisco security products. SCC Firewall manager does have some "nice to have" notifications...
Good afternoonWe downgraded our FTD's from 7.6.0 to 7.4.2.2 - due to instability, bugs and snort 3 issues. We factory reset the FTD's and rebuild it successfully. Configuration is the same as before. FMC is stable.FTD1 - we receive the following warn...
We are running a couple of virtual FTDs in Azure and noticed when we have a port group with several tcp/udp ports listed and added ICMP-Any, pings were not being allowed through. But once we removed the ICMP-Any from the port group and added as a sep...
Resolved! FTD to remote FMC register problem
i am trying to register my FTD to my remote FMC by this guide with manual methodhttps://www.cisco.com/c/en/us/td/docs/security/firepower/quick_start/fp2100/firepower-2100-gsg/ftd-fmc-remote.html#task_imq_yw3_b3bbut when i am adding my FTD to FMC i go...
Hello, I have a couple of ASAs 5515 on HA cluster, I configured on the active unit failover key xxxxxxxxxxxxxkey config-key password-encryption xxxxxxxxxxxxxxx However the config syn failed and I lost the HA cluster, the configured one worked for a c...
I have a very strange issue. I have several firewall pairs, each running active/standby. I am in the process of upgrading firmware to 9.7(1)21. Once both firewalls have been rebooted they both in the active state because they loose failover connectio...
Hello everyone i want to configure identity policy on FMC with Active Directory Kerberos, on guide written The Realm you select must be configured with an AD Join Username and AD Join Password to perform Kerberos captive portal active authentication....
