Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1813
Views
0
Helpful
7
Replies

Certificate for ASA FirePOWER module not found

jupcott
Level 1
Level 1

‎05-17-2017 01:49 AM - edited ‎03-12-2019 06:23 AM

Hi All

I have attached an image of an error I am getting on ASDM, which is preventing me from managing/confuring the in built Firepower module on my Cisco ASA 5506X.

I have followed Cisco's step by step instructions like for like, however I still get this message. Does anyone have a solution or recommendation?

I am running the following software verisons:

Cisco ASA 5506

ASA Version: 9.6(1)

ASDM Version: 7.6(1)

Java: Version 8 Update 131

Cheers

James

Labels:
Preview file
26 KB
0 Helpful
7 Replies 7

Marvin Rhoads
Hall of Fame
Hall of Fame

‎05-17-2017 07:40 PM

I haven't seen that error before. What version of FirePOWER are you running?

Can you also share your Java Control Panel settings for security (both the Security tab and Advanced security settings)?

0 Helpful

jupcott
Level 1
Level 1
In response to Marvin Rhoads

‎05-18-2017 12:14 AM

Hi Marvin

Please see attached file. It contains FirePower version and my Java settings.

I have IP connectivity between FirePOWER and the ASA so I know they can definitely see each other.

Do I require a later boot image for FirePOWER 6.0 or later?

When I show the dir on the ASA I have no boot image for firepower, might this be the issue?

Regards

James

Preview file
177 KB
0 Helpful

Marvin Rhoads
Hall of Fame
Hall of Fame
In response to jupcott

‎05-18-2017 02:22 AM

Once the module has been bootstrapped, the boot image is no longer needed on the ASA flash disk.

Re Java, I was asking specifically about the following two screens. Please check them also.

0 Helpful

jupcott
Level 1
Level 1
In response to Marvin Rhoads

‎05-18-2017 02:26 AM

My Java settings match yours displayed like for like.

Cheers

James

0 Helpful

Marvin Rhoads
Hall of Fame
Hall of Fame
In response to jupcott

‎05-18-2017 03:26 AM

Hmm - that's odd. I've never seen it do that with ASDM.

Can you confirm that your "show module sfr detail" indicates all is well with the module?

If it's new, I would just go ahead and re-image with FirePOWER 6.2 and see if everything clears up after that.

0 Helpful

jupcott
Level 1
Level 1
In response to Marvin Rhoads

‎05-19-2017 04:52 AM

The show module sfr detail shows all is well withg the module.

However now I get an error saying ASDM is unable to see the module, however when logged into ASDM I can ping the module and see it in the arp entries.

It seems extreamly painful to get this module working as I have the most up to date verisons of ASDM, Java, and ASA software.

I may need to raise a TAC case with Cisco for this as there seems no logic to why this isn't working

0 Helpful

Marvin Rhoads
Hall of Fame
Hall of Fame
In response to jupcott

‎05-19-2017 05:03 AM

Yes - TAC is your best course at this point.

I have done a handful of ASDM-managed modules (and several dozen FMC-managed) but have never seen this partiucular issue.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card