Buy or Renew
Buy or Renew
NOTICE: You can now engage in the community. Learn about the great new Cisco Umbrella content.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
744
Views
0
Helpful
0
Replies

CSM Detect Out of Band Changes not working

Jasper Freeman
Level 1
Level 1

‎08-15-2019 09:35 AM

Hi,

 

Setup:

Cisco Security Manager 4.14 Build 78 SP2

ASA 5585 (multiple context mode)

ASA v9.6(2)

 

Problem:

 

I am trying to implement rules for all Interface (global ACL); however, when I do a detect out of band changes on the CSM I get an error stating the device is not supported.

No, I am not trying to setup global rules for all context, I am doing it for the interfaces within each context. It makes no sense for me to have to enter each ruleset individually in CSM. Especially when the contexts have 10 or more interfaces.

 

Command used:

     access-list GLOBAL extended permit tcp host 1.1.1.1 host 3.3.3.3 eq http

     access-group GLOBAL global

 

In the context, the command is accepted without any errors.

 

I perform the Detect out of band changes. After the CSM has checked the ASA, As soon as I select Evaluate, to evaluate the context select I receive the error that the device is not supported.

 

Earlier, an acl was created and successfully imported to the ASA using the Out of Band option.

 

What am I doing wrong?

 

Thanks in advance.

 

Regards,

 

Jasper

Labels:
0 Helpful
0 Replies 0
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card