Hi,

jmkosky01 · ‎08-02-2016

Hi Folks.
I am in the process of running up a pair of Cisco 4100 Firewalls. As part of the installation the devices run a Initial Setup Wizard where you put in IP details, change the admin password etc. These details are used by the Firewall Chassis Manager. Due to a (human) miscommunication the second device has been given a different IP range to the first device. What I would like to know if is there any way to rerun the Initial Setup Wizard or to change the details via the CLI or Chassis manager page? I have pasted a copy of the Initial Setup Wizard just so we are clear on what I am talking about.

For example:

Enter the setup mode; setup newly or restore from backup. (setup/restore) ? setup

You have chosen to setup a new Security Appliance. Continue? (y/n): y

Enforce strong password? (y/n): n

Enter the password for “admin”: <new password>

Confirm the password for “admin”: <repeat password>

Enter the system name: FTD-SSP-4100

Physical Switch Mgmt0 IP address : 10.127.56.61

Physical Switch Mgmt0 IPv4 netmask : 255.255.255.0

IPv4 address of default gateway : 10.127.56.1

Configure the DNS Server IP address? (yes/no) [n]: n

Configure the default domain name? (yes/no) [n]: n

Following configurations will be applied:

Switch Fabic=A

System Name=FTD-SSP-4100

Enforced Strong Password=no

Physical Switch Mgmt0 IP Address=10.127.56.61

Physical Switch Mgmt0 IP Netmask=255.255.255.0

Default Gateway=10.127.56.1

Ipv6 value=0

Apply and save the configuration (select ‘n’ if you want to re-enter)? (yes/no): yes

Applying configuration. Please wait.

sfurth · ‎08-15-2016

Hi,

You can try the following link on reconfiguring the mgmt ip address:

http://www.cisco.com/c/en/us/td/docs/security/firepower/fxos/fxos114/cli-config/b_CLI_ConfigGuide_FXOS_114/platform_settings.html

With kind regards,

Sjoerd

gbercsenyi · ‎10-17-2016

Hi,

I have similar problem. And I could successfuly modify the out-of-band IP. However I can not find a solution, how can I modify the hostname.

I think this should be very simple, however nowhere mentioned in any of the documentation.

Do you have any idea how could I for example re-initiate the device without loosing the configuration of the logical device (ASA)?

Is it possible to re-run the setup wizard?

Thank you,

Regards,

Gabor

gbercsenyi · ‎10-27-2016

Solution:

scope system

set name new-name

commit buffer

I was not able to found this in any Firepower documentation. But I found in the Fabric Interconnect documentation:

http://www.cisco.com/en/US/docs/unified_computing/ucs/sw/cli/config/guide/1.4.1/CLI_Config_Guide_1_4_1_chapter4.html#task_4F5115C9511C4870A30B890BF0EEFC78

I hope this may help for others with the same issue.

jsteffensen · ‎05-31-2018

Hi

We have simular problems - during the initial configuration we mistakenly - did not activate ssh and https... so we cannot remotely connect to the box.

Any chance of rerunning the initial wizzard, or any one knowing how to activate remote https access and ssh access?

Best Regards

Silvanoshi · ‎09-17-2018

Just ran into this issue and had to go all CLI Ninja on it. Figured it out though:

scope system
scope services
create ip-block <aaa.bbb.ccc.ddd> <cidr> https
create ip-block <aaa.bbb.ccc.ddd> <cidr> ssh
commit-buffer

It's really fun, when you had done that already but forgot you need to commit it to buffer.

Firepower 4100 Issue