Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
594
Views
0
Helpful
5
Replies

Firewall Migration Tool 5.01 - SSL: WRONG_VERSION_NUMBER

seahorse
Level 1
Level 1

‎11-20-2023 03:10 AM

We use the Cisco Firewall Migration Tool 5.01 on a MS Windows Server and cannot start the the tool.
Error message: [INFO | cco_login.py] > EULA check for an user
DEBUG | common.py] > session table records count:1
[INFO | common.py] > Telemetry push : Unable to connect to SSE Cloud server https://sign-on.security.cisco.com HTTPSConnectionPool(host='sign-on.security.cisco.com', port=443): Max retries exceeded with url: / (Caused by SSLError(SSLError(1, '[SSL: WRONG_VERSION_NUMBER] wrong version number (_ssl.c:1125)')))

seperate access to https://sign-on.security.cisco.com from the windows server is possible, but not from the FMT. Within there is no window opening to type in the user/credentials for sign-on.

It is chrome browser used.

Do you have a hint how to fix the following error?

Thanks

0 Helpful
5 Replies 5

Marvin Rhoads
Hall of Fame
Hall of Fame

‎11-20-2023 03:40 AM

Does your environment use a proxy server? That could cause a problem like this.

I just did a fresh download of the 5.0.1 version on my Windows Server 2022 and it launches and runs fine for me.

0 Helpful

marce1000
VIP
VIP

‎11-20-2023 03:48 AM

 

 - It relates to the underlying Python (version) being used by  the firewall migration tool :
      (FYI) : https://support.chainstack.com/hc/en-us/articles/9117198436249-Common-SSL-Issues-on-Python-and-How-to-Fix-it

 M.



-- Each morning when I wake up and look into the mirror I always say ' Why am I so brilliant ? '
    When the mirror will then always repond to me with ' The only thing that exceeds your brilliance is your beauty! '
0 Helpful

Marvin Rhoads
Hall of Fame
Hall of Fame
In response to marce1000

‎11-20-2023 03:56 AM

I doubt it is the FMT's included Python as it includes all the necessary executables and supporting libraries in a self contained installer. I just now verified 5.0.1 is working fine on another PC - neither of which had any Python previously installed.

0 Helpful

seahorse
Level 1
Level 1

‎11-20-2023 04:15 AM

Thanks for your answers.
On my PC it is also working.
Yes, on windows there is proxy server used.

With older FMT vesion there was no issue, as there was no SSO before.

 

 

 

0 Helpful

marce1000
VIP
VIP
In response to seahorse

‎11-20-2023 05:03 AM

 

                >...Yes, on windows there is proxy server used.
 - Check the proxy server's logs for the https request coming from FMT

 M.



-- Each morning when I wake up and look into the mirror I always say ' Why am I so brilliant ? '
    When the mirror will then always repond to me with ' The only thing that exceeds your brilliance is your beauty! '
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card