Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
958
Views
0
Helpful
5
Replies

Firewall Migration Tool 5.01 - SSL: WRONG_VERSION_NUMBER

seahorse
Level 1
Level 1

‎11-20-2023 03:10 AM

We use the Cisco Firewall Migration Tool 5.01 on a MS Windows Server and cannot start the the tool.
Error message: [INFO | cco_login.py] > EULA check for an user
DEBUG | common.py] > session table records count:1
[INFO | common.py] > Telemetry push : Unable to connect to SSE Cloud server https://sign-on.security.cisco.com HTTPSConnectionPool(host='sign-on.security.cisco.com', port=443): Max retries exceeded with url: / (Caused by SSLError(SSLError(1, '[SSL: WRONG_VERSION_NUMBER] wrong version number (_ssl.c:1125)')))

seperate access to https://sign-on.security.cisco.com from the windows server is possible, but not from the FMT. Within there is no window opening to type in the user/credentials for sign-on.

It is chrome browser used.

Do you have a hint how to fix the following error?

Thanks

0 Helpful
5 Replies 5

Marvin Rhoads
Hall of Fame
Hall of Fame

‎11-20-2023 03:40 AM

Does your environment use a proxy server? That could cause a problem like this.

I just did a fresh download of the 5.0.1 version on my Windows Server 2022 and it launches and runs fine for me.

0 Helpful

Mark Elsen
Hall of Fame
Hall of Fame

‎11-20-2023 03:48 AM

 

 - It relates to the underlying Python (version) being used by  the firewall migration tool :
      (FYI) : https://support.chainstack.com/hc/en-us/articles/9117198436249-Common-SSL-Issues-on-Python-and-How-to-Fix-it

 M.



-- Let everything happen to you  
       Beauty and terror
      Just keep going    
       No feeling is final
Reiner Maria Rilke (1899)
0 Helpful

Marvin Rhoads
Hall of Fame
Hall of Fame
In response to Mark Elsen

‎11-20-2023 03:56 AM

I doubt it is the FMT's included Python as it includes all the necessary executables and supporting libraries in a self contained installer. I just now verified 5.0.1 is working fine on another PC - neither of which had any Python previously installed.

0 Helpful

seahorse
Level 1
Level 1

‎11-20-2023 04:15 AM

Thanks for your answers.
On my PC it is also working.
Yes, on windows there is proxy server used.

With older FMT vesion there was no issue, as there was no SSO before.

 

 

 

0 Helpful

Mark Elsen
Hall of Fame
Hall of Fame
In response to seahorse

‎11-20-2023 05:03 AM

 

                >...Yes, on windows there is proxy server used.
 - Check the proxy server's logs for the https request coming from FMT

 M.



-- Let everything happen to you  
       Beauty and terror
      Just keep going    
       No feeling is final
Reiner Maria Rilke (1899)
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card