ANNOUNCEMENT - The community will be down for maintenace this Thursday August 13 from 12:00 AM PT to 02:00 AM PT. As a precaution save your work.
cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements

687
Views
5
Helpful
6
Replies
Highlighted

FMC-Copying Access rules from an ACP and applying those copied rules to another ACP

Is there a way in FMC to copy access rules from an ACP and paste those in another ACP which is already loaded with access rules and applied to an FTD. Actually, will have to 2-3 migrations of ASAs to FTD but at different time frames. So, at last need to have all consolidated as one ACP. Tried inheritance policy option but can't modify the copied rules. 

FMC-ver-6.4.04

 

Everyone's tags (1)
6 REPLIES 6
Highlighted
VIP Advisor

Re: FMC-Copying Access rules from an ACP and applying those copied rules to another ACP

Hi,

There's no way to copy a rule from 1 ACP and paste over another ACP.
The only way would be to use APIs to do so.

Thanks
Francesco
PS: Please don't forget to rate and select as validated answer if this answered your question
Highlighted

Re: FMC-Copying Access rules from an ACP and applying those copied rules to another ACP

Thanks for your reply.

Does FMC offers an API to perform this?

Highlighted
VIP Advisor

Re: FMC-Copying Access rules from an ACP and applying those copied rules to another ACP

There's no 1 api to do copy/paste specifically but using api you can read at rules for 1 ACP and then re-create them into the other ACP.

Thanks
Francesco
PS: Please don't forget to rate and select as validated answer if this answered your question
Highlighted

Re: FMC-Copying Access rules from an ACP and applying those copied rules to another ACP

Thanks. I am still a new learner with APIs but will give a try.

Highlighted
Hall of Fame Guru

Re: FMC-Copying Access rules from an ACP and applying those copied rules to another ACP

It's not supported - even in FMC 6.6.

If you use CDO management, it is quite easy to do. However CDO cannot (currently) manage a device that is also FMC-managed.

CDO uses the API to interact with managed devices along the lines @Francesco Molino was referring to.

Highlighted

Re: FMC-Copying Access rules from an ACP and applying those copied rules to another ACP

Thanks for your reply