FMC Policy Export

benolyndav · ‎07-03-2025

Hi

So I am planning on exporting the policies of several FTDs managed by the same FMC running 7.0 I will then be importing the policies to a new FMC which is running the same version 7.0 this FMC will then be upgraded to 7.4 and a My questions are

1.When the new FMC is upgraded to 7.4 can I then apply theses policies to new FTDs running 7.4 but are a different model of FTD. ?? they are in the same family though 2100 series

2. What do I need to export from the old FMC to the new FMC is it just ACP that has to be on the new FMC before the upgrade, can NAT, Platform, Flexconfig etc be exported from the 7.0 FMC and added to the FTDs running 7.4. later .??

Thanks

wajidhassan · ‎07-03-2025

Yes, you can apply the exported policies from FMC 7.0 to new FTDs running 7.4, even if the hardware model is different, as long as they’re in the same family like 2100 series. FMC manages policy independent of exact model, so that won't block deployment.

You should export more than just the ACP. Ideally, export and document your NAT policies, Flexconfigs, object groups, intrusion policies, and any platform settings that are not device-specific. While ACP is critical, missing pieces like NAT and Flexconfig can lead to incomplete functionality. These can be manually re-created or re-imported post-upgrade if needed.