Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
312
Views
0
Helpful
2
Replies

FPR-2120 - LFBFF signature authentication failed - no boot possible

jochenf
Level 1
Level 1

‎04-02-2024 05:58 AM

Hi,

one of our FPR-2120 stopped working tonight. It doesnt boot any more.

Current image running: Boot ROM1
Last reset cause: LocalSoft (0x00000002)
DIMM_1/1 : Present
DIMM_2/1 : Absent

Platform FPR-2120 with 16384 MBytes of main memory
BIOS has been successfully locked !!
MAC Address: 34:ed:1b:98:3f:00

Use BREAK or ESC to interrupt boot.
Use SPACE to begin boot immediately.


media drive disk0: not present
Attempt autoboot: "boot disk0:/installables/switch"
media drive disk0: not present
boot: cannot determine first file name on device "disk0:/installables/switch"
Attempt autoboot: "boot disk0:"
media drive disk0: not present
boot: cannot determine first file name on device "disk0:"
autoboot: All boot attempts have failed, will retry three times !
autoboot: current retry count: 2
autoboot: Restarting the system.

So I tried to boot different versions from a USB stick:

rommon 6 > dir disk1:
File System: FAT32
drw- 3 0 System Volume Information
-rw- 6 1121518400 cisco-ftd-fp2k.7.4.1-172.SPA
-rw- 273816 1132949904 cisco-ftd-fp2k.6.6.7-223.SPA
-rw- 550416 982707024 cisco-ftd-fp2k.7.0.6-236.SPA

Everytime it looks like it is booting then stops with this error message:

Failed to validate digital signature in Primary key Storage !!
Failed to validate digital signature in Backup key Storage !!
+-------------------------------------------------------------------+
+------------------------- FAILURE ---------------------------------+
+-------------------------------------------------------------------+
| |
| LFBFF signature authentication failed !!! |
| |
+-------------------------------------------------------------------+

LFBFF signature verification failed!!

boot: error executing "boot disk1:/cisco-ftd-fp2k.7.4.1-172.SPA"

What I understand so far from searching tha the internal eMMC might be corrupted, but all guides I can find to fix it assume that I can boot the device.

I tried to do a factory reset following this guide: https://www.cisco.com/c/en/us/td/docs/security/firepower/2100/troubleshoot_fxos/b_2100_CLI_Troubleshoot/b_2100_CLI_Troubleshoot_chapter_011.html

Is there anything else I can do (from rommon)?

kind regrads

Jochen

0 Helpful
2 Replies 2

marce1000
VIP
VIP

‎04-02-2024 10:02 AM

 

   - Are you trying to install a correct image , destined for the platform ?

 M.



-- Each morning when I wake up and look into the mirror I always say ' Why am I so brilliant ? '
    When the mirror will then always repond to me with ' The only thing that exceeds your brilliance is your beauty! '
0 Helpful

jochenf
Level 1
Level 1
In response to marce1000

‎04-02-2024 11:22 PM

Hi,

yes its the correct image for the FPR-2120.
https://software.cisco.com/download/home/286312088/type/286306337/release/7.2.5

 

 

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card