Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1587
Views
0
Helpful
8
Replies

FTD can´t be added to FMC

masoudkavehie
Level 1
Level 1

‎04-23-2022 04:15 AM

hi 

actually im trying to add FTD To FMC but im got this error !!

Verify the following and retry:
- Device is configured to be managed by this Firepower Management Center
- Device hostname/IP is accurate; Firepower Management Center and device have connectivity
- Device Registration Key is correct
- Use NAT ID if either FMC or Device is behind NAT
- Time on FMC and Device is in sync

i have checked all of these notes and ive got this error in log file 

SSL_renegotiate error: 1: error:00000001:lib(0):func(0):reason(1)
Apr 23 11:09:43 firepower SF-IMS[19945]: [20758] sftunneld:sf_ssl [ERROR] Connect:SSL handshake failed
Apr 23 11:09:43 firepower SF-IMS[19945]: [20758] sftunneld:sf_ssl [WARN] SSL Verification status: ok

 

how could i solve this problem !!! thanks 

0 Helpful
8 Replies 8

Marvin Rhoads
Hall of Fame
Hall of Fame

‎04-23-2022 05:00 AM

Check the system time/date on both ends and ensure they are showing the same date and hour.

0 Helpful

masoudkavehie
Level 1
Level 1
In response to Marvin Rhoads

‎04-23-2022 05:09 AM

i've checked  both of them with date command and it was ok ,same

0 Helpful

balaji.bandi
Hall of Fame
Hall of Fame

‎04-23-2022 05:14 AM

is this a new setup? what is FMC and FTD, have you checked the compatibility?

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

masoudkavehie
Level 1
Level 1
In response to balaji.bandi

‎04-23-2022 05:25 AM

yes this is a new setup .its compatible .

0 Helpful

balaji.bandi
Hall of Fame
Hall of Fame
In response to masoudkavehie

‎04-23-2022 05:33 AM - edited ‎04-23-2022 05:34 AM

what is the FMC and FTD version 

Can you remove both sides and try again.

 

- Use NAT ID if either FMC or Device is behind NAT

 

Explain more and with IP address, do you have small diagram of this ?

 

 

follow the troubleshooting guide :

 

https://www.cisco.com/c/en/us/support/docs/security/firepower-ngfw/215540-configure-verify-and-troubleshoot-firep.html

 

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

masoudkavehie
Level 1
Level 1
In response to balaji.bandi

‎04-23-2022 05:41 AM

the version both of them is 6.4 

i did it . i removed them and reinstalled but im getting this error again .

i don't khow .every thing is true in my openion and i check verything .

0 Helpful

Karsten Iwen
VIP
VIP
In response to masoudkavehie

‎04-23-2022 09:14 AM

Is there a specific reason for 6.4? At least when I run into problems (and typically also without problems) I would try the Cisco recommended release which is 7.0.1 at the moment.

0 Helpful

balaji.bandi
Hall of Fame
Hall of Fame
In response to masoudkavehie

‎04-23-2022 09:46 AM

ok then 6.4 is quite old (but I did not see any issue when I had setup in the same version of FTD and FMC on the same version), can you uplift anything about 6.7 (cisco suggests now 7.0 or 7.01) - since you mentioned new setup. easy to upgrade.

 

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card