04-10-2023 06:58 AM
If I have to deploy FTD in an offline (no active internet) how can I activate the smart licenses? Is there any specific part number I can order during the procurement for offline license activation?
Solved! Go to Solution.
04-15-2023 01:47 AM
Internet connectivity is not mandatory during the 90-day evaluation period.
If you require a licensed device past the 90-day period you have two options:
1. The Smart Software Manager (SSM) satellite server as mentioned already in this thread by @Rob Ingram
2. Permanent License Reservation (PLR) - a scheme that requires Cisco account manager to sponsor you for approval and is typically only granted for government and military systems that are kept totally apart from the Internet for security purposes. Details on that can be found here:
04-10-2023 10:14 AM
@taro75 You can use the Smart Software Manager satellite, which is installed on the customer premises.
04-10-2023 10:17 AM
Additionally, it will work with the included evaluation license for up to 90 days. No Internet is required for that.
04-11-2023 03:23 AM
Keep in mind also that the FMC will need intermittent access to internet or the smart license satellite server to be able to check and update license status.
04-15-2023 01:29 AM
My query is that I do not have any Internet connectivity from firewall to the Internet, is it not possible to get the licenses from Cisco which does not require any Internet connectivity. I can update the IPS signatures offline. Is the Internet connection and verification mandatory with new devices?
04-15-2023 01:47 AM
Internet connectivity is not mandatory during the 90-day evaluation period.
If you require a licensed device past the 90-day period you have two options:
1. The Smart Software Manager (SSM) satellite server as mentioned already in this thread by @Rob Ingram
2. Permanent License Reservation (PLR) - a scheme that requires Cisco account manager to sponsor you for approval and is typically only granted for government and military systems that are kept totally apart from the Internet for security purposes. Details on that can be found here:
04-15-2023 02:18 AM - edited 04-15-2023 08:36 AM
I need PLR, I believe it's a zero cost item. I need this because firewalls are in plant (OT) setup. Is there any restrictions in getting this license?
Also with smartnet, I am entitled to download FTD OS, SRU VDB, GEODB, LSP etc.
So if I purchase PLR SKU with smartnet contract, what are the other benefits do I get buy purchasing subscription for Threat Defense/URL/Malware etc.
04-16-2023 01:23 AM
The PLR SKU only entitles your Smart Account for downloading that special license type.
Smartnet on a given appliance entitles you to appliance hardware and software (OS, patches, VDB and GeoDB) support, both online and via Cisco TAC.
SRU and LSP are entitlements requiring a Threat (IPS) license. URL License allows you to create policies based on URL categories. Malware license allows you to create File policies that investigate observable files for malware.
04-16-2023 11:51 AM
My requirement, our firewalls are in offline (no Internet connectivity) environment. In this case I will get smartnet contract support and PLR SKU. I will download the IPS signatures manually, put it in a USB disk and upload to firewall using FDM. Is this achievable?
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide