Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1665
Views
10
Helpful
3
Replies

How do you negate changes for a deployment that's queued up

Go to solution
ABaker94985
Spotlight
Spotlight

‎09-10-2022 02:27 PM

I started a configuration on an HA pair of 4110's running 7.0.1 managed by an FMC that ended up having some reachability problems between the FMC and FTDs because of some network changes that were happening concurrently. Deployment is failing because of the following:

 

Deployment failed due to configuration error . If problem persists after retrying, contact Cisco TAC.

 

I'd like to negate these, but I can't find the option to start from scratch and just have the FMC and FTDs to ignore these changes. How do I go about doing this? Thank you.

 

0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
ABaker94985
Spotlight
Spotlight

‎09-12-2022 05:50 AM

ammahend, I appreciate your input. I've seen the rollback feature, but I found some documentation that states this is for DR purposes or something like that. I've been afraid to use it.

We did figure it out, though. I was pretty sure of the changes what were creating the error, so I went back into the configuration and negated them, tried to deploy, and then it succeeded. I was able to put the changes back in and redeploy, so we're good at the moment.

View solution in original post

3 Replies 3

Go to solution
ammahend
VIP
VIP

‎09-11-2022 08:23 AM

7.0 has a rollback feature, but I am not sure it will work in your case since FTD is already disconnected from FMC, see an example here 

https://www.lammle.com/post/cisco-firepower-7-0-deploy-and-rollback-features/

-hope this helps-
0 Helpful

Go to solution
Marvin Rhoads
Hall of Fame
Hall of Fame

‎09-12-2022 05:46 AM

As @ammahend noted, you can use the Deploy > Deployment History > Rollback feature. But only if the deployment ever passed. Otherwise you would have to negate all of the pending changes in the respective sections of FMC to "erase" them as pending. If that's not practical, then open a TAC case. The TAC engineer should be able to negate the job manually via manipulation of the underlying database.

Go to solution
ABaker94985
Spotlight
Spotlight

‎09-12-2022 05:50 AM

ammahend, I appreciate your input. I've seen the rollback feature, but I found some documentation that states this is for DR purposes or something like that. I've been afraid to use it.

We did figure it out, though. I was pretty sure of the changes what were creating the error, so I went back into the configuration and negated them, tried to deploy, and then it succeeded. I was able to put the changes back in and redeploy, so we're good at the moment.

Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card