Buy or Renew
Buy or Renew
NEW! Stay up-to-date on Cisco Secure Access: Software Release Notes and Announcements
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2625
Views
0
Helpful
10
Replies

How to migrate SFR policies and object on-the-box management to FMC?

erickflamenco
Level 1
Level 1

‎12-16-2020 12:49 PM

Hi Experts,

 

How do  I import a very huge Access-control Policy and a lot of objects, from SFR ASA5500x module with on-the-box management (ASDM) to Firepower Management Center FMC-ACP?

What´s you recommendation?

 

Thanks a lot for your response.

 

Erick

0 Helpful
10 Replies 10

benolyndav
Level 4
Level 4

‎12-16-2020 01:42 PM

Hi

You use the ASA to FTD migration tool which can be downloaded from Cisco.com.

 

Thanks

0 Helpful

erickflamenco
Level 1
Level 1
In response to benolyndav

‎12-16-2020 02:46 PM

Hi MassB

 

This tool is for ASA configuration  not for sfr configuration.

 

ASA 5585-X with ASA only (the Firepower Migration Tool does not migrate the configuration from the ASA FirePOWER module)

 

Thanks

 

https://www.cisco.com/c/en/us/td/docs/security/firepower/migration-tool/migration-guide/ASA2FTD-with-FP-Migration-Tool/b_Migration_Guide_ASA2FTD_chapter_0111.html#id_70647__Target

 

 

0 Helpful

balaji.bandi
Hall of Fame
Hall of Fame

‎12-16-2020 02:25 PM

If you looking to Migrate from SFR to FTD follow the below guide : ( you need to register the SFR device with FMC first)

 

https://www.cisco.com/c/en/us/support/docs/security/firepower-management-center/213269-upgrade-procedure-through-fmc-for-firepo.html

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

erickflamenco
Level 1
Level 1
In response to balaji.bandi

‎12-16-2020 02:49 PM

Hi Balaji,

 

I´m not looking for upgrading the module, I´m looking for migration ACP and objects from on-box fo FMC.

 

Thanks.

0 Helpful

Spyros Kasapis
Level 1
Level 1

‎02-06-2022 02:01 AM

Did you find anything ?

 

0 Helpful

Marvin Rhoads
Hall of Fame
Hall of Fame
In response to Spyros Kasapis

‎02-06-2022 04:17 AM - edited ‎02-06-2022 04:18 AM

@Spyros Kasapis there is no tool to migrate policies etc. from a locally-managed ASA Firepower service module to FMC.

The only option is to manually recreate them.

0 Helpful

Spyros Kasapis
Level 1
Level 1
In response to Marvin Rhoads

‎02-06-2022 04:42 AM

Thank you Marvin .

 

 

0 Helpful

Marius Gunnerud
VIP
VIP
In response to Spyros Kasapis

‎02-06-2022 05:14 AM

Just to add to what Marvin has said, you could look into writing a script, using APIs, that gets the configuration from the FDM, converts the rule to be FMC compatible and then POST to the FMC.  Still a manual process but it will reduce human error.

--
Please remember to select a correct answer and rate helpful posts
0 Helpful

Spyros Kasapis
Level 1
Level 1
In response to Marius Gunnerud

‎02-06-2022 05:20 AM

Hello Marius ,

the rules are from srf not fdm .

Can you suggest a link to read ?

0 Helpful

Marius Gunnerud
VIP
VIP
In response to Spyros Kasapis

‎02-06-2022 05:50 AM

Sorry overlooked that this was SFR.  I did find this document on migrating ASA with SFR to FTD. Hope it helps.

https://www.cisco.com/c/en/us/td/docs/security/firepower/migration-tool/migration-guide-fps/ASA2FTD-with-FPS-FP-Migration-Tool/b_Migration_Guide_ASA2FTD_chapter_0111.html

 

--
Please remember to select a correct answer and rate helpful posts
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card