Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
5102
Views
55
Helpful
4
Replies

Is unregistered FTD still functional?

Go to solution
h.dam
Level 1
Level 1

‎02-24-2022 07:52 AM

Hello all,

We have a FTD A/P pair registered after purchase. They are working well until last month. They have lost the licenses without reason and became unregistered.

This is the first time I met after more than ten years pratices on Cisco devices.

I'd like to know the following if you guys can help me:

1/ What are the potential causes to make them lost?

2/ If the FTD are unregistered, can they continue to work as before, eg. to permit/deny traffic flow according to the policy? (I noticed that I cannot apply changes)

Thank you very much.

2 Accepted Solutions

Accepted Solutions

Go to solution
Marvin Rhoads
Hall of Fame
Hall of Fame

‎02-24-2022 07:57 AM

You may be affected by this field notice:

https://www.cisco.com/c/en/us/support/docs/field-notices/721/fn72103.html

As you noticed, policy changes are not allowed without any license. Existing Access Control Policies will continue to work.

View solution in original post

Go to solution
Marvin Rhoads
Hall of Fame
Hall of Fame
In response to h.dam

‎02-25-2022 12:18 AM

I've found that even if you have 7.0.1 you may still need to "remove the certificate file at /etc/sf/gch/call_home_ca and restart the Smart Licensing Agent (sla) process to resume communications with Cisco Smart Software Manager (CSSM)".

Please refer to the field notice that I linked earlier for the step-by-step instructions.

View solution in original post

4 Replies 4

Go to solution
Marvin Rhoads
Hall of Fame
Hall of Fame

‎02-24-2022 07:57 AM

You may be affected by this field notice:

https://www.cisco.com/c/en/us/support/docs/field-notices/721/fn72103.html

As you noticed, policy changes are not allowed without any license. Existing Access Control Policies will continue to work.

Go to solution
h.dam
Level 1
Level 1
In response to Marvin Rhoads

‎02-24-2022 01:00 PM

Hello Marvin,

Thank you very much for the document.

My FTDs are v7.0.1.But I didn't find this version in the document.

As I understood, there are two solutions. 1/ software upgrade 2/ import the IdenTrust Commercial CA certificate

In my case, which solution do I need to do?

 

Regards

Go to solution
Marvin Rhoads
Hall of Fame
Hall of Fame
In response to h.dam

‎02-25-2022 12:18 AM

I've found that even if you have 7.0.1 you may still need to "remove the certificate file at /etc/sf/gch/call_home_ca and restart the Smart Licensing Agent (sla) process to resume communications with Cisco Smart Software Manager (CSSM)".

Please refer to the field notice that I linked earlier for the step-by-step instructions.

Go to solution
h.dam
Level 1
Level 1
In response to Marvin Rhoads

‎02-25-2022 07:00 AM

OK

Thank you very much.

 

Regards

 

Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card