Thanks so much IlyaKalinin

IlyaKalinin · ‎09-24-2016

Hi, Experts!

After the upgrade Firepower module on my ASA5515-X from 6.0.1 to 6.0.1.1, i lost access to Firepower config tab in ASDM.

I can see on home page only "ASA Firepower Status" tab (screenshot in attachment).
I can see one in the bottom of the page "Connect to ASA Firepower Application..."

After reading the disussion. https://supportforums.cisco.com/discussion/13125471/cisco-asa-5525-firepower-service-configure-asdm, i guess that my Firepower registered the module to a FirePOWER Management Center.
I did not do anything for this registration, i have not any FirePOWER Management Center in my network.

May refer to the page by managenent ip firepower, but it is written on the page "Onbox NGFW is managed by ASDM. "

Can i fix it for use ASDM without full reinstall Firepower module?
I have full access to CLI (session sfr console).

ASA 5515-X 9.5(2), ASDM 7.6(1).

Marvin Rhoads · ‎09-25-2016

Can you share the output of

show module sfr detail

...from the ASA cli?

IlyaKalinin · ‎09-25-2016

With minimal correction:

Card Type: FirePOWER Services Software Module
Model: ASA5515
Hardware version: N/A
Serial Number: FCH
Firmware version: N/A
Software version: 6.0.1.1-24
MAC Address Range: 66666666666
App. name: ASA FirePOWER
App. Status: Up
App. Status Desc: Normal Operation
App. version: 6.0.1.1-24
Data Plane Status: Up
Console session: Ready
Status: Up
DC addr: No DC Configured
Mgmt IP addr: 10.100.6.9
Mgmt Network mask: 255.255.255.0
Mgmt Gateway: 10.100.6.254
Mgmt web ports: 443
Mgmt TLS enabled: true

Marvin Rhoads · ‎09-25-2016

Thanks. That looks as expected.

I've only done one such upgrade from ASDM and it worked fine. (I usually work with ones managed by FirePOWER Management Center.)

I might suggest upgrading your ASDM to 7.6(2). I don't see any published bug matching what you're seeing but it might help.

Otherwise, I'd suggest opening a TAC case.

IlyaKalinin · ‎09-25-2016

Update ASDM to 7.6(2) did not change anything.

Thank you very much for the advice, i would open TAC case.

Devinder Sharma · ‎10-16-2016

Hi IlyaKalinin,

Have you been able to resolve this issue thru TAC and if so what was the solution please?

I am working on a customer new ASA5525-X and I have exact same issue using Windows 10 laptop running latest Java, ASDM 7.6.2 and ASA image of 9.6.2.

Thanks

IlyaKalinin · ‎10-16-2016

Hi Devinder Sharma,

The reason for the problem in my case - no authentifcation from front-end web server (ASA) to back-end web-server (Firepower)

After a few hours with tech support, I re-install firepower new version module:

http://www.cisco.com/c/en/us/support/docs/security/asa-firepower-services/118644-configure-firepower-00.html#anc7

After that, the newly created security configuration for the new version (Different versions can not use the Import / Export)

Devinder Sharma · ‎10-16-2016

Thanks so much IlyaKalinin for your prompt help. Based in your advice, I will reinstall and reconfigure new version sometime next week when I will have opportunity to go back onsite and hopefully that will resolve. I will then confirm back for benefit of others.

Missing tab configuration Firepower in ASDM after the upgrade module