Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1747
Views
0
Helpful
4
Replies

Policy Pre-deployment from FMC to FTD problem

Stevensky
Level 1
Level 1

‎03-11-2022 07:54 AM

Hi all, 

I've had a problem for a while with my FMC.
In fact, there was a DNS problem on my network and I have since found that all the policies I apply on the Cisco FMC do not deploy on the FTDs. I keep getting the following error:
Timed out collecting policies and objects at the Pre-Deploy Global Configuration Generation

 

I would like to point out that the FTDs are able to communicate with the FMC.
As an action, I restarted the sftunnel which has the status established but the problem remains

0 Helpful
4 Replies 4

balaji.bandi
Hall of Fame
Hall of Fame

‎03-11-2022 08:15 AM

Try restart FMC and test ?

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

Stevensky
Level 1
Level 1
In response to balaji.bandi

‎03-17-2022 05:52 AM

Sorry for the response time
Restart or Reload FMC ?
I did a restart but I've the same error : 

Deployment failed due to failure collecting policies and objects. If problem persists after retrying, contact Cisco TAC.

 

I also observe in the logs at deployment time the following error:
Error in creating snapshot DOM

 

0 Helpful

Gaber Ali
Level 1
Level 1

‎06-19-2024 11:16 AM

hello All, 

Just to share with you my experience for solving this issue.  

I have faced the same Issue in FMC 1600 - OS version 7.0.5, 

RCA: there was an SRU update  stuck which leads the FMC failed to deploy the policy at its second step (as per the steps mentioned in URL: https://www.cisco.com/c/en/us/support/docs/security/firepower-ngfw-virtual/215258-troubleshooting-firepower-threat-defense.html )

to solve the Issue:

- we have removed the stuck SRU update,

- download the latest SRU and LSP update from cisco website ,

- uploaded it to the FMC and perform SRU & LSP update, 

- re deploy the policy to the managed devices. 

the issue was resolved, 

BR

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card