Re: Policy Situation while configuring a FMC HA

MSJ1 · ‎05-31-2023

Hi,

I have a standalone FMC and will configure HA while creating another FMC.

Plan is to make the 2nd FMC as Secondary.

Question is , at intended Secondary FMC do I need to Import the policy from Intended Primary Node before I do the FMC HA Config or once I create the FMC HA Policy will be automatically created at Secondary FMC at the time of FMC HA configuration ?

Marvin Rhoads · ‎05-31-2023

The Secondary unit will automatically sync everything from the Primary unit when they join together.

MHM Cisco World · ‎05-31-2023

When you establish high availability between two Firepower Management Centers, the following configuration data is synced between them:

License entitlements
Access control policies
Intrusion rules
Malware and file policies
DNS policies
Identity policies
SSL policies
Prefilter policies
Network discovery rules
Application detectors
Correlation policy rules
Alerts
Scanners
Response groups
Contextual cross-launch of external resources for investigating events
Remediation settings

Policy Situation while configuring a FMC HA

Configure Correlation Policy on FMC

FMC error has unknown CPU number

FMC/FTD Policy Migration

Firepower4100 - FMC HA + FTD HA : HA 利用時の FMC/FPR4100シリーズの交換手順（FMC管理）

Export Cisco FMC Intrusion Policy: A Step-by-Step Guide