05-31-2023 09:28 AM
Hi,
I have a standalone FMC and will configure HA while creating another FMC.
Plan is to make the 2nd FMC as Secondary.
Question is , at intended Secondary FMC do I need to Import the policy from Intended Primary Node before I do the FMC HA Config or once I create the FMC HA Policy will be automatically created at Secondary FMC at the time of FMC HA configuration ?
05-31-2023 10:36 AM
The Secondary unit will automatically sync everything from the Primary unit when they join together.
05-31-2023 12:20 PM
When you establish high availability between two Firepower Management Centers, the following configuration data is synced between them:
License entitlements
Access control policies
Intrusion rules
Malware and file policies
DNS policies
Identity policies
SSL policies
Prefilter policies
Network discovery rules
Application detectors
Correlation policy rules
Alerts
Scanners
Response groups
Contextual cross-launch of external resources for investigating events
Remediation settings
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide