Solved: Smart License Register >> Error Invalid Input Detected at ..

amh4y0001 · ‎05-20-2022

Firei,

I am trying to activate /license the FP1200 series running ASA software as:

1. Go to software.cisco.com and log into your Smart Account.
2. Under the Padlock icon, click Smart Software Licensing.
3. Go to the Inventory Tab -> General Click the New Token… button Enter a brief description of the token
(optional) Finish the token generation.
4. Go to your device and use the following commands: “license smart enable” “license smart idtoken …..” <- paste the token string in place of the dots.
4 (updated) license smart register (instead of license smart enable, it give me license smart register)

Output /Result: ERROR: % Invalid input detected at '^' marker.

What might be wrong here, why token is not accepted?

iscoasa# license ?

smart Register/renew/deregister the product instance with the Cisco Licensing Authority

ciscoasa# license smart register ?

idtoken Specify the ID token for registration

ciscoasa# license smart register Token1234567Example...

ERROR: % Invalid input detected at '^' marker.

amh4y0001 · ‎05-30-2022

Thanks @Marius Gunnerud.

It's solved now. The ASA wasn't able to reach to the Internet and causing the licensing issues.

Appreciated your input here.

View solution in original post

SinghRaminder · ‎05-20-2022

If you have access to ASDM,

In ASDM, choose Configuration > Device Management > Licensing > Smart Licensing.

Click Register

Paste ID-TOKEN

optionally - select force authentication

Thanks
Raminder
PS: If this answered your question, please don't forget to rate and select as validated answer

Marius Gunnerud · ‎05-21-2022

I am assuming that smart licensing has been enabled on the FTD / ASA device?

It is difficult to tell where the ^ is pointing to to identify which part of the command is providing the error. Could you indicate where it is pointing?

Also, provide the output of "show license all".

--
Please remember to select a correct answer and rate helpful posts

amh4y0001 · ‎05-22-2022

^ is pointing to the very first letter of the Token.

Deepak Kumar · ‎05-22-2022

Copy topken and past in your notepad. Verify for any space or new line in the token itself and remove it.

Regards,
Deepak Kumar,
Don't forget to vote and accept the solution if this comment will help you!

amh4y0001 · ‎05-22-2022

It's already in Notepad.

Marius Gunnerud · ‎05-22-2022

Please issue the command show license all and post the result.

--
Please remember to select a correct answer and rate helpful posts

andrewswanson · ‎05-22-2022

I believe the correct command for this is:

license smart register idtoken <YOUR_idtoken>

license smart register <YOUR_idtoken> would result in ERROR: % Invalid input

hth
Andy

amh4y0001 · ‎05-22-2022

Thanks @andrewswanson

Let me try and get back with the result of the following:

license smart register idtoken <YOUR_idtoken>

amh4y0001 · ‎05-23-2022

@andrewswanson you were correct, I was missing the "idtoken".

But the status is still showing "Registration in Progress".

Tried with ASDM, and same, Registration Status = Registering - Registration in Progress.

@Marius Gunnerud Following is the output of Show License All.

ciscoasa# show license all

Smart Licensing Status
======================

Smart Licensing is ENABLED

Registration:
  Status: REGISTERING - REGISTRATION IN PROGRESS
  Export-Controlled Functionality: NOT ALLOWED
  Initial Registration: FAILED on May 23 2022 08:21:52 
    Failure reason: Communication message send error
  Next Registration Attempt: May 23 2022 08:41:04 

License Authorization:
  Status: No Licenses in Use

Export Authorization Key:
  Features Authorized:
    <none>

Utility:
  Status: DISABLED

Data Privacy:
  Sending Hostname: yes
    Callhome hostname privacy: DISABLED
    Smart Licensing hostname privacy: DISABLED
  Version privacy: DISABLED

Transport:
  Type: Callhome

License Usage
==============

No licenses in use

Product Information
===================
UDI: PID:FirePower,SN:SerialNumber

Agent Version
=============
Smart Agent for Licensing: 4.9.3_rel/34

Reservation Info
================
License reservation: DISABLED

andrewswanson · ‎05-23-2022

Can you resolve tools.cisco.com from your device? If so, check that you can connect to it with "telnet tools.cisco.com 443".

hth

Andy

amh4y0001 · ‎05-23-2022

@andrewswanson you mean like this?

andrewswanson · ‎05-23-2022

My apologies, I forgot you were using an ASA - you can't telnet/ssh from it. Try doing a ping to tools.cisco.com to see if this can be resolved - command will be something like "ping outside tools.cisco.com"

Andy

amh4y0001 · ‎05-24-2022

Thanks @andrewswanson I guess something is still not in order.

Marius Gunnerud · ‎05-25-2022

Check to make sure that DNS lookups are configured on the ASA

show run dns

show run | in name-server

If it is not configured add the following (interface name is the name of the interface the DNS server is reachable through). You can add up to 6 DNS servers separated by a comma.

dns domain-lookup <interface name>

dns server-group DefaultDNS

name-server <DNS server IP address>

--
Please remember to select a correct answer and rate helpful posts