Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hello Community, Has anyone encountered upgrade issues pertaining to the Cisco ISA 3000 on FTD code? Purchased several Cisco ISA 3000s with the 6.3.0 FTD code on them. Using FMC (which is on 6.4.0.1 code), I upgraded all of them to the 6.3.0.3 patch...
Community, Has anyone been able to successfully get syslog messages from an FTD device for successful or failed authentication attempts via SSH? I have my FTD appliances (FirePOWER 2130 and FTD Cisco ISA 3000s) sending logs to a remote syslog server....
Hello, I have FMC 2500 configured to send logs to an external remote syslog server. I see the audit logs in remote syslog server for successful login attempts to the FMC GUI but not the failed authentication attempts. Product Model Cisco Firepower ...
When we first engaged TAC, we resumed synchronization and everything was green. Both instances in our HA deployment showed that the SRU and LSP was installed. However, during the initial triage, the TAC engineer navigated via CLI to the SRU directory...
I had the same issue upgrading from 7.0.1 to 7.0.4 recently with error messages below. OUT: [221014 00:01:45:116] BEGIN 800_post/020_702_fix_users_and_roles.plOUT: [221014 00:01:53:368] END 800_post/020_702_fix_users_and_roles.plOUT: [221014 00:01:53...
Worked with Cisco Engineers to check out their proposed solution to this issue. The solution will be included in their patch release or maintenance release slated for end of August.
Still working on the issue with our entity's Cisco SE. I have tested this multiple attempts to no avail. Issue was raised to Cisco's BU. The BU thinks that the functionality to log failed log attempts was added in 6.4 code. I have done extensive test...
This issue was resolved. Just needed a little bit of patience in searching for the logs. Once I saw the log message on FMC I was confident I would see it in the SIEM.
