SSH into the CP management server
cpconfig
3) GUI Clients
Add the IP address
In smart dashboard go into users and administrators section
Create the user and assign as password under authentication
see also
http://www.roesen.org/files/cp_cli_ref_card.pdf
Wednesday 30 November 2016
Monday 28 November 2016
replacing an ASA steps
Before switching to get an idea of numbers you should see after switching, get a screenshot of the following:
sh conn count
sh xlate count
sh crypto map sa
Identify important VPNs
Get VPN PSKs with more system:running-config
Check for any certificates installed on ASA (they cannot be copied, must be added again)
Do full backup in ASDM make sure you have your configs.
Switch over cables
First thing make sure you have internet access
Make sure interfaces have been "no shut"
Often you have to unplug and re-plug cables on ISP devices to resolve arp cache issues
Ping out all interfaces to ensure all VLANs etc are working
Once we have that look at VPNs make sure they are up
You might need to generate some traffic to bring it up.
Check anyconnect from outside is working
Check ASDM / anyconnect image
Re-install certificates
sh conn count
sh xlate count
sh crypto map sa
Identify important VPNs
Get VPN PSKs with more system:running-config
Check for any certificates installed on ASA (they cannot be copied, must be added again)
Do full backup in ASDM make sure you have your configs.
Switch over cables
First thing make sure you have internet access
Make sure interfaces have been "no shut"
Often you have to unplug and re-plug cables on ISP devices to resolve arp cache issues
Ping out all interfaces to ensure all VLANs etc are working
Once we have that look at VPNs make sure they are up
You might need to generate some traffic to bring it up.
Check anyconnect from outside is working
Check ASDM / anyconnect image
Re-install certificates
Storage device not found. Install drive and try again. Cisco Firepower
When trying to install the cisco firepower you get the error below
When you run this command:
sw-module module sfr recover boot
The ASA returns the error:
Storage device not found. Install drive and try again.
Some users have reported reloading the ASA resolves this (if you have SSD installed)
Most likely you are missing your SSD drive, either its not installed, broken or ASA was replaced but no SSD was sent with the replacement or it was never swapped from the old unit to the replacement unit.
You can see if you have ssd installed with "sh inv" it should look like this
Name: "Chassis", DESCR: "ASA 5525-X with SW, 8 GE Data, 1 GE Mgmt, AC"
PID: ASA5525 , VID: V04 , SN: ABCXXXXXXX
Name: "Storage Device 1", DESCR: "Model Number: Micron_M550_MTFDDAK128MAY"
PID: N/A , VID: N/A , SN: EFGXXXXXXX
If you don't see a storage device its not there.
If you still have your old unit you can try swap the SSD
Otherwise contact Cisco (or your support) about getting replacement
When you run this command:
sw-module module sfr recover boot
The ASA returns the error:
Storage device not found. Install drive and try again.
Some users have reported reloading the ASA resolves this (if you have SSD installed)
Most likely you are missing your SSD drive, either its not installed, broken or ASA was replaced but no SSD was sent with the replacement or it was never swapped from the old unit to the replacement unit.
You can see if you have ssd installed with "sh inv" it should look like this
Name: "Chassis", DESCR: "ASA 5525-X with SW, 8 GE Data, 1 GE Mgmt, AC"
PID: ASA5525 , VID: V04 , SN: ABCXXXXXXX
Name: "Storage Device 1", DESCR: "Model Number: Micron_M550_MTFDDAK128MAY"
PID: N/A , VID: N/A , SN: EFGXXXXXXX
If you don't see a storage device its not there.
If you still have your old unit you can try swap the SSD
Otherwise contact Cisco (or your support) about getting replacement
Commands to collect from CLI for cisco TAC
Show inv
Show module
Show raid
Subscribe to:
Posts (Atom)