FirePOWER: ‘No Authentication Required’ No Usernames
Aug22

FirePOWER: ‘No Authentication Required’ No Usernames

KB ID 0001460 Problem When attempting to track Users with FirePOWER, the FMC would not show any usernames? Solution Theres a lot of reasons this might not work, let’s take a look at a few of them. Firstly make sure the server running the ‘user agent’ is listed under  System >Integration > Identity Sources > User Agent. It probably goes without saying, but over on server running the user agent, make sure it can see...

Read More
Cisco FirePOWER (On-Box / ASDM) Change the Time Zone
Nov08

Cisco FirePOWER (On-Box / ASDM) Change the Time Zone

KB ID 0001363 Problem At first this was just a bug, now it’s annoying, I don’t know why Cisco have not got round to fixing this, it’s still a problem in the latest (6.2.2 at time of writing,) version. Solution Configuration > ASA FirePOWER Configuration > Local > System Policy > Time > Synchronisation > Manually > Save Policy and  Exit. Deploy > Deploy FirePOWER Changes > Deploy. To View Task Progress: Monitoring >...

Read More
Updating FirePOWER Module (From ASDM)
Sep14

Updating FirePOWER Module (From ASDM)

KB ID 0001348 Dtd 14/09/17 Problem Normally I don’t like upgrading the SFR this way. But then I tend to install new firewalls set them up and walk away, so its easier (and a LOT quicker) to simply image the module to the latest version and then set it up. Like So; Re-Image and Update the Cisco FirePOWER Services Module This week I had an existing customer, who has an ASA5508-X but wasn’t using his FirePOWER, I’d...

Read More
FirePOWER – ‘DataPlaneInterface0’ is not receiving and packets
Sep11

FirePOWER – ‘DataPlaneInterface0’ is not receiving and packets

KB ID 0001344  Problem While replacing a FirePOWER Management console, I got this error; Interface Status Interface ‘DataPlaneInterface0’ is not receiving any packets   Solution A look a the health monitor showed me the same thing; Firstly, common sense dictates, that this is a live firewall and traffic is actually flowing though it? In my case the traffic simply needed to be ‘sent though’ the module. Execute...

Read More
Cisco FirePOWER User Agent – Use With the FirePOWER Management Console
Aug14

Cisco FirePOWER User Agent – Use With the FirePOWER Management Console

KB ID 0001179 Dtd 14/08/17 Problem FirePOWER Management Center, will give you a wealth of information on traffic/threats etc. Usually it will tell you what IP the offenders are on, but if you want to know what a USER is doing, then that means you have to look though logs see who had what IP, at what time etc. So you can install the FirePOWER User Agent on a machine, (this can be a client machine, though I usually put it on a member...

Read More
FirePOWER Agent – Real-Time Status ‘Unavailable’
Jul02

FirePOWER Agent – Real-Time Status ‘Unavailable’

KB ID 0001323 Dtd 01/07/17 Problem I was deploying a Cisco FirePOWER user agent last week, but once setup, the agent reported that the Real-Time status for SOME of the domain controllers was permanently ‘Unavailable’. Now I know you have to be patient with these things so I went and had a coffee. Still it refused to ‘go green’. Solution I addition to all the other rights and firewall rules that you normally...

Read More