Advertisement
Quick Links
Getting Started
•
•
•
•
Task Flow
The following procedure shows the basic tasks that should be completed when configuring your Firepower
4100/9300 chassis.
Procedure
Step 1
Configure the Firepower 4100/9300 chassis hardware (see the
Installation
Step 2
Complete the initial configuration (see
Step 3
Log in to the Firepower Chassis Manager (see
Step 4
Set the Date and Time (see
Step 5
Configure a DNS server (see
Step 6
Register your product license (see
Step 7
Configure users (see
Step 8
Perform software updates as required (see
Step 9
Configure additional platform settings (see
Step 10
Configure interfaces (see
Step 11
Create logical devices (see
Initial Configuration
Before you can use Firepower Chassis Manager or the FXOS CLI to configure and manage your system, you
must perform some initial configuration tasks. You can perform the initial configuration using the FXOS CLI
Task Flow, on page 1
Initial Configuration, on page 1
Log In or Out of the Firepower Chassis Manager, on page 8
Accessing the FXOS CLI, on page 9
Guide).
Setting the Date and
Configuring DNS
User
Management).
Interface
Logical
Cisco Firepower Security Appliance Hardware
Initial Configuration, on page
Log In or Out of the Firepower Chassis Manager, on page
Time).
Servers).
License Management for the
Image
Management).
Platform
Settings).
Management).
Devices).
1).
ASA).
Getting Started
8).
1
Advertisement
Related Manuals for Cisco Firepower 4100/9300
Summary of Contents for Cisco Firepower 4100/9300
- Page 1 Task Flow The following procedure shows the basic tasks that should be completed when configuring your Firepower 4100/9300 chassis. Procedure Step 1 Configure the Firepower 4100/9300 chassis hardware (see the Cisco Firepower Security Appliance Hardware Installation Guide). Step 2 Complete the initial configuration (see...
- Page 2 (this procedure is also referred to as low-touch provisioning). Initial Configuration Using Console Port The first time that you access the Firepower 4100/9300 chassis using the FXOS CLI, you will encounter a setup wizard that you can use to configure the system.
- Page 3 Step 2 Connect to the serial console port using a terminal emulator. The Firepower 4100/9300 includes an RS-232–to–RJ-45 serial console cable. You might need to use a third party serial-to-USB cable to make the connection. Use the following serial parameters: •...
- Page 4 Low-Touch Provisioning Using Management Port When your Firepower 4100/9300 chassis boots up, if it does not find the startup configuration, the device enters the Low-Touch Provisioning mode in which the device locates a Dynamic Host Control Protocol (DHCP) server and then bootstraps itself with its management interface IP address. You can then connect through the management interface to configure the system using SSH, HTTPS, or the FXOS REST API.
- Page 5 • DNS server IP address Procedure Step 1 Configure your DHCP server to assign an IP address to management port of the Firepower 4100/9300 chassis. The DHCP client request from the Firepower 4100/9300 chassis will contain the following: • The management interface’s MAC address.
- Page 6 Connect to the management port using the following command: ssh install@<ip_address> where <ip_address> is the IP address of the management port on the Firepower 4100/9300 chassis that was assigned by your DHCP server. b) When prompted, log in with the password Admin123.
- Page 7 HTTPS Mgmt Access IPv4 netmask: 255.0.0.0 Configure the DNS Server IP address? (yes/no) [n]: y DNS IP address : 10.164.47.13 Configure the default domain name? (yes/no) [n]: y Default domain name : cisco.com Following configurations will be applied: Switch Fabric=A System Name=firepower-9300 Enforced Strong Password=no Supervisor Mgmt IP Address=10.89.5.14...
- Page 8 "system_name": "firepower-9300" Log In or Out of the Firepower Chassis Manager Before you can configure your Firepower 4100/9300 chassis using Firepower Chassis Manager, you must log in using a valid user account. For more information on user accounts, see User Management.
- Page 9 To log in to the Firepower Chassis Manager: a) Using a supported browser, enter the following URL in the address bar: https://<chassis_mgmt_ip_address> where <chassis_mgmt_ip_address> is the IP address or host name of the Firepower 4100/9300 chassis that you entered during initial configuration. Note For information on supported browsers, refer to the release notes for the version you are using (see http://www.cisco.com/c/en/us/support/security/firepower-9000-series/products-release-notes-list.htm...
- Page 10 Getting Started Accessing the FXOS CLI Note SSH log in is case-sensitive. From a Linux terminal using SSH: • ssh ucs-auth-domain\\username@{UCSM-ip-address|UCMS-ipv6-address} ssh ucs-example\\jsmith@192.0.20.11 ssh ucs-example\\jsmith@2001::1 • ssh -l ucs-auth-domain\\username {UCSM-ip-address| UCSM-ipv6-address| UCSM-host-name} ssh -l ucs-example\\jsmith 192.0.20.11 ssh -l ucs-example\\jsmith 2001::1 •...