Cisco Firepower 1010 Getting Started Manual page 151

Hide thumbs Also See for Firepower 1010:

Getting started manual (190 pages)

Hardware installation manual (50 pages)

Getting started (42 pages)

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

page of 182

/ 182
Contents
Table of Contents
Bookmarks

Table of Contents

Firepower Threat Defense Deployment with a Remote FMC

Before you begin

• You can configure SSH internal users at the CLI using the configure user add command. By default,

• You need network objects that define the hosts or networks you will allow to make SSH connections to

Procedure

Step 1

Select Devices > Platform Settings and create or edit an FTD policy.

Step 2

Select Secure Shell.

Step 3

Identify the interfaces and IP addresses that allow SSH connections.

Use this table to limit which interfaces will accept SSH connections, and the IP addresses of the clients who

are allowed to make those connections. You can use network addresses rather than individual IP addresses.

a) Click Add to add a new rule, or click Edit to edit an existing rule.

b) Configure the rule properties:

c) Click OK.

Step 4

Click Save.

You can now go to Deploy > Deployment and deploy the policy to assigned devices. The changes are not

active until you deploy them.

Deploy the Configuration

Deploy the configuration changes to the FTD; none of your changes are active on the device until you deploy

them.

All manuals and user guides at all-guides.com

there is an admin user for which you configured the password during initial setup. You can also configure

external users on LDAP or RADIUS by configuring External Authentication in platform settings.

the device. Select Objects > Object Management to configure objects.

Note

You cannot use the system-provided any network object. Instead, use any-ipv4

or any-ipv6.

• IP Address—The network object that identifies the hosts or networks you are allowing to make SSH

connections. Choose an object from the drop-down menu, or add a new network object by clicking

• Security Zones—Add the zones that contain the interfaces to which you will allow SSH connections.

For interfaces not in a zone, you can type the interface name into the field below the Selected Security

Zone list and click Add. These rules will be applied to a device only if the device includes the selected

interfaces or zones.

Deploy the Configuration

Cisco Firepower 1010 Getting Started Guide

149

Table of Contents

Chapters

Table of Contents

This manual is also suitable for:

Lightstream 1010

Cisco Firepower 1010 Getting Started Manual page 151

Chapters

Related Manuals for Cisco Firepower 1010

Related Products for Cisco Firepower 1010

This manual is also suitable for:

Table of Contents