Discovering Cisco FMC

David Casper · ‎07-19-2022

I'm trying to discovery our Cisco FMC devices (Firewall Management Center formerly Firepower Management Center) without success atm. I'm getting data back via SNMP, but SNOW is unable to classify it which is the remaining issue. However it could also be due to the fact that it's a virtual appliance and maybe needs other creds or something I've not even thought of yet 🙂

There are no classes that call out FMC specifically and I'm on the latest version of both the CMDB CI Class Models and Discovery and Service Mapping Patterns plugins.

Unfortunately I've not found any community posts on this either hence why I'm making this one. Has anyone had experience discovering these?

jimmillet · ‎08-14-2023

We are having related issue, where SNMP based discovery pattern named "Next Generation Cisco Firewall" fails. The pattern is unable to discovery Serial Number. Since all the devices have the same sysName value of "firepower", a single CI is created and updated for each IP address. Sys ObjectID is "1.3.6.1.4.1.9.1.2406". This is the error message we see in the pattern log, in the bottom "Check Processing Success" section: "Identification Engine: Discovery status is FAILURE, CI Type cmdb_ci_firewall_device_cisco cannot be created since there are no attributes defined. Debug pattern to understand why no attributes have been assigned."

VaranAwesomenow · ‎12-20-2023

@David Casper any luck with this.

Checkout Varan awesomenow youtube channel for more learning videos!

David Casper · ‎01-18-2024

Unfortunately, no. It wasn't a priority and now they are slated for decom so I may never know haha.