Smarts NCM: Pull Config job on Cisco Firepower device shows complete, but configuration in device properties has error
search cancel

Smarts NCM: Pull Config job on Cisco Firepower device shows complete, but configuration in device properties has error

book

Article ID: 331296

calendar_today

Updated On:

Products

VMware Smart Assurance

Issue/Introduction

Symptoms:


Pull config job for Cisco firepower device completes successfully but on checking the configuration in device properties, below error is shown:


Environment

VMware Smart Assurance - NCM

Cause

The default command  show configuration all no-pending no-diff-markers  sent by NCM for configuration pull doesn t work in the device, whereas "show configuration" command works. This is the case with only few devices of Cisco firepower, others work with default command.

Resolution

Attached is the workaround in Cisco Firepower device class driver code. This solution will send "show configuration" to device if Invalid input detected error is received for default command "show configuration all no-pending no-diff-markers  during config pull on Cisco firepower devices.

Steps to implement the workaround:
1) Create directory structure below in DS, if it is not already present:
$VOYENCE_HOME/custompackage/cisco/ciscofirepower
2) Copy the attached file devCiscoCiscoFirePower.dasl to $VOYENCE_HOME/custompackage/cisco/ciscofirepower
3) Restart voyence service with below command:
service voyence restart
4) Execute Pull Config on the device.