Connectivity

The Secure Device Connector changed IP address, but this was not reflected within Security Cloud Control Firewall Management . What can I do to reflect the change?

In order to obtain and update the new Secure Device Connector (SDC) within Security Cloud Control Firewall Management , you will need to restart the container using the following commands:

 Stop Docker deamon>#service docker stop
Change IP address
Start Docker deamon >#service docker start
Restart container on the SDC virtual appliance >bash-4.2$ ./cdo/toolkit/toolkit.sh restartSDC <tenant-name>

What happens if the IP address used by Security Cloud Control Firewall Management to manage my devices ( FTD or ASA) changes?

If the IP address of the device changes for any reason, whether it is a change in the static IP address or a change in the IP address due to DHCP, you can change the IP address that Security Cloud Control Firewall Management uses to connect to the device (see Changing a Device's IP Address in Security Cloud Control Firewall Management) and then reconnect the device (see Bulk Reconnect Devices to Security Cloud Control Firewall Management). When reconnecting the device you will be asked to enter the new IP address of the device as well as re-enter the authentication credentials.

What networking is required to connect my ASA to Security Cloud Control Firewall Management ?

ASDM image present and enabled for ASA.
Public interface access to 52.25.109.29, 52.34.234.2, 52.36.70.147
ASA's HTTPS port must be set to 443 or to a value of 1024 or higher. For example, it cannot be set to port 636.
If the ASA under management is also configured to accept AnyConnect VPN Client connections, the ASA HTTPS port must be changed to a value of 1024 or higher.