Skip to main content

 

 

Cisco Defense Orchestrator

Reconnecting Devices to CDO

About Reconnecting to Devices

Cisco Defense Orchestrator (CDO) may lose its connection to a device for various reasons. Below are some device connection states and a likely problem causing that state. 

Connection State Likely Problem
Unreachable

Device is powered down.

IP address has changed on the device.

New Certificate Detected

Certificate on the device has changed. If the device uses a self-signed certificate, then this could have happened due to the device being power cycled.

Invalid credentials Username and password combination used by CDO to connect to the device is incorrect.

Below are different ways to recover the connection between CDO and a device. It may be that there is more than one problem causing the connection failure. When you attempt to reconnect, CDO will prompt you to fix all of these problems first before performing the reconnect. 

Resolve Unreachable Connection State

If the connectivity state is "unreachable" follow this procedure:

  1. Open the Devices & Services page.
  2. Select the device in the Unreachable state.
  3. Click  reconnect.png Reconnect.
  4. Take one of these actions:
  • If the device was rebooted, and there are no other pending changes, the device should return to an online connection state and no further action is needed.
  • If you receive the message, "This device is unreachable, review the IP address and port," enter the new IP address and/or new port information of the device in the message box.
  1. It is likely that because CDO attempted to connect to an invalid IP address, the IP address for the device was changed directly on the device. You may now see that the device is "Online" but the configuration state is "Conflict Detected." Use Resolve Configuration Conflicts, to review the configuration differences between CDO and the device.

Resolve New Certificate Detected Connection State

  1. Open the Devices & Services page.
  2. Select the device in the New Certificate Detected state.
  3. Take one of these actions:
  • Click  reconnect.png Reconnect.
  • Click Review Certificate in the Device Details panel.
  1. When prompted to review and accept the certificate:
    1. Click Download Certificate and review it.
    2. If you are satisfied with the certificate, click Accept.
  2. The Connectivity status may show Online and the Configuration Status may show "Not Synced" or "Conflict Detected." Review Resolve Configuration Conflicts to review and resolve configuration differences between CDO and the device.

Resolve Invalid Credentials Connection State

Choose one of these methods to resolve device disconnection due to invalid credentials:

  1. Open the Devices & Services page.
  2. Select the device with the Invalid Credentials state.
  3. Click Update Credentials in the in the Device Details panel.
  4. When prompted enter the new username and password for the device.
  5. Click Continue.
  6. After the device is online and ready to use, click Close.
  7. It is likely that because CDO attempted to use the wrong credentials to connect to the device, the username and password combination CDO should use to connect to the device was changed directly on the device. You may now see that the device is "Online" but the configuration state is "Conflict Detected." Use Resolve Configuration Conflicts to review and resolve configuration differences between CDO and the device.
  • Was this article helpful?