Skip to main content

 

 

Cisco Defense Orchestrator

Onboard an FTD Using Username, Password, and IP Address

This is the simplest method of onboarding a Firepower Threat Defense (FTD) Device. However, the recommended way of onboarding the FTD device to CDO is to use the registration token onboarding approach. 

Before Onboarding

Important: Before you onboard an FTD device to CDO, read Onboard an FTD. It lists the general device requirements and onboarding prerequisites needed to onboard a device.

For this onboarding method, you will also need this information: 

  • The device's administrator username and password.
  • The device's IP address of the interface you are using to manage the device. This may be the MGMT interface, an inside interface, or the outside interface depending on how you have configured your network.
  • The FTD must be managed by Firepower Device Manager (FDM) and configured for local management in order for you to onboard it to CDO. It cannot be managed by Firepower Management Center (FMC). 

Onboarding Procedure

Use this procedure to onboard an FTD device using only the administrator username and password and the device's Management IP address:

  1. Navigate to the Devices & Services page.
  2. Click Onboard.
  3. Click Add a Firepower Threat Defense device.
  4. Give the device a name.
  5. Do not check "This device is not Smart Licensed." 
  6. In the Device Location field, enter the Management interface IP address, hostname, or fully qualified device name of the device. The default port is 443. You can change the port number to reflect your FTD's configuration.
  7. Enable scheduled recurring updates for databases. This option is enabled by default, and immediately triggers a security update as well as automatically schedules the device to check for additional updates every Monday at 2AM. Click Set Schedule to modify the scheduled time. 

Note: If you enable this option, this schedule will overwrite any scheduled updates you may have configured through FDM. Disabling this option does not affect any previously scheduled updates you may have configured through FDM. See Update FTD Security Databases for more information.

  1. Click Go.
  2. Once the location of the device is verified, you're prompted to enter the device administrator's username and password. 
  3. Click Connect.
  4. (Optional) Once the credentials are verified, you're prompted to label the device or service. See Labels and Label Groups for more information.
  5. (Optional) Label your device.
  6. Once the device is onboarded, CDO shows it on the Devices & Services page with a "Synced" status.

Related Topics