High Availability Support on Threat Defense Devices in a Remote Branch Office Deployment

In a remote branch office deployment, the data interface of the threat defense device is used for Cisco Defense Orchestrator management instead of the Management interface on the device. Because most remote branch offices only have a single internet connection, outside CDO access makes centralized management possible.

You can use any data interface for CDO access, for example, the inside interface if you have an inside CDO. However, this guide primarily covers outside interface access, because it is the most likely scenario for remote branch offices.

CDO provides high availability support on the threat defense devices that it manages through the data interface. This feature is supported on devices running on software version 7.2 or later.

For more information, see Firepower Threat Defense Deployment with a Remote FMC in the Cisco Firepower Getting Started Guide.