Guest

Preview Tool

Cisco Bug: CSCum65755 - ASA CX - Changing Managed Mode causes ASA failover

Last Modified

Nov 27, 2020

Products (1)

  • Cisco ASA Next-Generation Firewall Services

Known Affected Releases

9.2(1.2.50)

Description (partial)

Symptom:
When changing CX management mode from Multiple to Single-Device mode CX restarts its services and subsequently causes ASA failover without a warning in case HW is used. I have attached a document with screenshots.

The purpose of this bug is to document and change the behavior so:
1.  Update the CX configuration guide in section
http://www.cisco.com/en/US/partner/docs/security/asacx/9.2/user/guide/prsm-ug-inventory.html#concept_E59871BDE5CF432E9F2B4121DFFFC56A
subsection 'Going Back to Unmanaged Mode' and add a Note like the following:
'Switching to Single-Device Mode will restart the CX services and cause ASA failover in case HA is used'
2. When user clicks on 'Switch to Single-Device Mode' currently sees:
'You are about to unmanage this device an return it to single-device mode. You cannot undo this action. Press OK to proceed.'
This would be better if was changed to:
''You are about to unmanage this device an return it to single-device mode. You cannot undo this action. This will trigger ASA failover in case HA is used. Press OK to proceed.'

Conditions:
ASA HA is used
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.