Guest

Preview Tool

Cisco Bug: CSCuq90719 - ASA DP serviceAudit failed if ASA already has >1 objects configured

Last Modified

Nov 08, 2016

Products (1)

  • Cisco ASA 5500-X Series Firewalls

Known Affected Releases

1.0(1)

Description (partial)

Symptom:
Before APIC connects to the ASA, the ASA already has more than one network/service objects configured like below:
object network real-vm1
 host 1.1.1.1
object network real-vm2
 host 1.1.1.2

On APIC, a device cluster and the associated concreate device(s) are created; the ASA device package will raised the following fault because of serviceAudit fail:
<imdata totalCount="1">
<faultDelegate ack="no" affected="uni/ten-[uni/tn-g003]-scriptHandlerState/LDevOpInf-dmz_asa/devHealth-[uni/tn-g003/lDevVip-dmz_asa/devFolder--key-NetworkObject]" cause="configuration-failed" changeSet="faultCode:10, faultMessage:Major script error : Configuration error : Invalid configuration: only one field in ['HostObject', 'HostObject'] can be set, faultSeverity:major" childAction="" code="F0324" created="2014-09-17T12:25:53.236-04:00" descr="Major script error : Configuration error : Invalid configuration: only one field in ['HostObject', 'HostObject'] can be set" dn="uni/tn-g003/lDevVip-dmz_asa/devFolder--key-NetworkObject/fd-[uni/ten-[uni/tn-g003]-scriptHandlerState/LDevOpInf-dmz_asa/devHealth-[uni/tn-g003/lDevVip-dmz_asa/devFolder--key-NetworkObject]]-fault-F0324" domain="tenant" highestSeverity="major" lastTransition="2014-09-17T12:25:53.236-04:00" lc="soaking" occur="1" origSeverity="major" prevSeverity="major" rule="vns-al4-l7-service-fault-service-major-fault" severity="major" status="" subject="l4-l7-service-fault" type="config"/>
</imdata>

Conditions:
ASA has more than two network/service objects already configured before APIC connects to it.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.