Guest

Preview Tool

Cisco Bug: CSCvi57595 - Deployment failing from FMC due to HA pair of FTDs in unknown_unknown state

Last Modified

Aug 13, 2018

Products (1)

  • Cisco Firepower Management Center

Known Affected Releases

6.2.0.2

Description (partial)

Symptom:
While troubleshooting an issue for policy deployment failure on FTD HA "Deployment in not possible for this HA pair as both units are in unknown state. Break the HA pair after selecting the force operation and reform the HA pair". We could not figure out for device, why was it marked as UNKNOWN. We have insufficient logging done at the FMC for this issue. Device has actually sent a response for ?show failover? as ?Secondary ? standby?. Even then, FMC marked this device as UNKNOWN. So, I am filing a new bug to enhance logging on FMC for such issues.

Conditions:
While troubleshooting an issue for policy deployment failure on FTD HA "Deployment in not possible for this HA pair as both units are in unknown state. Break the HA pair after selecting the force operation and reform the HA pair". We could not figure out for device, why was it marked as UNKNOWN. We have insufficient logging done at the FMC for this issue. Device has actually sent a response for ?show failover? as ?Secondary ? standby?. Even then, FMC marked this device as UNKNOWN. So, I am filing a new bug to enhance logging on FMC for such issues.

Related Community Discussions

<key>CSCvi57595</key> - Deployment failing from FMC due to HA pair of FTDs in unknown_unknown state
All,    So for the same, i would not call it a Bug in my case, because my FTD HA pair was down because of network maintenance. And firepower did the deployment for all the managed devices in FMC. For other other devices it went through but for this FTD HA pair, i got this error &quot;Deployment is not possible for this HA pair as both units are in unknown state. Break the HA pair after selecting the force operation and reform the HA pair&quot;.   Now questions is, once the network is up and devices is started ...
Latest activity: Apr 26, 2018
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.