Firepower/FTD: Expired certs cause Security Intel. and malware file preclassification signature updates to fail
Here is the Newley released info on the Cert errors on Cisco Firepower
Expired certs cause Security Intel. and malware file preclassification signature updates to fail
CSCwa70008
Customer Visible
Symptom: The self-signed Sourcefire VRT certificate used for Talos Security Intelligence updates and ClamAV updates is being decommissioned and will not be renewed. Due to this change, Cisco Talos Security Intelligence and ClamAV signature updates will fail after March 5, 2022.
Affected Firepower platforms will not be able to receive Talos updates for Security Intelligence feeds for IP,URL,DNS and ClamAV signature updates that are used for Malware File preclassification impacting the functionality and there will health monitoring alerts which might be triggered by this.
Conditions: Firepower platforms using Security Intelligence and Malware file preclassification will be impacted without an upgrade before March 5, 2022.
Workaround: Upgrade the Firepower software to a recommended release to update the root certificate.
Further Problem Description: Reference the Field Notice link below for the applicable Firepower maintenance release upgrades. https://www.cisco.com/c/en/us/support/docs/field-notices/723/fn72332.html
Is this applicable for Cisco+FirePOWER too.
You need to update any Firepower software, even ASA w/Firepower
Link not active any more.
Further Problem Description: Reference the Field Notice link below for the applicable Firepower maintenance release upgrades. https://www.cisco.com/c/en/us/support/docs/field-notices/723/fn72332.html
yes, I copied it to my blog though, before they took it down