Firepower/FTD: Expired certs cause Security Intel. and malware file preclassification signature updates to fail

Here is the Newley released info on the Cert errors on Cisco Firepower
Expired certs cause Security Intel. and malware file preclassification signature updates to fail
CSCwa70008  
Customer Visible
Symptom: The self-signed Sourcefire VRT certificate used for Talos Security Intelligence updates and ClamAV updates is being decommissioned and will not be renewed. Due to this change, Cisco Talos Security Intelligence and ClamAV signature updates will fail after March 5, 2022.
Affected Firepower platforms will not be able to receive Talos updates for Security Intelligence feeds for IP,URL,DNS and ClamAV signature updates that are used for Malware File preclassification impacting the functionality and there will health monitoring alerts which might be triggered by this.
Conditions: Firepower platforms using Security Intelligence and Malware file preclassification will be impacted without an upgrade before March 5, 2022.
Workaround: Upgrade the Firepower software to a recommended release to update the root certificate.
Further Problem Description: Reference the Field Notice link below for the applicable Firepower maintenance release upgrades. https://www.cisco.com/c/en/us/support/docs/field-notices/723/fn72332.html

 

4 Comments

Leave a Reply

Your email address will not be published.