Cisco Cisco Firepower Management Center 4000

Page of 1844
 
49-11
FireSIGHT System User Guide
 
Chapter 49      Scheduling Tasks
  Automating Software Updates
Tip
The comment field appears in the View Tasks section of the page, so you should try to keep it relatively 
short.
Step 9
Optionally, in the 
Email Status To:
 field, type the email address (or multiple email addresses separated by 
commas) where you want status messages sent.
You must have a valid email relay server configured to send status messages. See 
 for more information about configuring a relay host.
Step 10
Click 
Save
.
The task is added. You can check the status of a running task on the Task Status page; see 
.
Automating Software Updates
License: 
Any
You can automatically download and apply most patches and feature releases to the FireSIGHT System.
Note
You must manually upload and install updates in two situations. First, you cannot schedule major 
updates to the FireSIGHT System. Second, you cannot schedule updates for or pushes from appliances 
that cannot access the Support Site. If your appliance is not directly connected to the Internet, you should 
set up a proxy as described in 
 to allow it to download updates 
from the Support Site. For information on manually updating the FireSIGHT System, see 
.
The tasks you must schedule to install software updates vary depending on whether you are updating the 
Defense Center or are using a Defense Center to update managed devices. Cisco strongly recommends 
that you use your Defense Centers to update the devices they manage.
To update the Defense Center, schedule the software installation using the Install Latest Update task. To 
use a Defense Center to automate software updates for its managed devices, you must schedule two 
tasks:
Step 1
Push (copy) the update to managed devices using the Push Latest Update task.
Step 2
Install the update on managed devices using the Install Latest Update task.
When scheduling updates, schedule the push and install tasks to happen in succession. That is, to 
automate software updates on your managed devices, you must first push the update to the device before 
you can install it. (Note that during the manual update process you do not have to push an update to 
managed devices before you install it. For more information, see 
.)
Note
You cannot create individual update tasks for managed devices in a clustered or stacked configuration.