Cisco Cisco FirePOWER Appliance 7020
6-15
FireSIGHT System User Guide
Chapter 6 Managing Devices
Working with Devices
•
System Policy; see
for more information
•
Access Control Policy; see
for more information
For device groups, you can expand and collapse the list of devices in the group. The list appears
collapsed by default.
collapsed by default.
See the following table for more information about the appliance list.
See the following sections for more features accessible from the Device Management page:
•
•
•
•
Adding Devices to the Defense Center
License:
Any
When you manage a device, you set up a two-way, SSL-encrypted communication channel between the
Defense Center and the device. The Defense Center uses this channel to send information about how you
want to analyze your network traffic to the device. As the device evaluates the traffic, it generates events
and sends them to the Defense Center using the same channel.
Defense Center and the device. The Defense Center uses this channel to send information about how you
want to analyze your network traffic to the device. As the device evaluates the traffic, it generates events
and sends them to the Defense Center using the same channel.
Note that you cannot add devices running software more than one major version lower than the Defense
Center. For example, if your Defense Center is running Version 5.3.1, you can add devices running
Version 5.2.x or higher but not devices running Version 5.1.x.
Center. For example, if your Defense Center is running Version 5.3.1, you can add devices running
Version 5.2.x or higher but not devices running Version 5.1.x.
Before you manage a device with a Defense Center, you must make sure that the network settings are
configured correctly on the device. This is usually completed as part of the installation process. See
configured correctly on the device. This is usually completed as part of the installation process. See
for more information.
Note that if you registered a Defense Center and a device using IPv4 and want to convert them to IPv6,
you must delete and re-register the device.
you must delete and re-register the device.
Table 6-1
Appliance List Fields
Field
Description
Name
A list of the hostname, IP address, device model, and software version for
each device. The status icon to the left of the appliance indicates its current
health status.
each device. The status icon to the left of the appliance indicates its current
health status.
License Type
The licenses that are enabled on the managed device.
Health Policy
The currently applied health policy for the device. You can click the name of
the health policy to view a read-only version of the policy. See
the health policy to view a read-only version of the policy. See
for information about modifying an existing
health policy.
System Policy
The currently applied system policy for the device. You can click the name
of the system policy to view a read-only version of the policy. See
of the system policy to view a read-only version of the policy. See
for more information.
Access Control Policy
A link to the currently applied access control policy. See