Procedure to Onboad an FDM-Managed Device Running Software Version 6.6+ Using a Registration Key

To onboard an FDM-managed device using a registration key, follow this procedure:

Procedure


Step 1

Log in to Security Cloud Control.

Step 2

In the left pane, click Security Devices.

Step 3

Click the blue plus button to Onboard a device.

Step 4

Click FTD.

Important

When you attempt to onboard the FDM-managed device, Security Cloud Control prompts you to read and accept the End User License Agreement (EULA), which is a one-time activity in your tenant. Once you accept this agreement, Security Cloud Control doesn't prompt it again in subsequent onboarding. If the EULA agreement changes in the future, you must accept it again when prompted.

Step 5

On the Onboard FTD Device screen, click Use Registration Key.

Step 6

Enter the device name in the Device Name field. This could be the hostname of the device or any other name you choose.

Step 7

In the Database Updates area, the Immediately perform security updates, and enable recurring updates is enabled by default. This option immediately triggers a security update as well as automatically schedules the device to check for additional updates every Monday at 2AM. See Update FTD Security Databases and Schedule a Security Database Update for more information.

Note

Disabling this option does not affect any previously scheduled updates you may have configured through Secure Firewall device manager.

Step 8

In the Create Registration Key step, Security Cloud Control generates a registration key.

Note

If you move away from the onboarding screen after the key is generated and before the device is fully onboarded, you will not be able to return to the onboarding screen; however, Security Cloud Control creates a placeholder for that device on the Inventory page. When you select the device's placeholder, you will be able to see the key for that device, on that page.

Step 9

Click the Copy icon to copy the registration key.

Note

You can skip copying the registration key and click Next to complete the place holder entry for the device and later, register the device. This option is useful when you're attempting to create the device first and register it later, or if you're a Cisco partner installing a Proof of Value (POV) device in a customer network.

On the Inventory page, you will see that the device is now in the connectivity state, "Unprovisioned". Copy the registration key appearing under Unprovisionedto Firewall device manager to complete the onboarding process.

Step 10

Log into the Secure Firewall device manager of the device you are onboarding.

Step 11

Under System Settings, click Cloud Services.

Step 12

In the Region field, select the Cisco cloud region that your tenant is assigned to.

Step 13

In the Enrollment Type area, click Security Account .

Note

For devices running version 6.6, note that the Tenancy tab for Security Cloud Control is titled Security Account and you must manually enable Security Cloud Control in Secure Firewall device manager.

Step 14

In the Registration Key field, paste the registration key that you generated in Security Cloud Control.

Step 15

For devices running version 6.7 or later in the Service Enrollment area, check Enable Cisco Security Cloud Control.

Step 16

Review the information about the Cisco Success Network Enrollment. If you do not want to participate, uncheck the Enroll Cisco Success Network checkbox.

Step 17

Click Register and then Accept the Cisco Disclosure. Secure Firewall device manager sends the registration request to Security Cloud Control.

Step 18

Return to Security Cloud Control, in the Create Registration Key area, click Next.

Step 19

Select all licenses you want to apply to the device. Click Next.

Step 20

Return to Security Cloud Control, open the Inventory page and see that the device status progresses from "Unprovisioned" to "Locating" to "Syncing" to "Synced."