Outage in Cisco Web Security
Urgent ESA, SMA, and WSA Field Notice - 2022-12-05
Resolved MinorIncident Report
Issue History
2022-12-05 15:50 EST – Initial document published
Problem Description
All Secure Email, Management, and Web virtual appliances that use the traditional Virtual License Number (VLN) certificate file with certificates created before December 15, 2021, that expire after January 13, 2023, will need an updated VLN file that contains a new certificate to avoid disruption to updates and upgrades.
Problem Symptoms
Engine updates and AsyncOS upgrades for affected Cisco Secure Web, Secure Management, and Secure Email virtual appliances will fail after January 13, 2023, with this error in the updater_logs subscription:
"Dynamic manifest fetch failure: Failed to authenticate with manifest server"
A negative effect on efficacy is experienced when the virtual appliance can no longer receive upgrades and updates.
How to Identify Affected Devices
Note: The issue is not AsyncOS specific. It impacts all versions that use a VLN certificate file that was made by the older Talos Keymaster CA.
Perform these steps to determine if your virtual appliance is affected. Please note that these steps must be performed on each virtual device.
Log in to the CLI of your appliance.
Enter the showlicense command and press Enter.
If the begin_date reads December 14, 2021, or earlier, the virtual appliance is affected.
Workaround/Solution
An updated VLN certificate file must be applied to each affected virtual appliance to resolve this issue.
To obtain an updated VLN certificate file, contact the Cisco Systems Technical Assistance Center (TAC). The new VLN certificate file must be applied to each impacted appliance. See the Load the Virtual License onto Your Appliance section of Best Practices for Virtual ESA, Virtual WSA, or Virtual SMA License
Please note that impacted customers will be contacted separately, but can reach out to TAC at any time.
For More Information
If you require further assistance, or if you have any further questions regarding this field notice, please get in touch with the Cisco Systems Technical Assistance Center (TAC) by one of the following methods:
Open a service request on Cisco.com
By email
By telephone
Please follow the link below to stay updated on this incident using our community forum:
https://community.cisco.com/t5/security-urgent-notices-knowledge-base/urgent-esa-sma-and-wsa-issue-nbsp-2022-12-05/ta-p/4732818
Need to monitor Cisco Web Security outages?
- Monitor all your external dependencies in one place
- Get instant alerts when outages are detected
- Be the first to know if service is down
- Show real-time status on private or public status page
- Keep your team informed
Latest Updates ( sorted recent to last )
RESOLVED
about 3 years ago - at 12/05/2022 09:07PM
Issue History
2022-12-05 15:50 EST – Initial document published
Problem Description
All Secure Email, Management, and Web virtual appliances that use the traditional Virtual License Number (VLN) certificate file with certificates created before December 15, 2021, that expire after January 13, 2023, will need an updated VLN file that contains a new certificate to avoid disruption to updates and upgrades.
Problem Symptoms
Engine updates and AsyncOS upgrades for affected Cisco Secure Web, Secure Management, and Secure Email virtual appliances will fail after January 13, 2023, with this error in the updater_logs subscription:
"Dynamic manifest fetch failure: Failed to authenticate with manifest server"
A negative effect on efficacy is experienced when the virtual appliance can no longer receive upgrades and updates.
How to Identify Affected Devices
Note: The issue is not AsyncOS specific. It impacts all versions that use a VLN certificate file that was made by the older Talos Keymaster CA.
Perform these steps to determine if your virtual appliance is affected. Please note that these steps must be performed on each virtual device.
Log in to the CLI of your appliance.
Enter the showlicense command and press Enter.
If the begin_date reads December 14, 2021, or earlier, the virtual appliance is affected.
Workaround/Solution
An updated VLN certificate file must be applied to each affected virtual appliance to resolve this issue.
To obtain an updated VLN certificate file, contact the Cisco Systems Technical Assistance Center (TAC). The new VLN certificate file must be applied to each impacted appliance. See the Load the Virtual License onto Your Appliance section of Best Practices for Virtual ESA, Virtual WSA, or Virtual SMA License
Please note that impacted customers will be contacted separately, but can reach out to TAC at any time.
For More Information
If you require further assistance, or if you have any further questions regarding this field notice, please get in touch with the Cisco Systems Technical Assistance Center (TAC) by one of the following methods:
Open a service request on Cisco.com
By email
By telephone
Please follow the link below to stay updated on this incident using our community forum:
https://community.cisco.com/t5/security-urgent-notices-knowledge-base/urgent-esa-sma-and-wsa-issue-nbsp-2022-12-05/ta-p/4732818
Latest Cisco Web Security outages
Urgent ESA Issue - 2023-01-14-1 - about 3 years ago
[Reminder] Urgent ESA, SMA, and WSA Field Notice | FN - 72502 - about 3 years ago
Urgent ESA Issue - 2022-09-08-1 - over 3 years ago
Urgent ESA Issue - 2022-09-02-1 - over 3 years ago
Urgent ESA Issue - 2022-08-08-1 - over 3 years ago
The Status Page Aggregator with Early Outage Detection
With IsDown, you can monitor all your critical services' official status pages from one centralized dashboard and receive instant alerts the moment an outage is detected. Say goodbye to constantly checking multiple sites for updates and stay ahead of outages with IsDown.
Start free trialNo credit card required · Cancel anytime · 5850 services available
Integrations with
