Use Cases
Software Products MSPs Schools Development & Marketing DevOps Agencies Help Desk
 
Internet Status Blog Pricing Log In Try IsDown for free now

Outage in Cisco Web Security

Urgent ESA Issue - 2022-08-08-1

Resolved Major
August 08, 2022 - Started over 3 years ago - Lasted 1 day
Official incident page

Incident Report

Issue History: 2022-08-08 01:00 ET – Initial document created 2022-08-08 03:20 ET - Workaround section updated 2022-08-08 15:30 ET - Root cause identified, workaround/solution section updated Problem Description: Multiple customers have reported seeing connectivity errors between Cisco ESA and SMA impacting delivery of Policy, Virus and Outbreak Quarantine emails. Problem Symptoms: ESA will generate alerts as below 08 Aug 2022 xx:xx:xx Quarantine: Could not connect to the SMA xx.xx.xx.xx Workaround/Solution: Investigation is complete and the source of the issue has been identified to be related to certificates for CPQ connectivity. Connectivity from the SMA to the ESA has been successfully addressed through a cloud update received at the ESA. To address the delivery of emails from the ESA to the SMA please issue the CLI command "updatepvocert" on SMA 13.x and higher. For customers running SMA 11.x or 12.x, please upgrade to 13.x or above. For More Information: If you require further assistance, or if you have any further questions regarding this issue, please contact the Cisco Systems Technical Assistance Center (TAC) by one of the following methods: Open a service request on Cisco.com By email By telephone Please follow the link below to stay updated on this incident using our community forum: https://community.cisco.com/t5/security-urgent-notices/urgent-esa-issue-2022-08-08-1/ta-p/4665516

Need to monitor Cisco Web Security outages?

  • Monitor all your external dependencies in one place
  • Get instant alerts when outages are detected
  • Be the first to know if service is down
  • Show real-time status on private or public status page
  • Keep your team informed
Start monitoring for free
Latest Updates ( sorted recent to last )
RESOLVED over 3 years ago - at 08/09/2022 05:03PM

This incident has been resolved. For customers running ESA and SMA versions 14.x, there will be a banner on the GUI reminding to update the CPQ certificate via the provided workaround for the SMA (Secure Email and Web Manager). If you require further assistance, please contact the Cisco Systems Technical Assistance Center (TAC).

IDENTIFIED over 3 years ago - at 08/08/2022 09:54PM

See below.

IDENTIFIED over 3 years ago - at 08/08/2022 08:39PM

We appreciate our customers' patience and apologize for the duplicate updates. The latest status is that the investigation is complete and the source of the issue has been identified to be related to certificates for CPQ connectivity. Customers who are running SMA 13.x and higher must run the CLI command "updatepvocert" on the SMA to restore delivery of emails from ESA to SMA.

IDENTIFIED over 3 years ago - at 08/08/2022 08:26PM

Investigation is complete and the source of the issue has been identified to be related to certificates for CPQ connectivity.

IDENTIFIED over 3 years ago - at 08/08/2022 08:16PM

Investigation is complete and the source of the issue has been identified to be related to certificates for CPQ connectivity.

IDENTIFIED over 3 years ago - at 08/08/2022 08:16PM

Investigation is complete and the source of the issue has been identified to be related to certificates for CPQ connectivity.

INVESTIGATING over 3 years ago - at 08/08/2022 05:04AM

Issue History:
2022-08-08 01:00 ET – Initial document created
2022-08-08 03:20 ET - Workaround section updated
2022-08-08 15:30 ET - Root cause identified, workaround/solution section updated

Problem Description:
Multiple customers have reported seeing connectivity errors between Cisco ESA and SMA impacting delivery of Policy, Virus and Outbreak Quarantine emails.

Problem Symptoms:
ESA will generate alerts as below
08 Aug 2022 xx:xx:xx Quarantine: Could not connect to the SMA xx.xx.xx.xx

Workaround/Solution:
Investigation is complete and the source of the issue has been identified to be related to certificates for CPQ connectivity.

Connectivity from the SMA to the ESA has been successfully addressed through a cloud update received at the ESA. To address the delivery of emails from the ESA to the SMA please issue the CLI command "updatepvocert" on SMA 13.x and higher. For customers running SMA 11.x or 12.x, please upgrade to 13.x or above.

For More Information:
If you require further assistance, or if you have any further questions regarding this issue, please contact the Cisco Systems Technical Assistance Center (TAC) by one of the following methods:

Open a service request on Cisco.com
By email
By telephone

Please follow the link below to stay updated on this incident using our community forum:
https://community.cisco.com/t5/security-urgent-notices/urgent-esa-issue-2022-08-08-1/ta-p/4665516

Latest Cisco Web Security outages

Urgent ESA Issue - 2023-01-14-1 - about 3 years ago
[Reminder] Urgent ESA, SMA, and WSA Field Notice | FN - 72502 - about 3 years ago
Urgent ESA, SMA, and WSA Field Notice - 2022-12-05 - about 3 years ago
Urgent ESA Issue - 2022-09-08-1 - over 3 years ago
Urgent ESA Issue - 2022-09-02-1 - over 3 years ago

The Status Page Aggregator with Early Outage Detection

With IsDown, you can monitor all your critical services' official status pages from one centralized dashboard and receive instant alerts the moment an outage is detected. Say goodbye to constantly checking multiple sites for updates and stay ahead of outages with IsDown.

Start free trial

No credit card required · Cancel anytime · 5850 services available

Integrations with Slack Microsoft Teams Google Chat Datadog PagerDuty Zapier Discord Webhook