How to Factory Reset a Cisco Firepower Threat Defense (FTD) Appliance

byInfokie Published:


There are times when a Cisco Firepower Threat Defense (FTD) device becomes unstable due to software bugs, database corruption, or misconfigurations. In such cases, a factory reset may be the only solution.

This guide covers two scenarios:

  • Resetting an FMC-managed FTD (Firepower Management Center)
  • Resetting an FDM-managed FTD (Firepower Device Manager)

We'll also cover post-reset steps like restoring configurations and re-licensing.

🔧 Resetting an FMC-Managed FTD

If your FTD is controlled by a Firepower Management Center (FMC), use one of these methods:

Option 1: Remove FMC Management

Run this command in the FTD CLI to delete the FMC association and reset the configuration:

configure manager delete

Effect: The FTD will disconnect from FMC and revert to a clean state.

Option 2: Change Firewall Mode

Switching firewall modes clears the configuration but may not fix database corruption.

configure firewall ?

Choose:

  • routed – For standard firewall mode.
  • transparent – For Layer 2 transparent mode.
⚠️ Warning: This does not fully rebuild the database. If corruption is suspected, a full factory reset (below) is recommended.

🛠️ Resetting an FDM-Managed FTD

For locally managed FTDs (Firepower Device Manager), follow these steps:

Step 1: Backup Your Configuration

Before resetting, download a full backup from:

FDM → System → Backup/Restore

Step 2: Enter ROMMON Mode

  1. Power-cycle the appliance.
  2. During boot, press ESC or Break to enter ROMMON.

Step 3: Execute Factory Reset

In ROMMON, run:

rommon 3 > factory-reset  
rommon 4 > yes      # Confirm  
rommon 5 > ERASE    # Start reset (must be typed exactly)
Note: The system will reboot and wipe all configurations.

Step 4: Initial Setup After Reset

After reboot:

  1. Login with:
    • Username: admin
    • Password: Admin123 (change immediately).
  2. Follow the setup wizard:
    • Accept the EULA.
    • Configure management IP, gateway, and DNS.
    • Set hostname and firewall mode (routed/transparent).
    • Choose FDM for local management.

🔄 Post-Reset Tasks

1. Restore Configuration (If Needed)

  • Upload your backup via FDM → System → Backup/Restore.

2. Re-License the Device

  • Go to Cisco Software Central → Inventory → Product Instances.
  • Remove the old license and generate a new registration token.
  • Apply the token in FDM → System → Licenses.

🚨 Important Notes

  • Factory reset erases all settings – Always back up first!
  • If the device fails to boot, consider reimaging via USB/FXOS.
  • For FTD clusters, reset each node individually.

📞 Need Help?

If you encounter issues during the reset process, feel free to reach out for support.

🔹 Was this guide helpful? Let us know in the comments!

Final Thoughts

A factory reset is a powerful troubleshooting step for FTD appliances, especially when dealing with database corruption or unrecoverable errors. By following this guide, you can safely restore your device to a working state.

Would you like a deeper dive into FTD troubleshooting? Let us know! 🚀

Tags:

You might like

View all
Previous Post Next Post
Share to other apps
Copy Post Link