Install FTD 6.2.3 on Cisco ASA 5506-X

This post will describe the process to install the FTD boot image and FTD system image v6.2.3 on a Cisco ASA 5506-X firewall. The images listed below will be required and can be downloaded from the Cisco website here.

  • FTD Boot Image (ftd-boot-
  • FTD System Image (ftd-6.2.3-83.pkg)

In order to download the images to the ASA a TFTP, FTP or HTTP server will be required.

  • TFTP Server (e.g. Solarwinds TFTP) required to load the Boot Image
  • FTP or HTTP Server required to load the FTD System Image

Upgrade Boot Image

  • Connect a console cable to the CONSOLE port on the ASA 5506-X
  • Connect the MGMT interface into a switch on the same subnet as the TFTP/FTP/HTTP server and turn on the ASA
  • Interrupt the boot process when prompted, press ESC
  • Erase the disk, type erase disk0:

  • At the rommon prompt, configure address, server, gateway, file settings
    and then enter the set command, e.g:-

    file  ftd-boot-

  • Type sync
  • Type tftpdnld

During the upgrade process the device will automatically reboot, once completed, the prompt should be firepower-boot>

Upgrade System Image

  • Copy the FTD image e.g.  ftd-6.2.3-83.pkg to your FTP/HTTP Server (in this instance is an http server from where the image will be downloaded).
  • On the ASA FTD console, at the firepower-boot> prompt type setup

Welcome to Cisco FTD Setup
[hit Ctrl-C to abort]
Default values are inside []

Enter a hostname [firepower]: FTD
Do you want to configure IPv4 address on management interface?(y/n) [Y]: y
Do you want to enable DHCP for IPv4 address assignment on management interface?(y/n) [Y]: n
Enter an IPv4 address:
Enter the netmask:
Enter the gateway:
Do you want to configure static IPv6 address on management interface?(y/n) [N]:n
Stateless autoconfiguration will be enabled for IPv6 addresses.
Enter the primary DNS server IP address:
Do you want to configure Secondary DNS Server? (y/n) [n]: n
Do you want to configure Local Domain Name? (y/n) [n]: n
Do you want to configure Search domains? (y/n) [n]: n
Do you want to enable the NTP service? [Y]: n

  • When prompted, press y to apply the changes

Configuration saved successfully!
Restarting network services…

Press ENTER to continue…

Do you want to continue? [y/N] y
Erasing disk0 …
Extracting    …

  • When prompted, press Enter to reboot the system

After the system has rebooted you will be at the firepower login: prompt, you can determine that the FTD install completed successfully as it confirms the version.

You can now login to the device using the default username is admin and the password is Admin123. Once logged into the device you can configure the device.



Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

This site uses Akismet to reduce spam. Learn how your comment data is processed.