ISE

Cisco ISE CIMC firmware upgrade

Cisco ISE CIMC firmware upgrade
In: ISE, Cisco

When I was looking to upgrade the CIMC on the SNS-3515 appliance I was very confused. I couldn't really find a step-by-step guide for upgrading the firmware so, decided to document the steps I took to successfully upgrade the firmware and BIOS.

If you are someone who is managing ISE on an SNS appliance then there is a good chance you came across the Adobe Flashplayer issue. CIMC firmware versions below 3.x requires you to have the Flashplayer installed else you will need to find a (very) older version of the browser.

The upgrade procedure is very straightforward but there are a few things to consider.

  • It is recommended to gracefully shut down the ISE services and halt the OS. (application stop ise and halt commands)
  • As of this writing, the latest available version is 4.0(2n)
  • If the current CIMC version is 3-0-3f, 3-0-4j, or 4-0-2h, you can directly upgrade to 4-0-2n.
  • If the current CIMC version is 2-0-xx, then the upgrade path is 2-0-xx > 3-0-3f, 3-0-4j, or 4-0-2h > 4-0-2n
💡
If the current CIMC version is 3-0-3a or 3-0-3S2, you must downgrade to 2-0-xx or available backup version, because 3-0(3a) and 3-0-3(S2) CIMC versions don't support file size over 40 MB. You might see an error while uploading the file.

You can download both the firmware and the BIOS files from Cisco using the following link https://software.cisco.com/download/home/283801620/type/283802505/release/SNS 35x5

For SNS-35x5 appliances

Of course, if you are still on 2.x.x then the GUI is not available for you to even upgrade the firmware (unless you prefer to upgrade via the CLI). The following browser still supports flash player but please use it at your own risk as the older versions may not have the correct security patches - https://archive.org/details/basilisk-portable-with-flash

Upgrade Procedure

It is recommended that you use the latest BIOS and matching CIMC firmware. When you upgrade the BIOS firmware, you must also upgrade the CIMC firmware to the same version. Otherwise, the server will not boot.

The following procedure shows how to update the firmware from 2.0(9c) to 3.0(3f). I downloaded both files highlighted in the below figure.

Step - 1 Update CIMC Firmware

In the CIMC interface, navigate to Admin > Firmware Management.

  1. Select the Check Install Cisco IMC Firmware through Browser Client option.
  2. In the Install Cisco IMC Firmware window, click Browse and select the firmware image to install, and then click Install Firmware to begin download and installation.
  3. After the installation is fully completed, the status changes to Completed Successfully.

Step -2 Update the BIOS firmware

  1. In the CIMC interface, navigate to Admin > Firmware Management.
  2. From the Actions pane, select the Install BIOS Firmware through Browser Client option.
  3. In the Install BIOS Firmware window, click Browse and select the BIOS firmware image to install and then click Install Firmware to begin download and installation.

Step -3 Activate the CIMC Firmware

  1. In the Cisco IMC interface, choose Admin > Firmware Management > Activate Cisco IMC Firmware.
  2. In the Activate Firmware window, select the firmware image to activate.
💡
Activating a firmware image makes it the running version. The management controller is rebooted immediately to complete the activation.

Step -4 Activate the BIOS Firmware

  1. Choose Host Power > Power Off to manually power off the server.
  2. In the CIMC  interface, click the Navigation icon at the top left corner and choose Admin > Firmware Management.
  3. Check the BIOS check box, and then click Activate.
  4. In the Activate Firmware window, select the firmware image (3.0(3f)) to activate and click Activate Firmware.
  5. The firmware image that you activated becomes the running version after the host is powered on.
  6. Choose Host Power > Power On.
  7. Verify the firmware and BIOS version.

You can also switch back to the previous version if you have to by activating the previous version.

Reference

https://www.cisco.com/c/en/us/td/docs/security/ise/sns3500hig/b_ise_SNS3500HIG/b_ise_SNS3500HardwareInstallationGuide22_chapter_010.html

Written by
Suresh Vina
Tech enthusiast sharing Networking, Cloud & Automation insights. Join me in a welcoming space to learn & grow with simplicity and practicality.
Comments
More from Packetswitch
Great! You’ve successfully signed up.
Welcome back! You've successfully signed in.
You've successfully subscribed to Packetswitch.
Your link has expired.
Success! Check your email for magic link to sign-in.
Success! Your billing info has been updated.
Your billing was not updated.