Can I import an XML config into a centrally-managed firebox?
I have a firebox fully managed by WSM Server and want to load a config file. However, that option (Open>Configuration File) doesn't appear as an available option in the File menu in Policy Manager. Am I going about this the wrong way? Feedback appreciated. Thanks!
Best Answer
-
james.carson
Moderator, WatchGuard Representative
If the firewall is centrally managed, it already has a configuration. Importing a configuration will overwrite the current config (including the details telling the firewall about the centralized management server.)
If you attempt to connect to the firewall using WSM directly (using file -> connect to device) you should be able to connect.. When you open policy manager, select the option to release from central managed mode. Once it finishes loading, you should be able to go to File -> Open -> Configuration File.
Again, importing a new config will effectively remove your device from centralized management.
If you're trying to apply specific items into your configuration, I would suggest looking into configuration templates
See:
(Create Device Configuration Templates)
https://www.watchguard.com/help/docs/help-center/en-US/content/en-us/Fireware/centralized_management/config_templates_create_apply_wsm.html-James Carson
WatchGuard Customer Support1
Answers
Thanks very much, James. That makes sense. Appreciate the breakdown!