Revert the Software

You can revert major and maintenance upgrades to Firepower Threat Defense with Firepower Device Manager. This returns the device to its state just before the upgrade. Revert is not supported in FMC or ASDM deployments. Revert is also not supported for patches, although you can uninstall patches in FMC and ASDM deployments. See the patch release notes for procedures.

Reverting with Firepower Device Manager

You can revert major and maintenance upgrades to Firepower Threat Defense with the Firepower Device Manager. Reverting returns the device to its state just before the last major or maintenance upgrade, also called a snapshot. Reverting after patching necessarily removes patches as well. You can delete the snapshot in order to save disk space, but this removes your ability to revert.

Revert Does Not Downgrade FXOS

For the Firepower 4100/9300, major FTD versions have a specially qualified and recommended companion FXOS version. After you return to the earlier version of FTD, you may be running a non-recommended version of FXOS (too new).

Although newer versions of FXOS are backwards compatible with older FTD versions, we do perform enhanced testing for the recommended combinations. You cannot manually downgrade FXOS, so if you find yourself in this situation and you want to run a recommended combination, you will need a full reimage.

Revert with High Availability

If you need to revert both units in a high availability pair, we recommend you initiate the revert on both units at the same time. Open sessions with both units, verify that revert is possible on each, then start the processes.

Revert FTD with Firepower Device Manager

Use this procedure to revert Firepower Threat Defense with Firepower Device Manager.

If you cannot get into FDM, use the upgrade revert FTD CLI command. You can use the show upgrade revert-info command to see what version the system will revert to.

Before you begin

  • Read and understand Reverting with Firepower Device Manager.

  • Back up the device to a secure external location. A failed revert may require a reimage, which returns most settings to factory defaults.

Procedure

Step 1

Select Device, then click View Configuration in the Updates summary.

Step 2

In the System Upgrade section, click the Revert Upgrade link.

You are presented with a confirmation dialog box that shows the current version and the version to which the system will revert. If there is no available version to revert to, there will not be a Revert Upgrade link.

Step 3

If you are comfortable with the target version (and one is available), click Revert.

After you revert, you must re-register the device with the Smart Software Manager.