Migration from DockerHub to Amazon ECR

Docker images for the Cisco Secure Dynamic Attributes Connector are being migrated from Docker Hub to Amazon Elastic Container Registry (Amazon ECR).

To use the new field packages, you must allow access through your firewall or proxy to all of the following URLs:

• https://public.ecr.aws

• https://csdac-cosign.s3.us-west-1.amazonaws.com

Support for docker-compose 2.0

We now support docker-compose 2.0.

Supported Platforms

• Ubuntu 18.04 to 22.04.2

• CentOS 7 Linux

• Red Hat Enterprise Linux (RHEL) 7 or 8

• Python 3.6.x or later

• Ansible 2.9 or later

Minimum requirements for all operating systems:

• 4 CPUs

• 8GB RAM

• For new installations, 100GB available disk space

If you use a hypervisor:

VMware ESX or ESXi up to 8

We recommend you size your virtual machines as follows:

• 50 connectors, assuming 5 filters per connector and 20,000 workloads: 4 CPUs; 8GB RAM; 100GB available disk space

• 125 connectors, assuming 5 filters per connector and 50,000 workloads: 8 CPUs, 16 GBRAM, 100GB available disk space

Note	Failure to size your virtual machines properly can cause the dynamic attributes connector to fail or not to start.

If you wish to use vCenter attributes, we also require:

• vCenter up to 8

• VMware Tools must be installed on the virtual machine

Connectors supported in this version:

• Amazon Web Services (AWS)

  For more information, see a resource like Tagging AWS resources on the Amazon documentation site.

• Amazon Web Services security groups.

  For more information, see a resource like Work with security groups.

• Amazon Web Services service tags.

  For more information, see a resource like What are tags?.

• Cisco Cyber Vision

• Generic text list of IP addresses you specify.

• GitHub

• Google Cloud

  For more information, see Setting Up Your Environment in the Google Cloud documentation.

• Microsoft Azure

  For more information, see this page on the Azure documentation site.

• Microsoft Azure service tags

  For more information, see a resource like Virtual network service tags on Microsoft TechNet.

• Office 365 IP addresses

  For more information, see Office 365 URLs and IP address ranges on docs.microsoft.com.

• VMware categories and tags managed by vCenter and NSX-T

  For more information, see a resource like vSphere Tags and Attributes in the VMware documentation site.

• Webex IP addresses

• Zoom IP addresses

List of connectors supported by the Cisco Secure Dynamic Attributes Connector.

The following Firepower documentation was updated or is newly available for this release.

Firepower Configuration Guides and Online Help

• Cisco Secure Dynamic Attributes Connector Configuration Guide

• Firepower Management Center Device Configuration Guide, Version 7.4

Cisco provides online resources to download documentation, software, and tools, to query bugs, and to open service requests. Use these resources to install and configure Firepower software and to troubleshoot and resolve technical issues.

• Cisco provides online resources to download documentation, software, and tools, to query bugs, and to open service requests. Use these resources to install and configure Firepower software and to troubleshoot and resolve technical issues.

• : https://www.cisco.com/c/en/us/support/index.html

• Cisco Bug Search Tool: https://tools.cisco.com/bugsearch/

• Cisco Notification Service: https://www.cisco.com/cisco/support/notifications.html

Access to most tools on the Cisco Support & Download requires a Cisco.com user ID and password.

If you cannot resolve an issue using the online resources listed above, contact Cisco TAC:

• Email Cisco TAC: tac@cisco.com

• Call Cisco TAC (North America): 1.408.526.7209 or 1.800.553.2447

• Call Cisco TAC (worldwide): Cisco Worldwide Support Contacts