Home
Support
Product Support
Security
Cisco Secure Firewall Management Center Virtual
Install and Upgrade Guides

Cisco Secure Firewall Management Center Virtual Getting Started Guide

View all Saved Content

PDF

Is this helpful?

Helpful Unhelpful

Feedback

Thank you for your feedback. Your response has been recorded.

Ask about this document

Cisco Configuration Guide, Release 4.2

Table of contents

Expand all sections

About this document

Introduction to the Firewall Management Center Virtual

Platforms and Support for the Firewall Management Center Virtual
Firewall Management Center Virtual Licenses
About Virtual Appliance Performance
Download the Firewall Management Center Virtual Deployment Package

Deploy the Firewall Management Center Virtual on VMware

VMware Feature Support for the Firewall Management Center Virtual
System Requirements
Guidelines and Limitations
Download the Installation Package
Deploy the Firewall Management Center Virtual
Verify the Virtual Machine Properties
Power On and Initialize the Virtual Appliance

Deploy the Firewall Management Center Virtual on KVM

Overview
Prerequisites
Guidelines and Limitations
Prepare the Day 0 Configuration File
Deploy the Firewall Management Center Virtual
Deploy Without Using the Day 0 Configuration File

Deploy the Firewall Management Center Virtual on AWS

Overview
Guidelines and Limitations
Configure the AWS Environment
Deploy the Firewall Management Center Virtual

Deploy the Firewall Management Center Virtual on Azure

Overview
Prerequisites
Guidelines and Limitations
Resources Created During Deployment
Deploy the Firewall Management Center Virtual
Deploy the Azure Marketplace offers in the restricted Azure Private Marketplace environment
Deploy the IPv6 Supported Secure Firewall Management Center Virtual on Azure
About IPv6 Supported Deployment on Azure
Deploy from Azure Using Custom IPv6 Template with Marketplace Image Reference
Deploy from Azure Using a VHD and Custom IPv6 Template
Verify the Firewall Management Center Virtual Deployment
Monitoring and Troubleshooting
Feature History

Deploy the Firewall Management Center Virtual on GCP

Overview
Prerequisites
Guidelines and Limitations
Sample Network Topology
Deploy the Firewall Management Center Virtual
Access the Firewall Management Center Virtual Instance on GCP

Deploy the Firewall Management Center Virtual on OCI

Overview
Prerequisites
Guidelines and Limitations
Sample Network Topology
Deploy the Firewall Management Center Virtual
Access the Firewall Management Center Virtual Instance on OCI

Deploy the Firewall Management Center Virtual on OpenStack

Overview
Prerequisites
Guidelines and Limitations
System Requirements
Sample Network Topology
Deploy the Firewall Management Center Virtual

Deploy the Firewall Management Center Virtual on Cisco Hyperflex

System Requirements
Guidelines and Limitations
Deploy the Firewall Management Center Virtual
Power On and Initialize the Virtual Appliance

Deploy the Firewall Management Center Virtual on Nutanix

System Requirements
Prerequisites
Guidelines and Limitations
Deploy the Firewall Management Center Virtual

Deploy the Firewall Management Center Virtual on Alibaba Cloud

Overview
Guidelines and Limitations
Prerequisites
Deploy the Firewall Management Center Virtual

Deploy the Firewall Management Center Virtual on Hyper-V

Overview
Sample Topology of Management Center Virtual on Hyper-V
Supported Windows Server for Management Center Virtual
Guidelines and Limitations for Management Center Virtual on Hyper-V
Licenses for Deployment of Management Center Virtual on Hyper-V
Prerequisites for Deployment of Management Center Virtual on Hyper-V
Deploy the Management Center Virtual
Verify the Deployment
Access First Boot Logs
Shut Down Management Center Virtual
Reboot Management Center Virtual
Delete Management Center Virtual
Troubleshooting

Firewall Management Center Virtual Initial Setup

Firewall Management Center Initial Setup Using the CLI for Versions 6.5 and Later
Perform Initial Setup at the Web Interface for Versions 6.5 and Later
Review Automatic Initial Configuration for Versions 6.5 and Later

Firewall Management Center Virtual Initial Administration and Configuration

Individual User Accounts
Device Registration
Health and System Policies
Software and Database Updates
Troubleshooting

Resources Created During Deployment

Updated: February 5, 2026

Want to summarize with AI?

Overview

Learn how to identify the Azure resources created when deploying Management Center Virtual. Understand the virtual machine, resource group, network security group, public IP, routing table, and storage components that are provisioned so you can manage, modify, or remove them correctly after deployment.

When you deploy the Firewall Management Center Virtual in Azure the following resources are created:

The Firewall Management Center Virtual Machine with a single interface (requires a new or an existing virtual network with 1 subnet).
A Resource Group.

The Firewall Management Center Virtual is always deployed into a new Resource Group. However, you can attach it to an existing Virtual Network in another Resource Group.
A security group named vm name-mgmt-SecurityGroup.

The security group will be attached to the VM’s Nic0.

The security group includes rules to allow SSH (TCP port 22) and the management traffic for the Firewall Management Center interface (TCP port 8305). You can modify these values after deployment.
A Public IP Address (named according to the value you chose during deployment).

The public IP address is associated with VM Nic0, which maps to Management.

Note

You can create a new public IP or choose an existing one. You can also choose NONE. Without a public IP address, any communication to the Firewall Management Center Virtual must originate within the Azure virtual network
A Routing Table for the subnet (updated if it already exists).
A boot diagnostics file in the selected storage account.

The boot diagnostics file will be in Blobs (binary large objects).
Two files in the selected storage account under Blobs and container VHDs named VM name-disk.vhd and VM name-<uuid>.status.
A Storage account (unless you chose an existing storage account).

When you delete a VM, you must delete each of these resources individually, except for any resources you want to keep.

Need help?

Open a support case

(Requires a Cisco Service Contract)

Bias-free language

The documentation set for this product strives to use bias-free language. For the purposes of this documentation set, bias-free is defined as language that does not imply discrimination based on age, disability, gender, racial identity, ethnic identity, sexual orientation, socioeconomic status, and intersectionality. Exceptions may be present in the documentation due to language that is hardcoded in the user interfaces of the product software, language used based on RFP documentation, or language that is used by a referenced third-party product. Learn more about how Cisco is using Inclusive Language.