Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Cisco ASA5510 wrong time

Through ASDM i checked the time of our firewall it shows may2003.  I want to fix this but i am afraid if i did this asa5510 setting may go away or something else will happen.  Does the time matter on firewall and should i change it?

1 ACCEPTED SOLUTION

Accepted Solutions

Re: Cisco ASA5510 wrong time

Hi,

It is a good idea to have the correct time.

If you're using digital certificates or time-based ACLs or any feature based on time, it is required that the time is set up correctly.

Also very helpful for logging and troubleshooting.

However, it is not mandatory to have the ASA with the right time to have it operational.

Federico.

4 REPLIES

Re: Cisco ASA5510 wrong time

Hi,

It is a good idea to have the correct time.

If you're using digital certificates or time-based ACLs or any feature based on time, it is required that the time is set up correctly.

Also very helpful for logging and troubleshooting.

However, it is not mandatory to have the ASA with the right time to have it operational.

Federico.

New Member

Re: Cisco ASA5510 wrong time

Yes - dear god change the time or even better find a NTP source to synchronize to.  If you ever have to produce your logs in a investigation and your timestamps are out your case (and perhaps your job) will die in the starting gates.  Having said that if your log server has the correct time and it stamps the entries, then the device being unsynchronised is just, well, embarassing but not neccesarily carrer limiting.

Digital certificates will also not behave (or some methods of authentication) if the time is not accurate.

New Member

Re: Cisco ASA5510 wrong time

Thanks Federico and GrumpyBear(like the name), before i do this, i would like to know and want to make sure that non-of the setting and network will go down.  Right? becasue someone was telling me  that they chagned time on firewall and somehow all of their setting went away.


Re: Cisco ASA5510 wrong time

Nothing is going to fail, unless you have digital certificates that expire on a certain time, if the time was wrong and you change it, perhaps the certificates couuld fail.

There are a few time-dependent applications...

If this is not the case, you can change the time with no problems.

Federico.

1344
Views
5
Helpful
4
Replies
CreatePlease login to create content