On the Firepower Management Console
- Log in and navigate to System -> Integrations -> eStreamer
- Click Create Client
- Enter the IP address of the WitFoo Precinct Streamer node or All-in-One Appliance
- Set a password for the certificate
- Save the certificate on your local machine as estreamer.pkcs12
In the WitFoo Precinct web interface
- Navigate to Admin -> Settings -> Cisco Firepower eStreamer
- Input the server, port and password
- Hit save
SSH or Console into the WitFoo Precinct Processing node or All-in-One Appliance
- Run sudo ./stop
- Verify /data/ie exists and has 755 permissions with root as owner and group. If not, run sudo bash -c ‘mkdir -p /data/streamer && chown root:root /data/streamer && chmod 777 /data/streamer’
- Run sudo rm -rf /data/streamer/estreamer.pkcs12
- Run sudo rm -rf /data/streamer/estreamer-server.der
Without closing the SSH/Console session, upload estreamer.pkcs12 to the WitFoo Precinct Processing node or All-in-One Appliance via SFTP (using witfooadmin credentials) to /home/witfooadmin.
SSH or Console into the WitFoo Precinct Processing node or All-in-One Appliance
In the WitFoo Precinct web interface
- At Reports -> Tool Efficiency Firepower should be displayed in less than 10 minutes.