How can we help?

How to enable the Cisco Firepower Threat Defence firewall using the Device API


For the Cisco Firepower Threat Defence firewall, follow these instructions to enable the Device API.

Note: These instructions are valid for FTD or FDM.

For the Device API credentials, use your admin username and password that you use to login into the user interface of Firepower. 


  1. Click Discovery in the side navigation bar.
  2. Click the Manage Credentials tab.
  3. Click the Device API Credentials tab.
  4. Hover over the Add Device API Credentials button and choose Firepower.
  5. In Auvik, fill in the following detail:
    1. Name - a name or description for use in Auvik only
    2. Device - the device name that the API key is for
    3. Username - add admin account username 
    4. Password - admin’s password
    5. Port - the port that the API/HTTP service is running
  6. Click Test Connection to confirm your settings are accurate.
  7. Click Save.

If you are getting errors or the device failed in test connection you can try the following troubleshooting steps. You can check the authentication from API-Explorer.

  1. Using a browser, open the homepage of the system, for example,
  2. Log into Firepower Device Manager.
  3. (6.4 and earlier.) Edit the URL to point to /#/api-explorer, for example,
  4. (6.5 and later.) Click the more options button (More options button.) and choose API Explorer.
    The system opens the API Explorer in a separate tab or window, depending on your browser settings.
  5. Once you are in the API Explorer, search for Token and click on Example Value
  6. This will update the Body. Change the “grant_type” from “custom_token” to    “password” 
  7. Update the username and password to the credentials that you used to login.
  8. Scroll down to the Try it out option and look for ​​Response Code. It must be 200 in order to work.
Was this article helpful?
0 out of 5 found this helpful
Have more questions? Submit a request