How to Upgrade Cisco Firepower Management Center (FMC)

Last updated: 27-12-2025

Introduction

Upgrading your Cisco Firepower Management Center (FMC) is essential to ensure your system is secure and running the latest features. While the upgrade process can be done through the web interface or CLI, performing it via the Command Line Interface (CLI) gives you more control and allows you to monitor progress in real time.

In this post, we'll walk you through the process of upgrading FMC via the CLI.

Prerequisites

Before starting the upgrade process, make sure to:

  • Backup Your Configuration: Always back up your FMC configuration before performing an upgrade.
  • Download the Upgrade File: Download the correct upgrade file from Cisco.
  • Verify System Requirements: Ensure your FMC meets the hardware and software requirements.
  • Check Disk Space: Confirm sufficient free disk space is available.
  • Admin Access: Root or sudo privileges are required.

Upload the Upgrade File to FMC

There are two methods to upload the upgrade file to your FMC system.

Option 1: Upload via FMC GUI

  1. Log in to the FMC web interface.
  2. Navigate to System → Updates → Upload Upgrade File.
  3. Upload the downloaded upgrade file.
  4. Verify the file appears in the Updates section.

Option 2: Upload via WinSCP

  1. Install WinSCP.
  2. Connect using SFTP on port 22.
  3. Upload the file to /var/sf/updates/.
  4. Verify the file transfer.

Steps to Upgrade Cisco FMC via CLI

1. Log in to FMC

ssh admin@<fmc-ip-address>
sudo su

2. Navigate to the Update Directory

cd /var/sf/updates/

3. Verify the Upgrade File

ls -lrth

4. Run the Readiness Check

install_update.pl --detach --readiness-check /var/sf/updates/Cisco_Firepower_Mgmt_Center_Upgrade-6.6.5-81.sh.REL.tar

5. Monitor Logs

cd /var/log/sf/
ls -lrth
tail -f status.log

6. Start the Upgrade

install_update.pl --detach /var/sf/updates/Cisco_Firepower_Mgmt_Center_Upgrade-6.6.5-81.sh.REL.tar

7. Monitor Upgrade Progress

tail -f status.log

8. Verify the Upgrade

After reboot, log in to the FMC GUI and click Deploy. Deployment is mandatory after FMC or FTD upgrades.

show version

Full Commands

sudo su
cd /var/sf/updates/
ls -lrth
install_update.pl --detach --readiness-check /var/sf/updates/Cisco_Firepower_Mgmt_Center_Upgrade-6.6.5-81.sh.REL.tar
cd /var/log/sf/
ls -lrth
tail -f status.log
install_update.pl --detach /var/sf/updates/Cisco_Firepower_Mgmt_Center_Upgrade-6.6.5-81.sh.REL.tar

Conclusion

Upgrading Cisco Firepower Management Center (FMC) via CLI provides greater visibility and control during the upgrade process.

Always back up your configuration, verify system readiness, and ensure deployment is completed after the upgrade to keep your FMC functioning properly.