When creating an L4-L7 device, the GUI is most useful.
The ASA device package, like other packages, has some required entries, and the NX-OS cannot be re-written to account for all the required fields from all the different vendors. So, while scripting may be quicker, the GUI wins here.
First of all, we need to set up the ASA's management interface for DHCP and allow HTTPS access:
ASAv# sh run int management 0/0 ! interface Management0/0 management-only nameif management security-level 0 ip address dhcp ASAv# sh run | i http http server enable http 0.0.0.0 0.0.0.0 management ASAv#
You will also need an administrative account for the APIC to be able to connect to and manage the firewall.
While we do not have to do this next step, it's useful as it highlights the control over the VMWare environment that the APIC can have. So, assign the ASA interfaces to the Finance
and Marketing
port...