-
Cisco Prime Infrastructure 2.0 User Guide
-
Preface
- Getting Started
- Designing the Network
-
Operating the Network
-
Operating and Monitoring the Network
-
Monitoring Alarms
-
Updating Device Inventory
-
Configuring Device Features
-
Working With Device Configurations
-
Maintaining Software Images
-
Working with Wireless Operational Tools
-
Ensuring Consistent Application Experiences
-
Working with Wireless Mobility
-
Configuring the Cisco AppNav Solution
-
Configuring WAAS Container
-
Troubleshooting
-
Reports
-
-
Prime Infrastructure User Interface Reference
-
Feedback
Table Of Contents
Getting Help Setting Up and Configuring Devices
Preconfiguring Devices to be Added Later
Supported Devices and Software Images for Plug and Play Setup Workflow
Sample DHCP Server Settings for Auto Install
Getting the Configuration to New Devices
Saving the Plug and Play Profile
Sample Output from Plug and Play Setup
Verifying Plug and Play Provisioning Status
Getting Help Setting Up Access Switches
Configuring Wired Features Using Guided Mode
Configuring Wired Features Using Advanced Mode
Getting Help Setting Up and Configuring Devices
Cisco Prime Infrastructure provides step-by-step guidance for the following tasks:
•
Preconfiguring devices that will be added to your network in the future—See Preconfiguring Devices to be Added Later.
•
Preconfiguring Devices to be Added Later
You can preconfigure devices that will be added to your network in the future. For example, if you are going to be adding a new branch office, you can use the Plug and Play Setup workflow to create an initial configuration for the branch router and switches. When the new device is added to your network, Prime Infrastructure can quickly discover, inventory, and configure the new device based on settings that you specify in a Plug and Play profile.
Note
When you choose Workflows > Plug and Play Setup, Prime Infrastructure guides you through creating a Plug and Play profile that creates a bootstrap configuration file, which creates a bootstrap configuration file and another config file that includes Telnet and SSH credentials, to allow new Cisco IOS devices to "call home" to Prime Infrastructure to get further configurations. Using the Plug and Play Setup Workflow eliminates the need to "console" into each device to set it up before it can be managed by Prime Infrastructure.
The Plug and Play Setup workflow is similar in functionality to Design > Plug and Play Profiles and Deploy > Plug and Play Profiles; however, the workflow, designed more for access switches than routers, provides more guidance to set up new devices.
Note
You need to complete the Plug and Play Setup only once. After you complete the steps, when a new switch or access device is connected to the network, the device automatically uses the Plug and Play profile, boots up, and then Prime Infrastructure begins managing the device.
Related Topic
Supported Devices and Software Images for Plug and Play Setup Workflow
Table 6-1 lists the devices and corresponding software images supported for Workflows > Plug and Play Setup.
Prerequisites
Based on the method that you select to deliver the Plug and Play profile to new devices, you must make sure that you have completed the necessary prerequisites.
•
•
•
•
Sample DHCP Server Settings for Auto Install
If you select the DHCP-based auto install method to deliver the Plug and Play Profile, you must configure the DHCP server to redirect the switch to the TFTP server by entering the commands described in Table 6-2.
The DHCP-based auto install method follows these steps:
1.
2.
3.
:
Getting the Configuration to New Devices
You can choose how to get the bootstrap configuration that is created during the Plug and Play Setup workflow to your new devices:
•
•
•
Specifying Device Credentials
The Workflows > Plug and Play Setup > Create Profile window is where you provide SNMP, Telnet, and SSH credentials that will be configured on the devices. Prime Infrastructure uses these credentials to contact the devices. By default, Telnet is enabled, but you can enable SSH if applicable.
The following configurations are set by the Plug and Play profile, but you can modify them using the Getting Help Setting Up Access Switches workflow:
•
For security purposes, we recommend that do not use "public" or "private" for your community strings.
•
Saving the Plug and Play Profile
As explained in Sample DHCP Server Settings for Auto Install, make sure that you have satisfied the necessary requirements before you specify how you want to deploy or export the Plug and Play profile.
•
•
Note
•
After you save the Plug and Play Profile, the Workflow Status menu at the bottom of the Prime Infrastructure interface refreshes to reflect newly registered devices and any devices on which the workflow failed.
Now that your devices will be able to contact the Prime Infrastructure server, you can specify further configurations that can be applied to the devices. See Getting Help Setting Up Access Switches.
Sample Output from Plug and Play Setup
When you complete the steps in Workflows > Plug and Play Setup, Prime Infrastructure creates a bootstrap configuration file, which includes the following commands to allow new Cisco IOS devices to "call home" to Prime Infrastructure.
In the following example, pi2-pod1-171 is the Prime Infrastructure server hostname.
ip hostpi2-pod1-171 192.168.138.171
cns trusted-server all-agentspi2-pod1-171
cns id hardware-serial
cns id hardware-serial event
cns id hardware-serial image
cns evenpi2-pod1-171 11013 keepalive 120 2 reconnect0time 60
cns exec 80
cns image server http://pi2-pod1-171/cns/HttpMsgDispatcher status http://pi2-pod1-171/cns/HttpMsgDispatcher
cns config partialpi2-pod1-171 80
cns config initialpi2-pod1-171 80In addition to the bootstrap configuration file, another config file is created in the TFTP location which provisions the credentials you provided on the Create Profile page.
The bootstrap configuration file is delivered based on the method you specified:
•
•
Note
•
Verifying Plug and Play Provisioning Status
When a supported device uses the Plug and Play profile to connect to Prime Infrastructure, the device is listed in the Workflow Status window (in the Newly Registered Device column) at the bottom of the Prime Infrastructure interface. You can click a number displayed in the Workflow Status window to go directly to the Assign to Site step in the Getting Help Setting Up Access Switches workflow, which allows you to create more robust configurations for the devices.
If a device takes longer than 10 minutes to synchronize, it is not listed under the Newly Registered Device column in the Workflow Status window. However, the device is listed in the Initial Device Setup workflow with a status of N/A.
Getting Help Setting Up Access Switches
After your devices are added to Prime Infrastructure, you can use the Initial Device Setup workflow to help you configure wired and wireless features on the following devices:
•
•
–
–
Related Topics
Before You Begin
You must create sites before you use the Initial Device Setup by choosing Design > Site Map Design. See Creating Sites for more information.
Related Topic
Assign Devices to Sites
The Workflows > Initial Device Setup > Assign to Site window allows you to specify a site to which the devices you want to configure belong. Unassigned devices discovered using the Plug and Play Setup workflow (see Preconfiguring Devices to be Added Later) and any discovered devices that were not previously assigned are listed on this window. You must assign each device to a site.
The Initial Device Setup workflow is site-specific. To configure devices in a different site, you repeat the Initial Device Setup workflow and select that appropriate site.
To get details about any device, hover your mouse cursor over a device IP address, then click the icon that appears. See Getting Device Details from the Device 360° View for more information.
If the Status column for any device is N/A, either the device was manually added to Prime Infrastructure (without using the Plug and Play Setup workflow), or the Plug and Play Setup workflow completed, but the synchronization took longer than 10 minutes after the device was added to Prime Infrastructure.
Choose Devices
The Workflows > Initial Device Setup > Choose Other Devices window displays all new devices you assigned to the specified site, any devices previously assigned to the same site, and any devices that were added to Prime Infrastructure using discovery. This allows you to configure wired and wireless features on new and existing devices at the same time.
Choose whether you want to configure wired or wireless features. The devices displayed correspond to the option you select.
If you select Add wired features to my device(s), only applicable devices in the selected site on which you can configure wired features are displayed. After you select the devices, check the Device Readiness column and see Device Readiness Explanation for more information.
Choose a configuration mode:
•
•
If you select Add wireless features to my device(s), applicable devices in the selected site on which you can configure wireless features are displayed. After you select the devices, you can choose to configure guest access as part of the wireless device configuration. Enter the number of access points that you want to deploy and select a mobility domain.
Device Readiness Explanation
The Readiness column indicates whether the devices you selected are ready to be configured. A device can be "not ready" for the following reasons:
•
•
Related Topics
•
•
•
Configuring Wired Features Using Guided Mode
When you choose to configure wired features using the Guided Mode, you are guided step-by-step through configuring the following settings:
3.
4.
5.
IP Address Options
During the Workflows > Plug and Play Setup workflow (see Preconfiguring Devices to be Added Later), the DHCP server assigned IP addresses to the devices. The IP Management Options page is where you can modify the IP addresses. Select Change Device(s) IP Management Address, enter the necessary values for the device(s) in the Device Management Option table, then click Save.
You can edit IP address, hostname, subnet, and gateway values only; you cannot modify the device type and serial number.
If you have a large number of devices, you can simplify this task by exporting a CSV file of all devices, editing the file, then importing the CSV file to overwrite the Device Management Option table.
Device Credentials
During the Workflows > Plug and Play Setup workflow (see Preconfiguring Devices to be Added Later), the same SNMP, Telnet and SSH credentials you specified were be configured on all devices. The Credentials page is where you can modify the credentials and specify different credentials for various devices. Select Specify new credentials and enter the necessary values.
Click Save Credentials to save the credentials you entered. When you have new devices that you want to set up and you use the Initial Device Setup workflow again, you can select the credentials that you saved from the Use Credentials list. The fields are populated with the values that you previously saved.
When you complete the Initial Device Setup workflow, the device credentials are updated on the devices and in Prime Infrastructure.
VLAN and Switching Parameters
The VLAN and Switching page allows you to configure VLANs and switching parameters. Default VLAN values are provided. Default switching features are selected. The following options are enabled by default and you cannot modify them because they are required by Prime Infrastructure:
•
•
By default, Spanning Tree is also enabled.
Auto Smartports and Uplinks
By default, the Initial Device Setup workflow enables Cisco Auto Smartports and quality of service (QoS) on switch downlink ports. Auto Smartport macros dynamically configure ports based on the device type detected on the port. You cannot disable Auto Smartports.
The Before You Begin page includes a link to download the supported devices for uplink configuration.
We recommend that you enable uplink-specific features such as EtherChannel and Trunking by selecting one of the options from the pulldown menu:
•
•
•
•
Confirmation
The Confirmation screen is the last step in the Initial Device Setup workflow in which you can view the settings you specified. Click Deploy to deploy the configuration. A job is created and the job status information is displayed.
To view the deployed jobs, choose Administration > Jobs Dashboard to view the status and details about the job.
If the deployment fails, the number of devices on which the deployment failed appears in the Failed column of the Workflow Status menu at the bottom of the Prime Infrastructure interface. Click the number displayed to go directly to the Choose Other Devices screen to view the device(s) that failed. You can modify necessary settings and repeat the workflow for that device.
Configuring Wired Features Using Advanced Mode
If you want to customize the configuration settings applied to your devices, select Advanced mode in The Choose Other Devices page. The Advanced mode uses templates in which you can modify and customize the device configurations. You should be comfortable with CLI templates.
You use the following templates to specify configuration settings:
•
If you have many devices, it might be easier to edit these values in a spreadsheet. You can export the list of devices as a CSV file, edit the file, and then import the file to overwrite the table.
•
•
•
•
•
Configuring Wireless Features
When you choose to configure wireless features, you are guided step-by-step through configuring the following settings:
4.
5.
Create Groups
The Create Groups page is where the Mobility Architecture group is automatically defined for the wireless devices that you selected in the Choose Other Devices page. The Mobility Group consists of Mobility Controller, Switch Peer Group, and Mobility Agents. You cannot modify the Mobility Controller and the Mobility Agent that were previously configured. Whereas, you can add Switch Peer Groups.
Wireless Parameters
The Wireless Parameters page allows you to assign Wireless Management IP, Mask, and Wireless VLAN ID for the selected wireless devices. You can also choose to export the list of devices as a CSV file, edit the values, and import the file to overwrite the values for the devices. Then, click Save.
Wireless LAN Security
The Wireless LAN Security page allows you to add secure wireless for LAN connectivity. Default values are displayed for the Secure wireless LAN Properties. Based on the security profile and the authentication method that you choose, you must enter the primary and secondary Radius server details.
Guest Access
The Guest Access page is displayed only if you have chosen to configure guest access as part of the wireless device configuration in the Choose Other Devices page. Default values are displayed for the guest WLAN and VLAN fields. Based on the security profile and the authentication method that you select for your guest, you must enter the primary and secondary Radius server details.
Confirmation
The Confirmation page is the last step in the Guided workflow for wireless features in which you can view the settings you specified. Click Deploy to deploy the configuration. For more information about the confirmation job status and the workflow status, see the "Confirmation" section.
