SD-Access: Management Layer

The management layer within Cisco DNA centre is the layer that provides an interface to the user.

All information from all other layers is presented in the form of a centralised dashboard.

The management layer removes the complicated information of the configuration behind the scenes and provides simple easy to use information to the user, along with a simple set of GUI tools and workflows to easily manage and operate the entire structure.

Cisco DNA centres applications are designed to be simple and are based on workflows defined by Cisco DNA centre: Design, Policy, Provision, Assurance

The Cisco DNA workflow provides all the tools to logically define the SD-Access fabric.

DNA Design Workflows

Network Hierarchy – Set up geolocation, building and floorplan details and associate them with an ID

Network Settings – Set up network servers such as DNS, DHCP, and AAA, device credentials, IP management, and wireless settings

Image Repository – Used to manage software images and maintenance upgrades, version compliance, download and deploy software images

Network Profiles – Define LAN, WAN, and WLAN connection profiles

DNA Policy Workflows

Dashboard – Monitor virtual networks, scalable groups, policies, and recent changes

Group-Based Access Control – Used to create group-based access control policies which are the same as SGACLs. Cisco DNA centre integrates with Cisco ISE to simplify the process of managing and creating SGACLs

IP-Based Access Control – Can create IP-based access control policies to control the traffic going in and out of a Cisco device in a similar fashion to an access control list

Application – An application is used to configure Quality of Service in the network through application policies.

Traffic Copy – Traffic copy is used to configure Encapsulated Remote Switched Port Analyser (ERSPAN) to copy IP traffic flows between two entities to a specified remote destination for monitoring or troubleshooting purposes

Virtual Network – Setting up virtual networks and associate various scalable groups

DNA Provison Workflows

Devices – Assign devices to a site ID, confirm or update software versions and provision underlay network configurations

Fabrics – Set up fabric domains

Fabric Devices – Add devices to the fabric domain and specify device roles (control plane, border, edge, WLC)

Host Onboarding – Define host authentication types (static or dynamic) and assign host pools (wired or wireless) to virtual networks

DNA Assurance Workflows

Dashboard – Monitor global health of all fabric and non-fabric devices and clients

Client 360 – Monitor and resolve client specific status and issues

Devices 360 – Monitor and resolve device specific status and issues

Issues – Monitor and resolve open issues reactively or be alerted to developing trends proactively



, ,




Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.