Scribd
Upload
207 views

SDA Mind Map PDF

The document discusses integrating Cisco DNA Center (DNAC) with a PKI to allow it to act as a certificate authority. It outlines several steps to install certificates on DNAC and configure it with IP address pools, credentials, and network settings. It also describes using DNAC for device discovery, designing network policies, provisioning wireless LAN controllers and access points, and testing connectivity within virtual networks.

Uploaded by

best0806
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
207 views

SDA Mind Map PDF

The document discusses integrating Cisco DNA Center (DNAC) with a PKI to allow it to act as a certificate authority. It outlines several steps to install certificates on DNAC and configure it with IP address pools, credentials, and network settings. It also describes using DNAC for device discovery, designing network policies, provisioning wireless LAN controllers and access points, and testing connectivity within virtual networks.

Uploaded by

best0806
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 1

Make DNAC a CA

1 or cluster (3,5..) Install Apps


OR Make DNAC
part of PKI
Edge AP Control Node Border Intermediate (not part of fabric)
DHCP/Syslog/AAA/NTP etc

Install Certificates
Fusion (outside fabric)
L3 access Settings IP address Pools
Credentails
Components WLC Installation (UCS C)

Stretch L2 Access
Macro - VN
ISE
benefits
Micro- TrustSec SDA
Network Segmentation Network settings Add Sites/buildings/floors
NDP Tools: Device Discovery etc
components

license APIC-EM DNAC

Essentials Policy Engine (ISE) PNP: LAN Automation


Design Add devices
Assurance manually to DNAC
Advantage Configuration Templates
Wireless wired

Provision OR Device Discovery


Underlay
OR Manual LAN config

Policy Fabric
Add devices to Sites
Policy & assign Roles
WLC Discovery Overlay
Integrate ISE Assign IP Pools
Provision Design
Virtual Networks

Auth policies on ISE & do Intra-VN:


client authentication
IP pools
WLC config TrustSec Test: Access between
Fabric End-points inside VN (L2 VNI)
Inter-VN
Create SGT

SSID + profile
Overlay
Dynamic SGT
Provision AP assignment of SGT on Config BGP on Fusion to
ISE match BGP on Border
VN & External
Add WLC role
Virtual Networks connections
Import VRFs RT

Create a Contract

Assign IP Pool (AP subnet, client subnet) Config BGP on Fusion to


Create a Policy match BGP on Border

Manual CTS on Fusion for Inter-VN access control


AP joins WLC

You might also like