Overview

You can set up the first appliance in a cluster using the Advanced Install configuration wizard.

Do these steps to configure the first installed appliance as the primary node using the Advanced Install configuration wizard. You must always configure the first appliance as the primary node, whether it will operate standalone or as part of a cluster.

The third-generation 80-core Catalyst Center appliance (Cisco part number DN3-HW-APL-XL) supports configuration using this wizard.

You can only use this wizard to complete the initial configuration of a new Catalyst Center appliance. To reimage an appliance that's been configured previously, you will need to use the Maglev Configuration wizard (see Configure the Appliance Using the Maglev Wizard).

Before you configure the appliances in a three-node cluster, ensure that you have logged out of those appliances. Otherwise, the Quick Start workflow (which you complete to discover your network's devices and enable telemetry) will not start after you have configured your cluster's appliances and log in to Catalyst Center for the first time.

Ensure that all of the IP addresses you enter while completing this procedure are valid addresses with valid netmasks. Also make sure that the addresses and their corresponding subnets do not overlap. Service communication issues can result if they do.

If you are configuring the installed appliance as a secondary node for an existing cluster that already has a primary node, follow the steps in Configure a secondary node using the Advanced Install configuration wizard instead.

Before you begin

Ensure that you:

Collected all of the information called for in Required IP addresses and subnets and Required configuration information.
Installed the first appliance, as described in Appliance installation workflow.
Configured Cisco IMC browser access on the primary node, as described in Enable browser access to the Cisco Integrated Management Controller.
Checked that the primary node's ports and the switches it uses are properly configured, as described in Execute preconfiguration tasks.
Are using a browser that is compatible with Cisco IMC and Catalyst Center. For a list of compatible browsers, see the Release Notes for the version of Catalyst Center you are installing.
Enabled ICMP on the firewall between Catalyst Center and both the default gateway and the DNS server you specify in this procedure. The wizard uses ping to verify the gateway and DNS server you specify. This ping might get blocked if a firewall is in place and ICMP is not enabled on that firewall. When this happens, you will not be able to complete the wizard.

Procedure

Start the Advanced Install configuration wizard:

Point your browser to the Cisco IMC IP address you set during the Cisco IMC GUI configuration you performed, then log in to the Cisco IMC GUI as the Cisco IMC user (see Enable browser access to the Cisco Integrated Management Controller).

After successful login, the appliance displays the Cisco Integrated Management Controller Chassis Summary window, with a blue link menu at the upper right.
From the blue link menu, select Launch KVM and then select HTML based KVM.

The KVM console opens in a separate browser window or tab automatically. Use it to monitor the progress of the configuration and respond to Maglev Configuration Wizard prompts.
With the KVM displayed, reboot the appliance by making one of these selections:
- In the main Cisco IMC GUI browser window: Choose Host Power > Power Cycle. Then switch to the KVM console to continue.
- In the KVM console: Choose Power > Power Cycle System (cold boot).
If asked to confirm your choice to reboot the appliance, click OK.

After displaying reboot messages, the KVM console displays the Static IP Configuration screen.

Record the URL listed in the Web Installation field.

Do one of these tasks:

If you want a DHCP server to assign an IP address, subnet mask, and default gateway to your appliance's Enterprise interface, click Skip.
If you want to assign your own IP address, subnet mask, and default gateway to your appliance's Enterprise interface, enter the information described in this table and then click Configure.

Note

You only need to specify an IP address, subnet mask, and default gateway for your appliance's Enterprise interface.


IPv6 Mode check box	If you want to configure an IPv6 address, check this check box.
IP Address Field	Enter the static IP address that you want to use.
Netmask field	Enter the netmask for the IP address you specified in the previous field: If you entered an IPv4 address, you can enter either a netmask or CIDR address. If you entered an IPv6 address, you can only enter a CIDR address.
Default Gateway Address field	Specify the default gateway that will be used to route traffic.
Static Routes field	Enter one or more static routes in this format, separated by spaces: <network>/<netmask>/<gateway>. This is usually required on the Management port only.

The KVM console displays the Maglev Configuration wizard welcome screen.

The Maglev Configuration wizard displays two Cisco DNA Center cluster options for how you would like to configure the primary node.

To bring up the Appliance Configuration screen, open the URL that was displayed in the Static IP Configuration screen.
Click the Start a Cisco Catalyst Center Cluster radio button, then click Next.
Click the Advanced Install radio button, then click Start.

The Overview slider opens. Click > to view a summary of the tasks that the wizard will help you complete.
Click Start Workflow to start the wizard.

The Appliance Interface Overview screen opens, providing a description of the four appliance interfaces that you can configure.

At a minimum, you must configure the Enterprise and Intracluster ports, as they are required for Catalyst Center functionality. If the wizard fails to display either or both of these ports during the course of configuration, they may be non-functional or disabled. If you discover that the ports are non-functional, click Exit to close the wizard immediately. Verify that you have completed all of the steps provided in Execute preconfiguration tasks before resuming configuration or contacting the Cisco Technical Assistance Center (TAC).

Complete the Advanced Install configuration wizard:

Click Next.
The How would you like to set up your appliance interfaces? screen opens.

If your network resides behind a firewall, do these tasks:
- Click the allow access to these URLs link to view a pop-up window that lists the URLs that Catalyst Center must be able to access.
- Click the open these ports link to view a pop-up window that lists the network service ports that must be available for Catalyst Center to use.
Indicate whether you want to configure dedicated Management and Internet Access interfaces, then click Next.

The Configure Your Enterprise Network Interface screen opens.

Enter configuration values for the enterprise interface, then click Next.

As explained in Interface cable connections, this is a required interface used to link the appliance to the enterprise network. See Required IP addresses and subnets and Required configuration information for a more detailed description of the values you need to enter.

Table 1. Primary node entries for the Enterprise interface
LACP Mode slider	Select one of these network interface controller (NIC) bonding modes for the Enterprise interface: Active-Backup mode: This mode provides fault tolerance by aggregating two Ethernet interfaces into a single logical channel. When the interface that's currently active goes down, the other interface takes its place and becomes active. LACP mode: This mode aggregates two Ethernet interfaces that share the same speed and duplex settings into a single logical channel. This provides load balancing and higher bandwidth. For more information about Catalyst Center's implementation of NIC bonding, see NIC bonding overview.
Host IP Address field	Enter the IP address for the Enterprise interface. This is required.
Subnet Mask field	Enter the netmask for the interface's IP address. This is required.
Default Gateway IP Address field	Enter a default gateway IP address to use for the interface. Ensure that you enter a default gateway IP address for at least one of your appliance's interfaces. Otherwise, you will not be able to complete the configuration wizard. Note You designated this interface to use the default gateway assigned to it by a DHCP server. Complete these steps to specify a different gateway: Delete the IP address that is currently listed in this field and then click Exit. This will bring you back to the first wizard screen. Return to the Enterprise port's wizard screen and enter the gateway IP address you want to use.
DNS field	Enter the IP address of the preferred DNS server. To enter additional DNS servers, click the Add (+) icon. For each node in your cluster, configure a maximum of three DNS servers. Problems can occur if you configure more than three DNS servers for an appliance. For NTP, ensure port 123 (UDP) is open between Catalyst Center and your NTP server.

The wizard validates the information you have entered, confirms that the port is up, and notifies you of any settings that need to be changed before you can continue with the wizard. If the settings you have entered are valid and the port is up, the Configure Your Intracluster Interface screen of the wizard opens.

The Configure Your Intracluster Interface screen displays the step to enter configuration values for your Intracluster interface.

Enter configuration values for your Intracluster interface, then click Next.

As explained in Interface cable connections, this required port is used to link the appliance to your cluster. See Required IP addresses and subnets and Required configuration information for a more detailed description of the values you need to enter.

Note

If you opted to configure the Enterprise and Internet Access interfaces on the same port, complete this step and then continue to configuring the Management interface in Step 2e.

If you opted to configure the Enterprise and Management interfaces on the same port, complete this step and then continue to configure your Internet Access interface in Step 2f .

If you opted to configure the Enterprise, Management, and Internet Access interfaces on the same port, complete this step and then continue to Step 2g.

Table 2. Primary node entries for the Intracluster interface
LACP Mode slider	Select one of these NIC bonding modes for the Intracluster interface: Active-Backup mode: This mode provides fault tolerance by aggregating two Ethernet interfaces into a single logical channel. When the interface that's currently active goes down, the other interface takes its place and becomes active. LACP mode: This mode aggregates two Ethernet interfaces that share the same speed and duplex settings into a single logical channel. This provides load balancing and higher bandwidth. If you want to enable LACP mode on your appliance's Intracluster interface, do so now. You won't be able to after you complete this wizard. For more information about Catalyst Center's implementation of NIC bonding, see NIC bonding overview.
Host IP Address field	Enter the IP address for the Intracluster interface. This is required. Note You cannot change the address of the Intracluster interface later.
Subnet Mask field	Enter the netmask for the interface's IP address. This is required.

The wizard validates the information you have entered, confirms that the port is up, and notifies you of any settings that need to be changed before you can continue with the wizard. If the settings you have entered are valid and the port is up, the wizard's Configure Your Management Network Interface screen opens.

The Configure Your Management Network Interface screen displays the optional step to enter configuration values for the Management port.

(Optional) Enter configuration values for the Management interface, then click Next.

As explained in Interface cable connections, this port is used to access the Catalyst Center GUI from your management network. If you chose to configure a dedicated Management interface, enter the information described in this table. (See Required IP addresses and subnets and Required configuration information for a more detailed description of the values you need to enter.)

Note

If you opted to configure the Enterprise and Internet Access interfaces on the same port, complete this step and then skip ahead to Step 2g.

Table 3. Primary node entries for the Management interface
Host IP Address field	Enter the IP address for the Management interface.
Subnet Mask field	Enter the netmask for the interface's IP address.
Default Gateway IP Address field	Enter a default gateway IP address to use for the interface. Ensure that you enter a default gateway IP address for at least one of your appliance's interfaces. Otherwise, you will not be able to complete the configuration wizard.
DNS field	Enter the IP address of the preferred DNS server. To enter additional DNS servers, click the Add (+) icon. For each node in your cluster, configure a maximum of three DNS servers. Problems can occur if you configure more than three DNS servers for an appliance. For NTP, ensure port 123 (UDP) is open between Catalyst Center and your NTP server.

The wizard validates the information you have entered, confirms that the port is up, and notifies you of any settings that need to be changed before you can continue with the wizard. If the settings you have entered are valid and the port is up, the wizard's Configure Your Internet Access Interface screen opens.

The Configure Your Internet Access Interface screen displays the optional step to enter configuration values for the Internet Access interface.

(Optional) Enter configuration values for the Internet Access interface, then click Next.

As explained in Interface cable connections, this is an optional port used to link the appliance to the Internet when you cannot do so through the Enterprise port. If you chose to configure a dedicated Internet Access interface, enter the information described in this table. (See Required IP addresses and subnets and Required configuration information for a more detailed description of the values you need to enter.)

Table 4. Primary node entries for the Internet Access interface
Host IP Address field	Enter the IP address for the Internet Access interface.
Subnet Mask field	Enter the netmask for the interface's IP address. This is required if you entered an IP address in the previous field.
Default Gateway IP Address field	Enter a default gateway IP address to use for the interface. Ensure that you enter a default gateway IP address for at least one of your appliance's interfaces. Otherwise, you will not be able to complete the configuration wizard.
DNS field	Enter the IP address of the preferred DNS server. To enter additional DNS servers, click the Add (+) icon. For each node in your cluster, configure a maximum of three DNS servers. Problems can occur if you configure more than three DNS servers for an appliance. For NTP, ensure port 123 (UDP) is open between Catalyst Center and your NTP server.

The wizard validates the information you have entered, confirms that the port is up, and notifies you of any settings that need to be changed before you can continue with the wizard. If the settings you have entered are valid and the port is up, the wizard's Interface to Port Configuration screen opens.

Review the settings that you have entered for the primary node's interfaces.

If you need to make any changes, click the Edit link for the relevant interface.
After verifying that the interface settings are correct, click Next.

After initial interface configuration has completed, the Configure Proxy Server Information screen opens.

Do one of these tasks and then click Next:

If your network does not use a proxy server to access the internet, click the No radio button.
If your network does use a proxy server to access the internet, enter the values described in this table:

Table 5. Primary node entries for proxy server settings
Proxy Server field	Enter the URL or host name of an HTTPS network proxy used to access the Internet. Note Connection from Catalyst Center to the HTTPS proxy is supported only via HTTP in this release.
Port field	Enter the port your appliance used to access the network proxy.
Username field	Enter the user name used to access the network proxy. If no proxy login is required, leave this field blank.
Password field	Enter the password used to access the network proxy. If no proxy login is required, leave this field blank.

The wizard validates the information you have entered and notifies you of any settings that need to be changed before you can continue with the wizard. If the settings you have entered are valid and the port is up, the wizard's Advanced Appliance Settings screen opens.

Enter configuration values for your cluster, then click Next.

Table 6. Primary node entries for advanced appliance settings
Cluster virtual IP addresses
To access from enterprise network, for intracluster access, to access from management network, and for internet access fields Note If you configured the management or internet access interface on the same port as the enterprise interface, its corresponding field is not displayed in this section.	Enter the virtual IP address that will be used for traffic between the cluster and the interfaces that you have configured on your primary node. This is required for both three-node clusters and single-node clusters that will be converted into a three-node cluster in the future. If you have a single-node cluster setup and don't plan to move to a three-node cluster setup, you can leave the fields in this section blank. If you decide to configure a virtual IP address, you must enter one for each configured network interface. You will not be able to complete the wizard unless you do so. These addresses are tied to the cluster link's status, which must be in the UP state.
Fully Qualified Domain Name (FQDN) field	Enter the fully qualified domain name (FQDN) for your cluster. Catalyst Center does these tasks with this hostname: It uses this hostname to access your cluster’s web interface and the Representational State Transfer (REST) APIs used by devices thatCatalyst Center manages in the enterprise network. In the Subject Alternative Name (SAN) field of Catalyst Center certificates, it uses the FQDN to the define the Plug and Play server that should be used for device provisioning.
CLI credentials Enter and confirm the password for the `maglev` user. Ensure that this password complies with the Password requirements.
Cisco Catalyst Center admin credentials Enter a password for the default admin superuser, used to log in to Catalyst Center for the first time. Ensure that this password complies with the Password requirements.
NTP server settings
NTP Server field	Enter at least one NTP server address or hostname. To enter additional NTP server addresses or hostnames, click the Add (+) icon. For a production deployment, Cisco recommends that you configure a minimum of three NTP servers.
Turn on NTP Authentication check box	To enable the authentication of your NTP server before it's synchronized with Catalyst Center, check this check box and then enter this information: The NTP server's key ID. Valid values range between 1 and 4294967295 (2^32-1). This value corresponds to the key ID that's defined in the NTP server's key file. The SHA-1 key value associated with the NTP server's key ID. This 40-character hex string resides in the NTP server's key file. Note Ensure that you enter a key ID and key value for each NTP server that you configured in the previous field.
Subnet settings
Container Subnet field	A dedicated, non-routed IP subnet that Catalyst Center uses to manage internal services. By default, this is already set to 169.254.32.0/20, and we recommend that you use this subnet.
Cluster Subnet field	A dedicated, non-routed IP subnet that Catalyst Center uses to manage internal cluster services. By default, this is already set to 169.254.48.0/20, and we recommend that you use this subnet.

The Summary screen displays the step to review all the entered settings before starting the configuration.

Note

To download the appliance configuration as a JSON file, click the here link.

Review all of the settings that you have entered while completing the wizard. If you need to update settings, click the relevant Edit link to open the corresponding wizard screen.
To complete the configuration of your Catalyst Center appliance, click Start Configuration.

The wizard screen continuously updates during the process, indicating the tasks that are currently being completed and their progress, as well as any errors that have occurred. To save a local copy of this information as a text file, click the download icon.

What to do next

When this task is finished:

If you are deploying this appliance in Standalone mode only, complete the first-time setup: First-time setup workflow.
If you are deploying this appliance as the primary node in a cluster, configure the second and third installed appliances in the cluster: Configure a secondary node using the Advanced Install configuration wizard.

Configure the primary node using the Advanced Install configuration wizard

Overview

Before you begin

Procedure

What to do next

Need help?