Configure the 32-Core and 56-Core Appliances Using the Browser-Based Wizard

Appliance configuration overview

You can deploy the 32-core or 56-core appliance in your network in one of these modes:

  • Standalone: As a single node offering all the functions. This option is usually preferred for initial or test deployments and in smaller network environments. If you select the Standalone mode for your initial deployment, it will be your primary node.


    Note
    You can add more appliances later to form a cluster.

  • Cluster: As a node that belongs to a three-node cluster. In this mode, all the services and data are shared among the hosts. This is the preferred option for large deployments. If you select the Cluster mode for your initial deployment, be sure to finish configuring the primary node before configuring the secondary nodes.

To continue, configure the primary node in your cluster. If you have installed three appliances and want to add the second and third nodes to your cluster, configure the secondary nodes.

Browser-based configuration wizards

Catalyst Center offers two browser-based wizards that you can use to configure your appliance. Read the descriptions to decide which wizard to complete.


Important

These wizards are available for use if you are configuring a new appliance that came with the latest 2.3.7.x release of Catalyst Center already installed. If you upgraded from an earlier version and want to use these wizards, contact Cisco TAC for support.

Install configuration wizard

This wizard streamlines the appliance configuration process by setting default values for the Enterprise, Management, and Internet Access interfaces as well as the Intracluster interface. All the interfaces reside on the appliance’s Enterprise port. Use this wizard if you agree to use the default interface settings and want to activate your appliance quickly.


Note

You cannot use this wizard to configure a cluster’s secondary nodes.

Advanced Install configuration wizard

This wizard provides access to all of the available appliance settings that you can modify. Use this wizard to specify interface settings that differ from the default or to configure the second or third node in your cluster..

Browser-based wizard prerequisites

To properly configure your appliance using either of the browser-based wizards, complete these tasks:

  • Designate the enterprise interface on your appliance to use the IP address, subnet mask, and default gateway assigned by a DHCP server. The wizard does not allow changes to the assigned IP address or subnet mask, but allows you to change the default gateway. The assumption in this chapter is that the enterprise interface was selected for this purpose.

  • Ensure that the IP address assigned by the DHCP server is reachable by the machine from which you will complete the wizard.

  • Verify that both the enterprise and intracluster interfaces are connected and in the UP state.

Alternatively, specify your own IP address, subnet mask, and default gateway for the enterprise interface of your appliance by completing the Static IP Address Settings page.

VLAN mode considerations

Consider these details about VLAN mode:

  • For a description of VLAN mode, see Steps 7 and 8 in Configure the primary node using the Maglev wizard.

  • VLAN mode:

    • Can only be enabled when you configure a Catalyst Center appliance using the Maglev Configuration wizard.

    • Cannot be enabled using any of the browser-based configuration wizards.

    • Cannot be disabled without reimaging the appliance.

  • Disaster recovery is not supported by Catalyst Center deployments that have VLAN mode enabled.

Configure an appliance using the Install Configuration wizard

Do this procedure to configure either a three-node cluster's primary node or a standalone node using the Install configuration wizard. The wizard simplifies the configuration process by setting up the Enterprise, Management, and Internet interfaces on the same port using default settings. These third-generation Catalyst Center appliances support configuration using this wizard:

  • 32-core appliance: Cisco part number DN3-HW-APL

  • 56-core appliance: Cisco part number DN3-HW-APL-L


Important

  • You can only use this wizard to complete the initial configuration of a new Catalyst Center appliance. To reimage an appliance that's been configured previously, you will need to use the Maglev Configuration wizard (see Configure the Appliance Using the Maglev Wizard).

  • You cannot use this wizard to configure the second or third appliance in a three-node cluster. To do so, complete the steps that are described in Configure a secondary node using the Advanced Install configuration wizard. Also, you cannot use this wizard to enable LACP mode on your appliance's Enterprise and Intracluster interfaces.

  • Log out of any appliances in a three-node cluster before configuring them. Otherwise, the Quick Start workflow (which you complete to discover your network's devices and enable telemetry) will not start after you have configured your cluster's appliances and log in to Catalyst Center for the first time.

  • Ensure that all of the IP addresses you enter while completing this procedure are valid IPv4 addresses with valid IPv4 netmasks. Also make sure that the addresses and their corresponding subnets do not overlap. Service communication issues can result if they do.

Before you begin

Ensure that you:

Procedure

Step 1

Start the Install configuration wizard:

  1. Point your browser to the Cisco IMC IP address you set during the Cisco IMC GUI configuration you performed, then log in to the Cisco IMC GUI as the Cisco IMC user (see Enable browser access to the Cisco Integrated Management Controller).

    After successful login, the appliance displays the Cisco Integrated Management Controller Chassis Summary window, with a blue link menu at the upper right.

  2. From the blue link menu, select Launch KVM and then select HTML based KVM.

    The KVM console opens in a separate browser window or tab automatically. Use it to monitor the progress of the configuration and respond to Maglev Configuration Wizard prompts.

  3. With the KVM displayed, reboot the appliance by making one of these selections:

    • In the main Cisco IMC GUI browser window: Choose Host Power > Power Cycle. Then switch to the KVM console to continue.

    • In the KVM console, choose Power > Power Cycle System (cold boot).

    If asked to confirm your choice to reboot the appliance, click OK.

    After displaying the reboot messages, the KVM console displays the Static IP Configuration window.

    The KVM console displays the Static IP Configuration screen with the Skip and Configure options in the bottom-right corner.

    Note the URL listed in the Web Installation field.

  4. Do one of these tasks:

    • If you want a DHCP server to assign an IP address, subnet mask, and default gateway to your appliance's Enterprise interface, click Skip.

    • If you want to assign your own IP address, subnet mask, and default gateway to your appliance's Enterprise interface, enter the information described in the table and then click Configure.

    Note

     

    You only need to specify an IP address, subnet mask, and default gateway for your appliance's Enterprise interface.

    IPv6 Mode check box

    If you want to configure an IPv6 address, check this check box.

    IP Address field

    Enter the static IP address that you want to use.

    Netmask field

    Enter the netmask for the IP address you specified in the previous field:

    • If you entered an IPv4 address, you can enter either a netmask or CIDR address.

    • If you entered an IPv6 address, you can only enter a CIDR address.

    Default Gateway Address field

    Specify the default gateway that will be used to route traffic.

    Static Routes field

    Enter one or more static routes in this format, separated by spaces: <network>/<netmask>/<gateway>. This is usually required on the Management port only.

    The KVM console displays the Maglev Configuration wizard welcome page.

    The Maglev Configuration wizard displays two Cisco DNA Center cluster options for how you would like to configure the node.

  5. To bring up the Appliance Configuration window, open the URL that displays in the Static IP Configuration window.

    The Applicance Configuration screen displays two options: start or join a Cisco DNA Center cluster.

  6. Click the Start a Cisco Catalyst Center Cluster radio button, then click Next.

    The Appliance Configuration screen displays two appliance configuration workflow options.

  7. Click the Install radio button, then click Start.

    The Overview slider opens. Click > to view a summary of the tasks that the wizard will help you complete.

    The Overview slider displays a summary of the workflow with the Start Workflow button in the bottom-left corner.

  8. Click Start Workflow to start the wizard.

    The Appliance Interface Overview window opens, providing a description of the four interfaces that are available on your Catalyst Center appliance:

    The Appliance Interface Overview screen summarizes the four configurable interfaces on your appliance.

    The wizard will help you configure the Enterprise and Intracluster ports, which are required for Catalyst Center functionality. If the wizard fails to display either or both of these ports in the next page, they may be non-functional or disabled. If you discover that they are non-functional, click Exit to exit the wizard immediately. Be sure you have completed all of the steps provided in Execute preconfiguration tasks before resuming configuration or contacting the Cisco Technical Assistance Center (TAC).

Step 2

Complete the Install configuration wizard:

  1. Click Next.

    The Configure The Enterprise Port page opens.

    The Configure the Enterprise Port screen displays the step to set up the Enterprise, Management, and Internet Access interfaces on the Enterprise port.

    The configuration wizard sets up the Enterprise, Management, and Internet Access interfaces on the Enterprise port. The wizard also prepopulates values for almost all of the listed parameters.

    If your network resides behind a firewall, do these tasks:

    • Click the allow access to these URLs link to view a pop-up window that lists the URLs that Catalyst Center must be able to access.

    • Click the open these ports link to view a pop-up window that lists the network service ports that must be available for Catalyst Center to use.

  2. In the DNS field, enter the IP address of the preferred DNS server.

    To enter additional DNS servers, click the Add (+) icon.

    Important

     

    • For each node in your cluster, configure a maximum of three DNS servers. Problems can occur if you configure more than three DNS servers for an appliance.

    • For NTP, ensure port 123 (UDP) is open between Catalyst Center and your NTP server.

  3. Click Next.

  4. When prompted, click Yes to copy the Intracluster interface's IP address and subnet mask.

    You'll need this information when you configure your cluster's secondary nodes.

    The wizard validates the information you have entered, confirms that the port is up, and notifies you of any settings that need to be changed before you can continue with the wizard. If the settings you have entered are valid and the port is up, the wizard's Interface to Port Configuration page opens.

    The Interface to Port Configuration screen displays the step to review the interface settings and then configure the interfaces.

  5. Click Next.

  6. Review the interface settings that have been set, then click Configure.

  7. After initial interface configuration has completed, click Next to continue to the next wizard page.

    The Configure Proxy Server Information page opens.

    The Configure Proxy Server Information screen displays the step to choose if you want your network to use a proxy server to access the internet.

  8. Do one of these tasks, then click Next:

    • If your network does not use a proxy server to access the internet, click the No radio button.

    • If your network does use a proxy server to access the internet, enter the values described in this table:

    Table 1. Primary node entries for proxy server settings

    Proxy Server field

    Enter the URL or host name of an HTTPS network proxy used to access the Internet.

    Note

     
    Connection from Catalyst Center to the HTTPS proxy is supported only via HTTP in this release.

    Port field

    Enter the port that your appliance used to access the network proxy.

    Username field

    Enter the username used to access the network proxy. If no proxy login is required, leave this field blank.

    Password field

    Enter the password used to access the network proxy. If no proxy login is required, leave this field blank.

    The wizard validates the information that you entered and notifies you of any settings that need to be changed before you can continue with the wizard. If the settings you have entered are valid, the wizard's Advanced Appliance Settings page opens.

  9. Enter configuration values for your cluster, then click Next.

    Table 2. Primary node entries for advanced appliance settings

    Cluster virtual IP addresses

    To access from Enterprise Network and For Intracluster Access fields

    Enter the virtual IP address that will be used for traffic between the cluster and both the Enterprise and Intracluster interfaces on your appliance. This is required for single-node clusters that will be converted into a three-node cluster in the future. If you have a single-node cluster setup and don't plan to move to a three-node cluster setup, you can leave the fields in this section blank.

    Important

     

    If you decide to configure a virtual IP address, you must enter one for each configured network interface. You will not be able to complete the wizard unless you do so. These addresses are tied to the cluster link's status, which must be in the UP state.

    Fully Qualified Domain Name (FQDN) field

    Enter the fully qualified domain name (FQDN) for your cluster. Catalyst Center does these tasks with this hostname:

    • It uses this hostname to access your cluster’s web interface and the Representational State Transfer (REST) APIs used by devices in the enterprise network that Catalyst Center manages.

    • In the Subject Alternative Name (SAN) field of Catalyst Center certificates, it uses the FQDN to the define the Plug and Play server that should be used for device provisioning.

    CLI credentials

    Enter and confirm the password for the maglev user.

    Important

     

    Ensure that this password complies with the Password requirements.

    NTP server settings

    NTP Server field

    Enter at least one NTP server address or hostname. To enter additional NTP server addresses or hostnames, click the Add (+) icon.

    For a production deployment, Cisco recommends that you configure a minimum of three NTP servers.

    Turn On NTP Authentication check box

    To enable the authentication of your NTP server before it's synchronized with Catalyst Center, check this check box and then enter this information:

    • The NTP server's key ID. Valid values range between 1 and 4294967295 (2^32-1).

      This value corresponds to the key ID that's defined in the NTP server's key file.

    • The SHA-1 key value associated with the NTP server's key ID. This 40-character hex string resides in the NTP server's key file.

    Note

     

    Ensure that you enter a key ID and key value for each NTP server that you configured in the previous field.

    Subnet settings

    Container Subnet field

    A dedicated, non-routed IP subnet that Catalyst Center uses to manage internal services. By default, this is already set to 169.254.32.0/20, and we recommend that you use this subnet.

    Cluster Subnet field

    A dedicated, non-routed IP subnet that Catalyst Center uses to manage internal cluster services. By default, this is already set to 169.254.48.0/20, and we recommend that you use this subnet.

    The wizard validates the information you have entered and notifies you of any settings that need to be changed before you can continue with the wizard. If the settings you entered are valid, the wizard's Summary page opens.

    The Summary screen displays the step to review the entered settings before starting your appliance configuration.

  10. Scroll to the bottom of the page and review all of the settings that you have entered while completing the wizard. If necessary, click the Edit link to open the wizard page in which you can make updates.

    Note

     

    To download the appliance configuration as a JSON file, click the relevant link.

  11. To complete the configuration of your Catalyst Center appliance, click Start Configuration.

    The wizard page continuously updates during the process, indicating the tasks that are currently being completed and their progress, as well as any errors that have occurred. To save a local copy of this information as a text file, click the Download link.

    The Appliance Configuration In Progress screen informs you how long the configuration should take and displays a progress bar.

Step 3

After appliance configuration completes, click the copy icon in the Cisco Catalyst Center - Admin Credential area to copy the default admin superuser password.

Important

 

Catalyst Center automatically sets this password to P@ssword9 when you complete the Install configuration wizard. Use this password to log in to Catalyst Center for the first time.

Note

 

As a security measure, you'll be prompted to change this password after you log in. For more information, see Complete the Quick Start workflow.

What to do next

As you are deploying this appliance in standalone mode, continue by doing the first-time setup: First-time setup workflow.

Configure the primary node using the Advanced Install configuration wizard

Whether standalone or part of a cluster, always configure the first appliance as the primary node.

If you are configuring the installed appliance as a secondary node for an existing cluster that already has a primary node, follow the steps in Configure a secondary node using the Advanced Install configuration wizard instead.

To configure the first installed appliance as the primary node using the Advanced Install configuration wizard:


Important

  • These third-generation Catalyst Center appliances support configuration using this wizard:

    • 32-core appliance: Cisco part number DN3-HW-APL

    • 56-core appliance: Cisco part number DN3-HW-APL-L

  • You can only use this wizard to complete the initial configuration of a new Catalyst Center appliance. To reimage an appliance that was configured previously, you must use the Maglev Configuration wizard (see Configure the Appliance Using the Maglev Wizard).

  • Before you configure the appliances in a three-node cluster, ensure that you have logged out of those appliances. Otherwise, the Quick Start workflow (which discovers your network's devices and enables telemetry) will not start after you have configured your cluster's appliances and log in to Catalyst Center for the first time.

  • Ensure that the IP addresses you enter while completing this procedure are valid addresses with valid netmasks. Also make sure that the addresses and their corresponding subnets do not overlap. Service communication issues can result when they do.

Before you begin

Ensure that you:

Procedure

Step 1

Start the Advanced Install configuration wizard:

  1. Point your browser to the Cisco IMC IP address that you set during the Cisco IMC GUI configuration you performed, then log in to the Cisco IMC GUI as the Cisco IMC user (see Enable browser access to the Cisco Integrated Management Controller).

    After successful login, the appliance displays the Cisco Integrated Management Controller Chassis Summary window, with a blue link menu at the upper right.

  2. In the blue link menu, select Launch KVM and then select HTML based KVM.

    The KVM console opens in a separate browser window or tab automatically. Use it to monitor the progress of the configuration and respond to Maglev Configuration Wizard prompts.

  3. With the KVM displayed, reboot the appliance by making one of these selections:

    • In the main Cisco IMC GUI browser window: Choose Host Power > Power Cycle. Then switch to the KVM console to continue.

    • In the KVM console: Choose Power > Power Cycle System (cold boot).

    If asked to confirm your choice to reboot the appliance, click OK.

    After displaying reboot messages, the KVM console displays the Static IP Configuration screen.

    The KVM console displays the Static IP Configuration screen with the Skip and Configure options in the bottom-right corner.

    Remember the URL listed in the Web Installation field.

  4. Do one of these tasks:

    • If you want a DHCP server to assign an IP address, subnet mask, and default gateway to your appliance's Enterprise interface, click Skip.

    • If you want to assign your own IP address, subnet mask, and default gateway to your appliance's Enterprise interface, enter the information that this table describes and then click Configure.

    Note

     

    Only specify an IP address, subnet mask, and default gateway for your appliance's Enterprise interface.

    IPv6 Mode check box

    If you want to configure an IPv6 address, check this check box.

    IP Address field

    Enter the static IP address that you want to use.

    Netmask field

    Enter the netmask for the IP address you specified in the previous field:

    • If you entered an IPv4 address, you can enter either a netmask or CIDR address.

    • If you entered an IPv6 address, you can only enter a CIDR address.

    Default Gateway Address field

    Specify the default gateway that will be used to route traffic.

    Static Routes field

    Enter one or more static routes in this format, separated by spaces: <network>/<netmask>/<gateway>. This is usually required on the Management port only.

    The KVM console displays the Maglev Configuration wizard welcome screen.

    The Maglev Configuration wizard displays two Cisco DNA Center cluster options for how you would like to configure the primary node.

  5. To bring up the Appliance Configuration screen, open the URL that was displayed in the Static IP Configuration screen.

    The Applicance Configuration screen displays two options: start or join a Cisco DNA Center cluster.

  6. Click the Start a Cisco Catalyst Center Cluster radio button, then click Next.

    The Appliance Configuration screen displays two appliance configuration workflow options.

  7. Click the Advanced Install radio button, then click Start.

    The Overview slider opens. Click > to view a summary of the tasks that the wizard helps you complete.

    The Advanced Install Overview slider displays a summary of the workflow with the Start Workflow button in the bottom-left corner.

  8. Click Start Workflow to start the wizard.

    The Appliance Interface Overview screen opens, providing a description of the four appliance interfaces that you can configure.

    The Appliance Interface Overview screen summarizes the four configurable interfaces on your appliance.

    Important

     

    At a minimum, configure the interfaces on your appliance's Enterprise and Cluster ports, as they are required for Catalyst Center functionality. If the wizard fails to display either or both of these ports during configuration, they may be nonfunctional or disabled. If you discover that they are nonfunctional, click Exit to exit the wizard immediately. Be sure you have completed the steps that are provided in Execute preconfiguration tasks before resuming configuration or contacting the Cisco Technical Assistance Center (TAC).

Step 2

Complete the Advanced Install configuration wizard:

  1. Click Next.

    The How would you like to set up your appliance interfaces? screen opens.

    The How would you like to set up your appliance interfaces? screen displays the step to choose if you want to configure dedicated Management and Internet Access interfaces.

    If your network resides behind a firewall, do these tasks:

    • Click the allow access to these URLs link to view a pop-up window that lists the URLs that Catalyst Center must be able to access.

    • Click the open these ports link to view a pop-up window that lists the network service ports that must be available for Catalyst Center to use.

  2. Indicate whether you want to configure dedicated Management and Internet Access interfaces, then click Next.

    The Configure Your Enterprise Network Interface screen opens.

    The Configure Your Enterprise Network Interface screen displays the step to enter configuration values for the Enterprise interface.

  3. Enter the configuration values for the Enterprise interface, then click Next.

    As explained in Interface cable connections, this is a required interface that is used to link the appliance to the enterprise network. See Required IP addresses and subnets and Required configuration information for a more detailed description of the values that you must enter.

    Table 3. Primary node entries for the Enterprise interface

    LACP Mode slider

    Select one of these network interface controller (NIC) bonding modes for the Enterprise interface:

    • Active-Backup mode: This mode provides fault tolerance by aggregating two Ethernet interfaces into a single logical channel. When the interface that's currently active goes down, the other interface takes its place and becomes active.

    • LACP mode: This mode aggregates two Ethernet interfaces that share the same speed and duplex settings into a single logical channel. This provides load balancing and higher bandwidth.

    For more information about Catalyst Center's implementation of NIC bonding, see NIC bonding overview.

    Host IP Address field

    Enter the IP address for the Enterprise interface. This is required.

    Subnet Mask field

    Enter the netmask for the interface's IP address. This is required.

    Default Gateway IP Address field

    Enter a default gateway IP address to use for the interface.

    Important

     

    Default Gateway: Enter an IP address for at least one interface. Failure to do so prevents completion of the configuration wizard.

    Note

     

    You designated this interface to use the default gateway assigned to it by a DHCP server. Complete these steps to specify a different gateway:

    1. Delete the IP address that is currently listed in this field and then click Exit.

      This will bring you back to the first wizard screen.

    2. Return to the Enterprise port's wizard screen and enter the gateway IP address you want to use.

    DNS field

    Enter the IP address of the preferred DNS server.

    To enter additional DNS servers, click the Add (+) icon.

    Important

     

    • For each node in your cluster, configure a maximum of three DNS servers. Problems can occur if you configure more than three DNS servers for an appliance.

    • For NTP, ensure port 123 (UDP) is open between Catalyst Center and your NTP server.

    The wizard validates the information that you have entered, confirms that the port is up, and notifies you of any settings that must be changed before you can continue with the wizard. If the settings that you have entered are valid and the port is up, the wizard's Configure Your Intracluster Interface screen opens.

    The Configure Your Intracluster Interface screen displays the step to enter configuration values for your Intracluster interface.

  4. Enter the configuration values for your Intracluster interface, then click Next.

    As explained in Interface cable connections, this required port is used to link the appliance to your cluster. See Required IP addresses and subnets and Required configuration information for a more detailed description of the values you must enter.

    Note

     

    • If you opted to configure the Enterprise and Internet Access interfaces on the same port, complete this step and then continue to Step 2e (which describes how to configure your Management interface).

    • If you opted to configure the Enterprise and Management interfaces on the same port, complete this step and then skip ahead to Step 2f (which describes how to configure your Internet Access interface).

    • If you opted to configure the Enterprise, Management, and Internet Access interfaces on the same port, complete this step and then skip ahead to Step 2g.

    Table 4. Primary node entries for the Intracluster interface

    LACP Mode slider

    Select one of these NIC bonding modes for the Intracluster interface:

    • Active-Backup mode: This mode provides fault tolerance by aggregating two Ethernet interfaces into a single logical channel. When the interface that's currently active goes down, the other interface takes its place and becomes active.

    • LACP mode: This mode aggregates two Ethernet interfaces that share the same speed and duplex settings into a single logical channel. This provides load balancing and higher bandwidth.

      Important

       

      If you want to enable LACP mode on your appliance's Intracluster interface, do so now. You won't be able to after you complete this wizard.

    For more information about Catalyst Center's implementation of NIC bonding, see NIC bonding overview.

    Host IP Address field

    Enter the IP address for the Intracluster interface. This is required.

    Note

     

    You cannot change the address of the Intracluster interface later.

    Subnet Mask field

    Enter the netmask for the interface's IP address. This is required.

    The wizard validates the information that you have entered, confirms that the port is up, and notifies you of any settings that must be changed before you can continue with the wizard. If the settings that you have entered are valid and the port is up, the wizard's Configure Your Management Network Interface screen opens.

    The Configure Your Management Network Interface screen displays the optional step to enter configuration values for the Management port.

  5. (Optional) Enter the configuration values for the Management interface, then click Next.

    As explained in Interface cable connections, this port is used to access the Catalyst Center GUI from your management network. If you chose to configure a dedicated Management interface, enter the information described in this table. (See Required IP addresses and subnets and Required configuration information for a more detailed description of the values you must enter.)

    Note

     

    If you opted to configure the Enterprise and Internet Access interfaces on the same port, complete this step and then skip ahead to Step 2g.

    Table 5. Primary node entries for the Management interface

    Host IP Address field

    Enter the IP address for the Management interface.

    Subnet Mask field

    Enter the netmask for the interface's IP address.

    Default Gateway IP Address field

    Enter a default gateway IP address to use for the interface.

    Important

     

    Ensure that you enter a default gateway IP address for at least one of your appliance's interfaces. Otherwise, you will not be able to complete the configuration wizard.

    DNS field

    Enter the IP address of the preferred DNS server.

    To enter additional DNS servers, click the Add (+) icon.

    Important

     

    • For each node in your cluster, configure a maximum of three DNS servers. Problems can occur if you configure more than three DNS servers for an appliance.

    • For NTP, ensure port 123 (UDP) is open between Catalyst Center and your NTP server.

    The wizard validates the information that you have entered, confirms that the port is up, and notifies you of any settings that must be changed before you can continue with the wizard. If the settings that you have entered are valid and the port is up, the wizard's Configure Your Internet Access Interface screen opens.

    The Configure Your Internet Access Interface screen displays the optional step to enter configuration values for the Internet Access interface.

  6. (Optional) Enter the configuration values for the Internet Access interface, then click Next.

    As explained in Interface cable connections, this is an optional port used to link the appliance to the Internet when you cannot do so through the Enterprise port. If you chose to configure a dedicated Internet Access interface, enter the information described in this table. (See Required IP addresses and subnets and Required configuration information for a more detailed description of the values you must enter.)

    Table 6. Primary node entries for the Internet Access interface

    Host IP Address field

    Enter the IP address for the Internet Access interface.

    Subnet Mask field

    Enter the netmask for the interface's IP address. This is required if you entered an IP address in the previous field.

    Default Gateway IP Address field

    Enter a default gateway IP address to use for the interface.

    Important

     

    Ensure that you enter a default gateway IP address for at least one of your appliance's interfaces. Otherwise, you will not be able to complete the configuration wizard.

    DNS field

    Enter the IP address of the preferred DNS server.

    To enter additional DNS servers, click the Add (+) icon.

    Important

     

    • For each node in your cluster, configure a maximum of three DNS servers. Problems can occur if you configure more than three DNS servers for an appliance.

    • For NTP, ensure port 123 (UDP) is open between Catalyst Center and your NTP server.

    The wizard validates the information that you have entered, confirms that the port is up, and notifies you of any settings that must be changed before you can continue with the wizard. If the settings that you have entered are valid and the port is up, the wizard's Interface to Port Configuration screen opens.

    The Interface to Port Configuration screen displays the step to review the entered values for the primary node’s interfaces.

  7. Review the settings that you have entered for the primary node's interfaces.

    If you must make any changes, click the Edit link for the relevant interface.

  8. When you are happy with the interface settings, click Next.

    After initial interface configuration has completed, the Configure Proxy Server Information screen opens.

    The Configure Proxy Server Information screen displays the step to choose if you want your network to use a proxy server to access the internet.

  9. Do one of these tasks and then click Next:

    • If your network does not use a proxy server to access the internet, click the No radio button.

    • If your network does use a proxy server to access the internet, enter the values described in this table:

    Table 7. Primary node entries for proxy server settings

    Proxy Server field

    Enter the URL or host name of an HTTPS network proxy used to access the Internet.

    Note

     
    Connection from Catalyst Center to the HTTPS proxy is supported only via HTTP in this release.

    Port field

    		 Enter the port your appliance used to access the network proxy.

    Username field

    Enter the user name used to access the network proxy. If no proxy login is required, leave this field blank.

    Password field

    Enter the password used to access the network proxy. If no proxy login is required, leave this field blank.

    The wizard validates the information that you have entered and notifies you of any settings that must be changed before you can continue with the wizard. If the settings that you have entered are valid and the port is up, the wizard's Advanced Appliance Settings screen opens.

  10. Enter the configuration values for your cluster, then click Next.

    Table 8. Primary node entries for advanced appliance settings

    Cluster virtual IP addresses

    To access from Enterprise Network, For Intracluster Access, To access from Management Network, and For Internet Access fields

    Note

     

    If you configured the Management or Internet Access interface on the same port as the Enterprise interface, its corresponding field is not displayed in this section.

    Enter the virtual IP address that will be used for traffic between the cluster and the interfaces that you have configured on your primary node. This is required for both three-node clusters and single-node clusters that will be converted into a three-node cluster in the future. If you have a single-node cluster setup and don't plan to move to a three-node cluster setup, you can leave the fields in this section blank.

    Important

     

    If you decide to configure a virtual IP address, you must enter one for each configured network interface. You will not be able to complete the wizard unless you do so. These addresses are tied to the cluster link's status, which must be in the UP state.

    Fully Qualified Domain Name (FQDN) field

    Enter the fully qualified domain name (FQDN) for your cluster. Catalyst Center does these tasks with this hostname:

    • It uses this hostname to access your cluster’s web interface and the Representational State Transfer (REST) APIs used by devices in the enterprise network that Catalyst Center manages.

    • In the Subject Alternative Name (SAN) field of Catalyst Center certificates, it uses the FQDN to the define the Plug and Play server that should be used for device provisioning.

    CLI credentials

    Enter and confirm the password for the maglev user.

    Important

     

    Ensure that this password complies with the Password requirements.

    Cisco Catalyst Center admin credentials

    Enter a password for the default admin superuser, used to log in to Catalyst Center for the first time.

    Important

     

    Ensure that this password complies with the Password requirements.

    NTP server settings

    NTP Server field

    Enter at least one NTP server address or hostname. To enter additional NTP server addresses or hostnames, click the Add (+) icon.

    For a production deployment, Cisco recommends that you configure a minimum of three NTP servers.

    Turn On NTP Authentication check box

    To enable the authentication of your NTP server before it's synchronized with Catalyst Center, check this check box and then enter this information:

    • The NTP server's key ID. Valid values range between 1 and 4294967295 (2^32-1).

      This value corresponds to the key ID that's defined in the NTP server's key file.

    • The SHA-1 key value associated with the NTP server's key ID. This 40-character hex string resides in the NTP server's key file.

    Note

     

    Ensure that you enter a key ID and key value for each NTP server that you configured in the previous field.

    Subnet settings

    Container Subnet field

    A dedicated, non-routed IP subnet that Catalyst Center uses to manage internal services. By default, this is already set to 169.254.32.0/20, and we recommend that you use this subnet.

    Cluster Subnet field

    A dedicated, non-routed IP subnet that Catalyst Center uses to manage internal cluster services. By default, this is already set to 169.254.48.0/20, and we recommend that you use this subnet.

    The wizard validates the information that you have entered. It also notifies you of any settings that require changes before you can continue with the wizard. If the settings that you have entered are valid, the wizard's Summary screen opens.

    The Summary screen displays the step to review all the entered settings before starting the configuration.

    Note

     

    To download the appliance configuration as a JSON file, click the here link.

  11. Review the settings that you have entered while completing the wizard. If necessary, click the appropriate Edit link to open the wizard screen in which you want to make updates.

  12. To complete the configuration of your Catalyst Center appliance, click Start Configuration.

    The wizard screen continuously updates during the process. It indicates the tasks that Catalyst Center is completing and their progress. It also indicates any errors that have occurred. To save a local copy of this information as a text file, click the download icon.

    The Appliance Configuration In Progress screen informs you how long the configuration should take and displays a progress bar.

What to do next

When this task is complete:

Configure a secondary node using the Advanced Install configuration wizard

Do these steps to configure the second and third nodes in the cluster using the Advanced Install configuration wizard.


Important

  • In order to build a three-node cluster, the same version of the System package must be installed on your three Catalyst Center appliances. Otherwise, unexpected behavior and possible downtime can occur.

  • These third-generation Catalyst Center appliances support configuration using the Advanced Install configuration wizard:

    • 32-core appliance: Cisco part number DN3-HW-APL

    • 56-core appliance: Cisco part number DN3-HW-APL-L

  • You can only use this wizard to complete the initial configuration of a new Catalyst Center appliance. To reimage an appliance that's been configured previously, you will need to use the Maglev Configuration wizard (see Configure the Appliance Using the Maglev Wizard).

  • Before you configure the appliances in a three-node cluster, ensure that you have logged out of those appliances. Otherwise, the Quick Start workflow (which you complete to discover your network's devices and enable telemetry) will not start after you have configured your cluster's appliances and log in to Catalyst Center for the first time.

  • Enter valid IP addresses and netmasks during this procedure. Also make sure that the addresses and their corresponding subnets do not overlap. Service communication issues can result if they do.

Specify the first appliance in the cluster as the primary node when joining each new secondary node. Consider this information when joining secondary nodes to a cluster:

  • Ensure all installed packages are deployed on the primary node before adding a new node to the cluster. You can check this by using Secure Shell to log in to the primary node's Catalyst Center Management port as the Linux user (maglev) and then running the command maglev package status. All installed packages should appear in the command output as DEPLOYED.

    The primary node’s Cisco DNA Center Management port displays all the installed packages’ statuses as DEPLOYED.

  • Be sure to join only a single node to the cluster at a time. Do not attempt to add multiple nodes at the same time, because it results in unpredictable behavior.

  • Expect some service downtime during the cluster attachment process for each secondary node. Services will need to be redistributed across the nodes and the cluster will be down for periods of time during that process.

Before you begin

Ensure that you:

  • Configured the first appliance in the cluster according to the steps in Configure the primary node using the Advanced Install configuration wizard.

  • Collected all of the information called for in Required IP addresses and subnets and Required configuration information.

  • Installed the second and third appliances, as described in Appliance installation workflow.

  • Have completed these tasks:

    1. Ran the maglev package status command on the first appliance.

      You can also access this information from the Catalyst Center GUI by clicking the Help icon () and choosing About > Packages.

    2. Contacted the Cisco TAC, gave them the output of this command, and asked them to point you to the ISO that you should install on your second and third appliances.

  • Configured Cisco IMC browser access on both secondary nodes, as described in Enable browser access to the Cisco Integrated Management Controller.

  • Checked that both secondary nodes' ports and the switches they use are properly configured, as described in Execute preconfiguration tasks.

  • Are using a compatible browser. For a list of compatible browsers, see the Release Notes for the version of Catalyst Center you are installing.

  • Enabled ICMP on the firewall between Catalyst Center and both the default gateway and the DNS server you specify in this topic procedure. The wizard uses ping to verify the gateway and DNS server you specify. This ping might get blocked if a firewall is in place and ICMP is not enabled on that firewall. When this happens, you will not be able to complete the wizard.

Procedure

Step 1

Start the Advanced Install configuration wizard:

  1. Point your browser to the Cisco IMC IP address you set during the Cisco IMC GUI configuration you performed, then log in to the Cisco IMC GUI as the Cisco IMC user (see Enable browser access to the Cisco Integrated Management Controller).

    After successful login, the appliance displays the Cisco Integrated Management Controller Chassis Summary window, with a blue link menu at the upper right.

  2. From the blue link menu, select Launch KVM and then select HTML based KVM.

    The KVM console opens in a separate browser window or tab automatically. Use it to monitor the progress of the configuration and respond to Maglev Configuration Wizard prompts.

  3. With the KVM displayed, reboot the appliance by making one of these selections:

    • In the main Cisco IMC GUI browser window: Choose Host Power > Power Cycle. Then switch to the KVM console to continue.

    • In the KVM console: Choose Power > Power Cycle System (cold boot).

    If asked to confirm your choice to reboot the appliance, click OK.

    After displaying reboot messages, the KVM console displays the Static IP Configuration screen.

    The KVM console displays the Static IP Configuration screen with the Skip and Configure options in the bottom-right corner.

    Remember the URL listed in the Web Installation field.

  4. Do one of these tasks:

    • If you want a DHCP server to assign an IP address, subnet mask, and default gateway to your appliance's Enterprise interface, click Skip.

    • If you want to assign your own IP address, subnet mask, and default gateway to your appliance's Enterprise interface, enter the information described in this table and then click Configure.

    IPv6 Mode check box

    If you want to configure an IPv6 address, check this check box.

    IP Address field

    Enter the static IP address you want to use.

    Netmask field

    Enter the netmask for the IP address you specified in the previous field:

    • If you entered an IPv4 address, you can enter either a netmask or CIDR address.

    • If you entered an IPv6 address, you can only enter a CIDR address.

    Default Gateway Address field

    Specify the default gateway that will be used to route traffic.

    Static Routes field

    Enter one or more static routes in this format, separated by spaces: <network>/<netmask>/<gateway>. This is usually required on the Management port only.

    The KVM console displays the Maglev Configuration wizard welcome screen.

    The Maglev Configuration wizard displays two Cisco DNA Center cluster options for how you would like to configure the node.

  5. To bring up the Appliance Configuration screen, open the URL that was displayed in the Static IP Configuration screen.

    The Applicance Configuration screen displays two options: start or join a Cisco DNA Center cluster.

  6. Click the Join a Cisco Catalyst Center Cluster radio button, then click Next.

    The Appliance Configuration screen displays the Advanced Install workflow option with the Start button in the bottom-right corner.

  7. Click the Advanced Install radio button, then click Start.

    The Overview slider opens. Click > to view a summary of the tasks that the wizard will help you complete.

    The Advanced Install Overview slider displays a summary of the workflow with the Start Workflow button in the bottom-left corner.

  8. Click Start Workflow to start the wizard.

    The Appliance Interface Overview screen opens, providing a description of the four appliance interfaces that you can configure.

    The Appliance Interface Overview screen summarizes the four configurable interfaces on your appliance.

    Important

     

    At a minimum, you must configure the interfaces on your appliance's Enterprise and Cluster ports, as they are required for Catalyst Center functionality. If the wizard fails to display either or both of these ports during the course of configuration, they may be non-functional or disabled. If you discover that they are non-functional, click Exit to exit the wizard immediately. Be sure you have completed all of the steps provided in Execute preconfiguration tasks before resuming configuration or contacting the Cisco Technical Assistance Center (TAC).

Step 2

Complete the Advanced Install configuration wizard:

  1. Click Next.

    The How would you like to set up your appliance interfaces? screen opens.

    The Will this appliance join a cluster? screen displays the step to choose if you want your appliance to join a cluster.

  2. Indicate whether you want to configure dedicated Management and Internet Access interfaces, then click Next.

    The Configure Your Enterprise Network Interface screen opens.

    The Configure Your Enterprise Network Interface screen displays the step to enter configuration values for the Enterprise interface.

  3. Enter configuration values for the Enterprise interface, then click Next.

    As explained in Interface cable connections, this is a required interface used to link the appliance to the enterprise network. See Required IP addresses and subnets and Required configuration information for a more detailed description of the values you need to enter.

    Table 9. Secondary node entries for the Enterprise interface

    LACP Mode slider

    Select one of these network interface controller (NIC) bonding modes for the Enterprise interface:

    • Active-Backup mode: This mode provides fault tolerance by aggregating two Ethernet interfaces into a single logical channel. When the interface that's currently active goes down, the other interface takes its place and becomes active.

    • LACP mode: This mode aggregates two Ethernet interfaces that share the same speed and duplex settings into a single logical channel. This provides load balancing and higher bandwidth.

    For more information about Catalyst Center's implementation of NIC bonding, see NIC bonding overview.

    Host IP Address field

    Enter the IP address for the Enterprise interface. This is required.

    Subnet Mask field

    Enter the netmask for the interface's IP address. This is required.

    Default Gateway IP Address field

    Enter a default gateway IP address to use for the interface.

    Important

     

    Ensure that you enter a default gateway IP address for at least one of your appliance's interfaces. Otherwise, you will not be able to complete the configuration wizard.

    Note

     

    You designated this interface to use the default gateway assigned to it by a DHCP server. Complete these steps to specify a different gateway:

    1. Delete the IP address that is currently listed in this field and then click Exit.

      This will bring you back to the first wizard screen.

    2. Return to the Enterprise port's wizard screen and enter the gateway IP address you want to use.

    DNS field

    Enter the IP address of the preferred DNS server.

    To enter additional DNS servers, click the Add (+) icon.

    Important

     

    • Configure up to three DNS servers per node in your cluster. Problems can occur if you configure more than three DNS servers for an appliance.

    • For NTP, ensure port 123 (UDP) is open between Catalyst Center and your NTP server.

    The wizard validates the information you have entered, confirms that the port is up, and notifies you of any settings that need to be changed before you can continue with the wizard. If the settings you have entered are valid and the port is up, the wizard's Configure Your Intracluster Interface screen opens.

    The Configure Your Intracluster Interface screen displays the step to enter configuration values for your Intracluster interface.

  4. Enter configuration values for your Intracluster interface, then click Next.

    As explained in Interface cable connections, this required port is used to link the appliance to your cluster. See Required IP addresses and subnets and Required configuration information for a more detailed description of the values you need to enter.

    Note

     

    • If you opted to configure the Enterprise and Internet Access interfaces on the same port, complete this step and then continue to Step 2e (which describes how to configure your Management interface).

    • If you opted to configure the Enterprise and Management interfaces on the same port, complete this step and then skip ahead to Step 2f (which describes how to configure your Internet Access interface).

    • If you opted to configure the Enterprise, Management, and Internet Access interfaces on the same port, complete this step and then skip ahead to Step 2g.

    Table 10. Secondary node entries for the Intracluster interface

    LACP Mode slider

    Select one of these NIC bonding modes for the Intracluster interface:

    • Active-Backup mode: This mode provides fault tolerance by aggregating two Ethernet interfaces into a single logical channel. When the interface that's currently active goes down, the other interface takes its place and becomes active.

    • LACP mode: This mode aggregates two Ethernet interfaces that share the same speed and duplex settings into a single logical channel. This provides load balancing and higher bandwidth.

      Important

       

      If you want to enable LACP mode on your appliance's Intracluster interface, do so now. You won't be able to after you complete this wizard.

    For more information about Catalyst Center's implementation of NIC bonding, see NIC bonding overview.

    Host IP Address field

    Enter the IP address for the Intracluster interface. This is required.

    Note

     

    You cannot change the address of the Intracluster interface later.

    Subnet Mask field

    Enter the netmask for the interface's IP address. This is required.

    The wizard validates the information you have entered, confirms that the port is up, and notifies you of any settings that need to be changed before you can continue with the wizard. If the settings you have entered are valid and the port is up, the wizard's Configure Your Management Network Interface screen opens.

    The Configure Your Management Network Interface screen displays the optional step to enter configuration values for the Management port.

  5. (Optional) Enter configuration values for the Management interface, then click Next.

    As explained in Interface cable connections, this port is used to access the Catalyst Center GUI from your management network. If you chose to configure a dedicated Management interface, enter the information described in this table. (See Required IP addresses and subnets and Required configuration information for a more detailed description of the values you need to enter.)

    Note

     

    If you opted to configure the Enterprise and Internet Access interfaces on the same port, complete this step and then skip ahead to Step 2g.

    Table 11. Secondary node entries for the Management interface

    Host IP Address field

    Enter the IP address for the Management interface. This is required.

    Subnet Mask field

    Enter the netmask for the interface's IP address. This is required.

    Default Gateway IP Address field

    Enter a default gateway IP address to use for the interface.

    Important

     

    Ensure that you enter a default gateway IP address for at least one of your appliance's interfaces. Otherwise, you will not be able to complete the configuration wizard.

    DNS field

    Enter the IP address of the preferred DNS server.

    To enter additional DNS servers, click the Add (+) icon.

    Important

     

    • For each node in your cluster, configure a maximum of three DNS servers. Problems can occur if you configure more than three DNS servers for an appliance.

    • For NTP, ensure port 123 (UDP) is open between Catalyst Center and your NTP server.

    The wizard validates the information you have entered, confirms that the port is up, and notifies you of any settings that need to be changed before you can continue with the wizard. If the settings you have entered are valid and the port is up, the wizard's Configure Your Internet Access Interface screen opens.

    The Configure Your Internet Access Interface screen displays the optional step to enter configuration values for the Internet Access interface.

  6. (Optional) Enter configuration values for the Internet Access interface, then click Next.

    As explained in Interface cable connections, this is an optional port used to link the appliance to the Internet when you cannot do so through the Enterprise port. If you decided to configure a dedicated Internet Access interface, enter the information described in this table. (See Required IP addresses and subnets and Required configuration information for a more detailed description of the values you need to enter.)

    Table 12. Secondary node entries for the Internet Access interface

    Host IP Address field

    Enter the IP address for the Internet Access interface.

    Subnet Mask field

    Enter the netmask for the interface's IP address. This is required if you enter an IP address.

    Default Gateway IP Address field

    Enter a default gateway IP address to use for the interface.

    Important

     

    Ensure that you enter a default gateway IP address for at least one of your appliance's interfaces. Otherwise, you will not be able to complete the configuration wizard.

    DNS field

    Enter the IP address of the preferred DNS server.

    To enter additional DNS servers, click the Add (+) icon.

    Important

     

    • For each node in your cluster, configure a maximum of three DNS servers. Problems can occur if you configure more than three DNS servers for an appliance.

    • For NTP, ensure port 123 (UDP) is open between Catalyst Center and your NTP server.

    The wizard validates the information you have entered, confirms that the port is up, and notifies you of any settings that need to be changed before you can continue with the wizard. If the settings you have entered are valid and the port is up, the wizard's Interface to Port Configuration screen opens.

    The Interface to Port Configuration screen displays the step to review the entered values for the secondary node’s interfaces.

  7. Review the settings that you have entered for the secondary node's interfaces.

    If you need to make any changes, click the Edit link for the relevant interface.

  8. When you are happy with the interface settings, click Next.

    After initial interface configuration has completed, the Configure Proxy Server Information screen opens.

    The Configure Proxy Server Information screen displays the step to choose if you want your network to use a proxy server to access the internet.

  9. Do one of these task and then click Next:

    • If your network does not use a proxy server to access the internet, click the No radio button.

    • If your network does use a proxy server to access the internet, enter the values described in this table:

    Table 13. Secondary node entries for proxy server settings

    Proxy Server field

    Enter the URL or host name of an HTTPS network proxy used to access the Internet.

    Note

     
    Connection from Catalyst Center to the HTTPS proxy is supported only through HTTP in this release.

    Port field

    Enter the port your appliance used to access the network proxy.

    Username field

    Enter the user name used to access the network proxy. If no proxy login is required, leave this field blank.

    Password field

    Enter the password used to access the network proxy. If no proxy login is required, leave this field blank.

    The wizard validates the information you have entered and notifies you of any settings that need to be changed before you can continue with the wizard. If the settings you have entered are valid, the wizard's Primary Node Details screen opens.

    The Primary Node Details screen displays the step to enter its IP address and login credentials.

  10. To establish a connection with your cluster's primary node, enter its IP address and login credentials, and then click Next.

    The Advanced Appliance Settings screen opens.

  11. Enter configuration values for your cluster, then click Next.

    Table 14. Secondary node entries for advanced appliance settings

    CLI Credentials

    Enter and confirm the password for the maglev user.

    Important

     

    Ensure that this password complies with the Password requirements.

    NTP Server Settings

    NTP Server field

    Enter at least one NTP server address or hostname. To enter additional NTP server addresses or hostnames, click the Add (+) icon.

    For a production deployment, Cisco recommends that you configure a minimum of three NTP servers.

    Turn On NTP Authentication check box

    To enable the authentication of your NTP server before it's synchronized with Catalyst Center, check this check box and then enter this information:

    • The NTP server's key ID. Valid values range between 1 and 4294967295 (2^32-1).

      This value corresponds to the key ID that's defined in the NTP server's key file.

    • The SHA-1 key value associated with the NTP server's key ID. This 40-character hex string resides in the NTP server's key file.

    Note

     

    Ensure that you enter a key ID and key value for each NTP server that you configured in the previous field.

    The wizard validates the information you have entered, confirms that the port is up, and notifies you of any settings that need to be changed before you can continue with the wizard. If the settings you have entered are valid, the wizard's Summary screen opens.

    The Summary screen displays the step to review all the entered settings before starting the configuration.

    Note

     

    To download the appliance configuration as a JSON file, click the here link.

  12. Review all of the settings that you have entered while completing the wizard. If necessary, click the appropriate Edit link to open the wizard screen in which you want to make updates.

  13. To complete the configuration of your Catalyst Center appliance, click Start Configuration.

    The wizard screen continuously updates during the process, indicating the tasks that are currently being completed and their progress, as well as any errors that have occurred. To save a local copy of this information as a text file, click the download icon.

    The Appliance Configuration In Progress screen informs you how long the configuration should take and displays a progress bar.

What to do next

When this task is complete:

  • If you have an additional appliance to deploy as the third and final node in the cluster, repeat this procedure.

  • If you are finished adding nodes to the cluster, complete the first-time setup: First-time setup workflow.