Home
Support
Product Support
Cloud and Systems Management
Cisco Catalyst Center
Maintain and Operate Guides

Cisco Catalyst Center Administrator Guide, Release 3.2.x

Releases

3.2.x
3.1.x
2.3.7.x

View all Saved Content

PDF

Is this content helpful?

Helpful Unhelpful

Suggestions for Improvement

Thank you for your feedback. Your response has been recorded.

Ask about this content

Cisco Catalyst Center Administrator Guide, Release 3.2.x

Expand all sections

About this content

Manage System Settings

About system settings
User profile roles and permissions
Security recommendations
Use System 360
View the services in System 360
Typical node operations

Manage Certificates

Configure the proxy
Renew internal certificates
Certificate and private key support
Manage device certificates
Configure the device certificate lifetime
Certificate authority
Configure the device certificate trustpoint
Configure trusted certificates

Manage Cisco Accounts

Register Plug and Play
Configure Cisco credentials
Configure Smart Account
Smart Licensing
Configure connection mode

Configure Device Settings

Configure an image distribution server
Access point image transfer
Enable PnP device authorization
Device controllability
Configure the network resync interval
Configure SNMP properties
Enable ICMP ping
Configure AP location for PnP onboarding
Configure device prompts
Configure the automatic acceptance of SSH key changes
Configure device configuration backup settings
Configure an external server for archiving device configuration

Configure External Services

Configure Cisco AI Network Analytics
Configure Cisco Spaces integration
Catalyst Center and Cisco ISE integration
Configure authentication and policy servers
Integrity Verification
Cisco SD-Access Compatibility Matrix
Configure an IP address manager
Update the Machine Reasoning Knowledge Base
Configure Meraki integration
Catalyst Center and Microsoft Teams integration
Cloud access keys
Configure Webex integration
Configure ThousandEyes integration

Manage System Configurations

Monitor system health
View audit logs
Configure debugging logs
Activate high availability
Configure integration settings
Enable visibility and control of configurations
Configure geo map settings
Set up a login message

Manage Terms and Conditions

About product telemetry

Manage Trust and Privacy Settings

Account lockout
Password expiry
IP access control
Anonymize data

Manage Applications

Application management
Download and install applications
View an upgrade summary report
Uninstall an application

Manage Users

About user profiles
About user roles
Create an internal user
Edit a user
Delete a user
Password policy
Password requirements
Reset a user password
Change your own user password
Reset a forgotten password
Configure role-based access control
Display role-based access control statistics
Configure site-based, role-based access control
Use case example: assign multiple access groups to an internal user
Use case example: assign multiple access groups to an external user
Impact of SRBAC on Catalyst Center features
Configure external authentication
Two-factor authentication
Display external users

Manage Licenses

License Manager overview
Integration with Cisco Smart Accounts
Set up License Manager
Cisco Networking Subscription licenses
Visualize license use and expiration
View historical trends for license consumption
View license details
Change license level
Auto registration of Smart License-enabled devices
Day-zero configuration for Smart License-enabled devices
Configure licenses for worldwide safe mode-enabled devices
Apply specific license reservation or permanent license reservation to devices
Cancel SLR or PLR applied to devices
Install the authorization code and enable the high security license
Disable the high security license
Upload resource use details to CSSM
Smart Licensing Using Policy reporting through On-Prem CSSM
Sync licensing connection mode
Change device throughput
Transfer licenses between virtual accounts
Manage customer tags on Smart License-enabled devices
Modify license policy

Backup and Restore

About backup and restore
Backup server requirements
Backup storage requirements
Bandwidth and latency requirements
Set up a file share
Add the NFS server
Configure the location to store backup files
Configure a remote SSH server
Create a backup
Schedule data backup
Add a physical disk for backup and restore
Restore data from backups
Restore data from a physical disk for a faulty virtual appliance

Implement Disaster Recovery

Overview
Prerequisites
Install the witness site
Set up disaster recovery
Pause your disaster recovery system
Rejoin your system
Failovers: an overview
Deregister your system
Disaster recovery system considerations
Administer your disaster recovery system
Disaster recovery event notifications
Troubleshoot your disaster recovery system

Integrate Multiple Catalyst Center Clusters with a Single Cisco ISE System

Overview of a Multiple Catalyst Center deployment
Author Node cluster
Reader Node cluster
Multiple Catalyst Center policy management
Upgrade recommendations for Multiple Catalyst Center
Multiple Catalyst Center deployments
Enable Multiple Catalyst Center
Integrate multiple Catalyst Centers with a single Cisco ISE
Integrate other Catalyst Center clusters with Cisco ISE as Reader Nodes
Delete a virtual network
Delete a security group
Promote a Reader Node to an Author Role
Promote a Reader Node gracefully
Promote a Reader Node forcibly

Manage Certificates

Updated: May 5, 2026

Learn how to manage system and device certificates, including internal Certificate Authority (CA) configuration, trustpoint management, and security best practices for certificate lifecycles.

Configure the proxy

Information about configuring access to a proxy server.

Renew internal certificates

Information about renewing internal certificates for another year before they are set to expire.

Certificate and private key support

Information about Catalyst Center digital certificates and private keys.

Manage device certificates

Information about managing device certificates for managed devices to authenticate and identify the devices.

Configure the device certificate lifetime

Information about configuring device certificate lifetime. Catalyst Center lets you change the certificate lifetime of network devices that are managed and monitored by the private (internal) Catalyst Center's CA.

Certificate authority

A certificate authority (CA) is an entity that manages the certificates and keys that are used to establish and secure server-client connections.

Configure the device certificate trustpoint

Information about configuring the device certificate trustpoint for devices to send wired and wireless Assurance telemetry to Catalyst Center when Manages Device Trustpoint is disabled.

Configure trusted certificates

Catalyst Center supports the import and storage of a trusted certificate bundle from Cisco. This trusted certificate bundle is used by Cisco networking devices to authenticate Catalyst Center and its applications, upon the presentation of a valid professional third-party vendor issued or self-signed digital certificate.

Need help?

Open a support case

(Requires a Cisco Service Contract)

Bias-free language

The documentation set for this product strives to use bias-free language. For the purposes of this documentation set, bias-free is defined as language that does not imply discrimination based on age, disability, gender, racial identity, ethnic identity, sexual orientation, socioeconomic status, and intersectionality. Exceptions may be present in the documentation due to language that is hardcoded in the user interfaces of the product software, language used based on RFP documentation, or language that is used by a referenced third-party product. Learn more about how Cisco is using Inclusive Language.