About Stealthwatch Security Analytics Service on Cisco DNA Center

About Stealthwatch Security Analytics Service on Cisco DNA Center

The Stealthwatch Security Analytics service on Cisco DNA Center, in conjunction with Cisco Stealthwatch, provides real-time monitoring of all network traffic. When you use the Stealthwatch Security Analytics service to enable Network as a Sensor with Encrypted Traffic Analytics, you can enhance the protection of your network against encrypted threats without decrypting the traffic. You can also use the Stealthwatch Security Analytics service to enable Network as a Sensor on devices that do not support Encrypted Traffic Analytics.

The Stealthwatch Security Analytics service on Cisco DNA Center automates the provisioning of network elements (based on best practices) so that they send data to Cisco Stealthwatch, enabling you to gain additional visibility, and improving your malware detection capabilities.

With Stealthwatch Security Analytics, you can:

  • assess what parts of the network are ready for deployment

  • enable Stealthwatch Security Analytics

  • monitor the status of deployment

Stealthwatch Supported Versions

The following table lists the minimum software version and the required licenses for Stealthwatch.

Product Family

Minimum Version

Product Components Required

License/Capacity Required

Stealthwatch Enterprise

6.10.2

  • Stealthwatch Management Console

  • Flow Collector

See Stealthwatch Management Console VE and Connector Flow VE Installation and Configuration Guide.

Stealthwatch Security Analytics Supported Devices

Supported Devices for Enabling Network as a Sensor with Encrypted Traffic Analytics

The following table lists the supported devices, minimum version, and license and platform requirements for enabling Network as a Sensor with Encrypted Traffic Analytics.

Product Family

Minimum Version

License Required

Platforms

Catalyst 9300

IOS-XE 16.6.4

DNA Advantage

  • C9324

  • C9348

Catalyst 9400

IOS-XE 16.6.4

DNA Advantage

  • C9404

  • C9407

  • C9410

ISR 4k

IOS-XE 16.6.4

Either of the following:

  • DNA Advantage

  • SEC/K9

  • 4221

  • 4321

  • 4331

  • 4351

  • 4431

  • 4451

ASR 1k

IOS-XE 16.6.4

Either of the following:

  • DNA Advantage

  • SEC/K9

  • 1001-X

  • 1001-HX

  • 1002-X

  • 1002-HX

Supported Devices for Enabling Network as a Sensor

The following table lists the supported devices and the minimum version and license requirements for enabling Network as a Sensor.

Product Family

Minimum Version

License Required

Catalyst 9200

IOS-XE 16.9.1

DNA Advantage

Catalyst 3850

IOS-XE 16.9.1

DNA Advantage

Catalyst 3650

IOS-XE 16.9.1

DNA Advantage