Build and Deploy Workflows

AP Refresh Workflow

The following sections provide information about replacing old access points with new access points using workflows in Cisco DNA Center.

Introduction to the AP Refresh Workflow

The AP Refresh feature allows you to replace older AP models with the newer AP models using the Cisco DNA Center workflow.

The AP Refresh workflow supports APs that are associated with Cisco AireOS Controllers and Cisco Catalyst 9800 Series Wireless Controllers.

The AP Refresh workflow supports the following APs:

  • Cisco Aironet 1810 Series OfficeExtend Access Points

  • Cisco Aironet 1810W Series Access Points

  • Cisco Aironet 1815i Access Point

  • Cisco Aironet 1815w Access Points

  • Cisco Aironet 1815m Access Point

  • Cisco Aironet 1830 Series Access Points

  • Cisco Aironet 1850 Series Access Points

  • Cisco Aironet 1800 Series Access Points

  • Cisco Aironet 2800 Series Access Points

  • Cisco Aironet 3800 Series Access Points

  • Cisco Aironet 4800 Series Access Points

  • Cisco Catalyst 9115 Series Wi-Fi 6 Access Points

  • Cisco Catalyst 9117 Series Wi-Fi 6 Access Points

  • Cisco Catalyst 9120 Series Wi-Fi 6 Access Points

  • Cisco Catalyst 9130 Series Wi-Fi 6 Access Points

AP Refresh Workflow

This procedure shows how to replace old APs with new ones in Cisco DNA Center.

Before you begin

  • The old AP must be provisioned and in Unreachable state.

  • The new AP must be connected to a Cisco Wireless Controller and available in the Cisco DNA Center Inventory, in Reachable state.

  • The old and new AP must be associated with the same wireless controller.

Procedure

Step 1

In the Cisco DNA Center GUI, click the Menu icon () and choose Workflows > Access Point Refresh.

A library of available workflows is displayed. These workflows guide you step by step through a particular task.
Step 2

Click Let's Do it.

To skip this screen in the future, check Don't show this to me again.

The Get Started screen appears.

Step 3

In the Task Name field, enter a unique name for the workflow and click Next.

Step 4

In the Select Network Sites screen, navigate to the floor where you want to refresh the AP and click Next.

The right pane shows the selected building, floor, and the total number of APs provisioned on that floor.

You can replace APs that are already in provisioned state.
Step 5

In the Select Access Points screen, check the check box next to the device name that you want to replace and click Next.

Step 6

In the Select procedure for providing New Access Points screen, select a method through which you want to provide new AP details: Add New Access Point detail via CSV file or Add New Access Point detail via GUI.

  • Click the Add New Access Point detail via CSV file radio button to upload a comma-separated value (CSV) file that contains the new device name and serial number.

    • To do this, click the Download Selected Devices List template and add the device name and serial number of the new AP. The downloaded CSV template file contains the old AP details. After adding the device name and serial number of the new AP, you can either import the CSV file or drag and drop the CSV file to the drag and drop area.

    • To import the CSV file, click Choose file and browse to the location of the CSV, then click Open.

      Cisco DNA Center performs a validation check. If the uploaded CSV file does not meet the requirement, an error message appears. Click View Details to get more details about the error message.

  • To add the new AP details using the GUI, click the Add New Access Point detail via GUI radio button and click Next.

    The Assign New Access Points screen appears, where you can assign a new AP for each old AP.

    • The Old Devices area shows details such as the IP address of the old AP, old AP name, site details, platform, and AP series information. Under the New Devices area, provide details about the new device.

    • From the Choose Serial Number drop-down list, choose the serial number of the new AP.

      If the new AP is already associated with the wireless controller and is available in the Inventory, the serial number of that AP is displayed as Managed in the Choose Serial Number drop-down list.

      If the new AP has contacted Cisco DNA Center through PnP, the serial number of that AP is displayed as Unclaimed in the Choose Serial Number drop-down list.

      If the serial number of the new AP is not available in the Inventory, the Serial Number drop-down list does not contain the serial number. To add a new serial number that is not present in the Inventory, from the Choose Serial Number drop-down list, enter the serial number and click +.

      Note 

      Cisco DNA Center performs a validation check and displays any errors. You must fix those errors before proceeding.

      You must resolve the following dependencies before provisioning new APs:

      • Device EULA acceptance by providing cisco.com credentials.

      • Update the Cisco Wireless Controller software image version. This validation does not stop you from proceeding with the AP refresh.

      • AP Connected SwitchPort: This validation message does not stop you from proceeding with the AP refresh.
Step 7

Click Next.

The configuration that is copied from the old AP to new AP is displayed in the Configuration Copied from Old Access Point to New screen.

Step 8

Click Next.

Step 9

In the Submit Access Point Refresh Task screen, click Provision to start the AP refresh task.

Step 10

In the Track Replacement Status screen, you can monitor the AP replacement status.

  • Click View Details to get more information about the AP replacement status.

    • If the AP replacement succeeds, the Replacement Status window shows the Replacement Status as REPLACED.

    • If the AP replacement fails, the Replacement Status shows as Error.

    • To delete the replacement entry, under the Actions column, click the three blue dots and click Delete. In the Warning dialog box, click Yes.

    • Click Export to download the provisioning summary to a CSV file that you can save locally.

    • Click Download Report to download the provisioning status report.

      Note 

      If the new AP is not yet discovered in the Inventory and the corresponding AP refresh entry is waiting for the new device to be connected, or if the PnP claim process is in progress, you must resynchronize the Cisco Wireless Controller.

Step 11

Click Next to view the summary details.

Step 12

After successful replacement, an AP refresh event is generated in Cisco DNA Assurance for the old and new AP.

You can view the AP refresh event under Event Viewer in the AP View 360 window.

The new APs are automatically updated on the respective floor maps in the Network Hierarchy window.

Configure User-Defined Network Workflow

The following sections provide information about configuring the Cisco User-Defined Network service using workflows in Cisco DNA Center.

Introduction to User-Defined Network Service

Home, consumer, and IoT devices on the network such as printers, speakers, Apple TV, Google Chromecast, ring doorbells, smart bulbs, and so on, depend on the Simple Service Discovery Protocols (SSDP) such as Apple Bonjour, multicast DNS (mDNS), and Universal Plug and Play (UPnP) to provide the easy discovery and usage of devices.

Cisco User-Defined Network service provides secure and remote onboarding of client devices in shared environments such as dormitory rooms, residence halls, class rooms, and auditoriums. With the User-Defined Network service, users can securely use SSDP such as Apple Bonjour, mDNS protocol such as AirPlay, AirPrint, Screen Mirroring, Print, or UPnP protocol to interact and share with only their registered device in the shared environment.

The User-Defined Network service provides the following solution:

  • Easy and secure onboarding of client devices.

  • Automatic segmentation of client devices which belongs to a particular user.

  • Ability to invite other users to share their devices.

The following software versions of Cisco DNA Center, Cisco Identity Services Engine, and Cisco Catalyst 9800 Series Wireless Controller, and Access Points are supported:

  • Cisco DNA Center Release 1.3.1.2 and later

  • Cisco Cisco Identity Services Engine Release 2.7 and later

  • Cisco Catalyst 9800 Series Wireless Controller Release 17.1.x

  • Cisco 802.11ac Wave 2 APs:

    • Cisco Aironet 1810 Series OfficeExtend Access Points

    • Cisco Aironet 1810W Series Access Points

    • Cisco Aironet 1815i Access Point

    • Cisco Aironet 1815w Access Point

    • Cisco Aironet 1815m Access Point

    • Cisco 1830 Aironet Series Access Points

    • Cisco Aironet 1850 Series Access Points

    • Cisco Aironet 2800 Series Access Points

    • Cisco Aironet 3800 Series Access Points

    • Cisco Aironet 4800 Series Access Points

  • Cisco 802.11ac Wave 1 APs

    • Cisco Aironet 1700 Series Access Points

    • Cisco Aironet 2700 Series Access Points

    • Cisco Aironet 3700 Series Access Points

Prerequisites for Configuring the User-Defined Network Service

Before configuring the Cisco User-Defined Network service, the following prerequisites must be completed:

  • Confirm that APs have joined the Cisco Wireless Controller.

  • Discover Cisco Wireless Controllers and APs in your network using the Discovery functionality so that the discovered devices are listed in the Inventory window.

  • Map the AAA server client endpoint with Cisco Identity Services Engine.

  • Add the authentication tokens to Cisco DNA Center.

  • Create nonfabric enterprise SSIDs or guest wireless SSIDs with any security and map them to the network profile.

  • Provision SSIDs.

Configure the User-Defined Network Service

This procedure shows how to configure the Cisco User-Defined Network service from the Workflows > Configure Cisco User Defined Network window. Alternatively, you can configure the Cisco User-Defined Network service from the Provision > Services > Cisco User Defined Network window.

Procedure

Step 1

In the Cisco DNA Center GUI, click the Menu icon () and choose Workflows > Configure Cisco User Defined Network.

Step 2

Click Let's Do It.

The Let's start with configuring the Service screen appears. You must generate an authentication token using the Cisco DNA Center Cloud portal so that Cisco DNA Center connects with Cisco DNA Center Cloud.

Step 3

Click Configure Cloud Service.

The Cisco DNA Center Cloud application opens in a new tab.

Step 4

Log in to Cisco DNA Center Cloud using your cisco.com account ID and password.

  • Click the Authentication Token tab in the left menu.

    The Authentication Token window appears.

  • In the Authentication Token window, click Generate New Token.

    The authentication token is generated.

  • Click Copy Token to copy the authentication token.

Step 5

Navigate back to the Let's start with configuring the Service screen in Cisco DNA Center.

Step 6

Click Next to validate the copied authentication token.

Step 7

In the Authentication Token text box, paste the authentication token that you generated and copied in Cisco DNA Center Cloud, and click Connect.

If the token is validated successfully, a message saying Connection validated, click Next to proceed appears.

If the token validation fails, click Retry, re-enter the authentication token, and click Connect.

Step 8

Click Next to select the sites where you want to enable the Cisco User-Defined Network service.

  • From the Select Sites drop-down list, choose the sites.

  • Check the Disable User Defined Network Service check box to disable the workflow for all the enabled sites.

Step 9

Click Next to select the SSIDs for the sites you selected.

The provisioned nonfabric SSIDs are displayed for all the sites selected in the previous step.

  • From the SSID(s) drop-down list, choose the SSIDs where the User-Defined Network service will be enabled.

  • To limit the unicast traffic for the selected SSID, turn on Unicast Traffic Containment.

  • Click Apply Individually to apply the unicast traffic containment for a specific site.

  • Click Apply to all to apply the unicast traffic containment for all sites.

Step 10

Click Next.

Step 11

Select whether you want to provision the Cisco User-Defined Network service on your network now or schedule it for a later time.

  • To provision the service on your network now, click the Now radio button and click Next.

  • To provision the service on your network for a later time, click the Later radio button, define the date and time, and click Next.

The Configuration Summary screen appears.

Step 12

Review the following details and click Edit in any of the sections if you want to make a change.

  • Authentication Token

  • Selected Sites & SSIDs

  • Scheduling
Step 13

Click Configure.

In the next screen, a check mark is shown next to each step as it is completed.
Step 14

Click View Provisioning Status.

Enable IoT Services Workflow

The following sections provide information about enabling IoT technologies such as Bluetooth, Zigbee, and ESL on Cisco Catalyst 9100 Series Access Points using Workflows in Cisco DNA Center.

Enable IoT Services on Cisco Catalyst 9100 Series Access Points

This procedure helps you to enable IoT technologies such as Bluetooth, Zigbee, and ESL on selected Catalyst 9100 Series Access Points.

Procedure

Step 1

In the Cisco DNA Center GUI, click the Menu icon () and choose Workflows.

A library of available workflows is displayed. These workflows guide you step by step through a particular task.
Step 2

Click Enable IOT Services.

Step 3

Click Let's Do it to start the installation workflow.

Step 4

In the Select Site window, navigate to the floor where you want to enable the IoT service.

Step 5

Click Next.

Step 6

In the Select the Application window, select the SES-imagotag ESL Connector application to enable IoT in your network, and click Next.

Note 

To add an application that is not present in the Cisco DNA Center, see Add an Application.

The Select Access Points window shows all the APs available on the particular floor.

Step 7

In the Select Access Points window, check the check box adjacent to the Device Name where you want to install the IoT connector application.

Step 8

Click Next.

Step 9

In the Summary window, review details before installing the application on selected APs, and click Next.

The Provisioning Task window appears which displays the task name which is created to track deployment of any application on APs.

Step 10

Review the auto generated task name and click Provision.

Step 11

In the Track Provisioning Status window you can track the progress of deployment.

Step 12

Click View Details to view the provisioning status.

Step 13

Click Next.

The Done! Task Completed window appears.

Step 14

Click Manage IoT Application to perform Day-N tasks.

Manage IoT Applications

This procedure shows how to manage IoT applications.

Before you begin

You must have enabled IoT services on Cisco Catalyst 9000 Series Access Points.

Procedure

Step 1

After enabling IoT services, click Manage IoT Application in the Done! Task Completed window.

Step 2

Check the check box next to the Hostname and perform the following tasks:

  • To start the application, from the Actions drop-down list, choose Start App.

  • To stop the application, from the Actions drop-down list, choose Stop App.

  • To edit the application configuration, from the Actions drop-down list, choose Edit App Config.

  • To upgrade the application, from the Actions drop-down list, choose Upgrade App.

  • To uninstall the application from the selected AP, from the Actions drop-down list, choose Uninstall App.

Step 3

Click the AP name to view the following details:

  • AP Name

  • AP Status

  • IP Address

  • Health
Step 4

Click Tech Support logs to collect application hosting logs.