New and Changed Information
The following tables summarize the new and changed features in Cisco DNA Center and tell you where they are documented.
Feature | Description | ||
---|---|---|---|
Enhancements to AP Provisioning for N+1 High Availability |
If you are using N+1 High Availability (HA) and modify any nonflex SSIDs that are already provisioned on the primary and secondary controllers to flex SSIDs (or conversely), ensure that the states of WLANs are consistent across both the primary and secondary controllers on the corresponding site. |
||
Enhancements to Channel Width Selection for APs in Dual Radio Mode |
In earlier releases, if the dual radio mode was enabled on an AP, its slot 2 couldn't be in the Client-Serving or Monitor radio role with the 160 MHz channel width. Effective with this release, if the dual radio mode is enabled on an AP, its slot 2 can't be in the Client-Serving radio role with the 160 MHz channel width. |
||
Enhancements to the Configure AI RF Profile Workflow |
In earlier releases, in the Configure AI RF Profile workflow, when you a select a site, Cisco DNA Center selected all the existing sites that are managed by the same wireless controller as the impacted locations. This selection included the sites where AI-Enhanced RRM was already enabled. Effective with this release, when you a select a site, Cisco DNA Center doesn't select the existing AI-Enhanced RRM-enabled sites as impacted locations to avoid unnecessary reprovisioning of these sites.
|
||
Enhancements to VLAN Creation for FlexConnect SSIDs |
For the FlexConnect SSIDs, VLANs are not automatically created on the Cisco Catalyst 9800 Series Wireless Controller during provisioning. Instead, the interface and VLANs that are mapped to the wireless network profile are created on the Flex profile during AP provisioning. See Provision a Cisco Catalyst 9800 Series Wireless Controller. |
Feature | Description |
---|---|
Recommended Release |
Cisco DNA Center 2.3.5.5 contains fixes for critical issues. We recommend that customers on all earlier Cisco DNA Center releases, including the 2.3.5.x releases, upgrade to Cisco DNA Center 2.3.5.5. |
Enhancements to Default AP Profiles During Upgrade |
In earlier releases, the default AP profile was pushed to the wireless controller during upgrade. When you upgrade to this release from an earlier version, by default, Cisco DNA Center doesn't push the default AP profile to the wireless controller. To update the default AP profile on the wireless controller, you must explicitly save it on the window. After you save the default AP profile, if there is a difference between the current wireless controller configuration and the AP profile configuration saved on Cisco DNA Center, the default AP profile is pushed to the wireless controller during subsequent reprovisioning. See AP Profiles. |
Feature | Description | ||
---|---|---|---|
Ability to Assign Ports for Uplink Ports |
Effective with this release, you can assign ports for the uplink ports. Choose and click the fabric site. Under , assign ports for the uplink ports. In earlier releases, you could assign ports for the uplink ports only for extended node devices. |
||
AP Location Configuration for PnP Onboarding |
Effective with this release, you can configure the site assigned during the PnP claim as the AP location for PnP onboarding. See Plug and Play Provisioning Prerequisites and Provision a Wireless or Sensor Device. |
||
Enhancements to Access Control Lists for Central Web Authentication SSIDs of Guest Wireless Network |
Effective with this release, Cisco DNA Center-generated preauthentication Access Control Lists (ACL) are created only for the configured AAA or PSN servers for Central Web Authentication (CWA) SSIDs of guest wireless networks. |
||
Enhancements to Admin Status of Radio Bands in RF Profiles for Cisco AireOS Wireless Controllers |
Effective with this release, for Cisco AireOS Wireless Controllers, if you disable the Admin status of a band in the RF profile and reprovision the wireless controller or AP, Cisco DNA Center creates the RF profile for the corresponding band and maps it to the AP group (instead of configuring it as None) and disables the Admin status of all radios of the corresponding band on the APs. |
||
Enhancements to FlexConnect Settings Modifications for Existing SSIDs |
If you modify any nonflex SSIDs that are already provisioned on a wireless controller to flex SSIDs (or conversely), you must reprovision the wireless controller to ensure that the expected intent is configured on the wireless controller. If you modify the VLAN ID value in the Local to VLAN ID field of an existing SSID and reprovision the AP without reprovisioning the wireless controller, the latest value of the VLAN ID is updated in the flex profile used by the AP.
|
||
Enhancements to RF Profile Updates for Cisco AireOS Wireless Controllers |
In earlier releases, for Cisco AireOS Wireless Controllers, if you modify any configuration in an RF profile that is already provisioned on a wireless controller, Cisco DNA Center resets the corresponding radio. Effective with this release, for Cisco AireOS Wireless Controllers, if you modify the DCA channels or data rates for an RF profile that is already provisioned on a wireless controller, Cisco DNA Center resets the corresponding radio. |
||
Support for Manual Data Refresh to Track the Replacement Status in the AP Refresh Workflow |
In the Access Point Refresh workflow, to view the latest AP replacement status, you can use the Refresh Data option.
See AP Refresh Workflow. |
||
Support for Static IP Address for Wireless Management Interface During Provisioning of Cisco Catalyst 9800 Series Wireless Controller |
Effective with this release, you must configure a static IP address for the wireless management interface on the Cisco Catalyst 9800 Series Wireless Controller to prevent provisioning failure. See Configure a Cisco Catalyst 9800 Series Wireless Controller in Cisco DNA Center. |
Feature | Description | ||
---|---|---|---|
Dynamic Channel Assignment (DCA) Validation |
DCA channel support is based on the regulatory domain of the device. During AP provisioning with an RF profile selected, out of all the DCA channels configured on the RF profile only the supported channels as per the country code are considered and the unsupported channels are ignored. You can view the list of unsupported channels in the AP preprovision summary window. See Create a Wireless Radio Frequency Profile, Create an AI Radio Frequency Profile, and About Wireless Devices and Country Codes. |
||
Enhancements to Accounting Server Configuration |
Effective with this release, you must configure an accounting server for an SSID to push the accounting configuration for the SSID. See Configure AAA Server for an Enterprise Wireless Network and Configure AAA Server for a Guest Wireless Network. |
||
Enhancements to AP Configuration Workflow |
The Configure Access Points workflow has the following enhancements:
|
||
Enhancements to AP Location Configuration |
During AP provisioning and AP Plug and Play (PnP) onboarding, Cisco DNA Center doesn't configure the assigned site as the AP location. You can configure the AP location using the Configure Access Points workflow. See Provision a Cisco AP—Day 1 AP Provisioning, Provision a Wireless or Sensor Device, and Configure AP Workflow. |
||
Enhancements to Application Hosting on APs |
When the App Hosting Status of an AP is Ready, to configure the updates on the AP, you can use the Resync option. See View Installed Hosting Applications on Cisco Catalyst 9100 Series Access Points. |
||
Enhancements to Authentication using AAA Server for Wireless Networks |
Effective with this release, you must configure an AAA server for an SSID to push the authentication configuration for the SSID. If an AAA server is not configured for the SSID, Cisco DNA Center pushes the aaa authentication dot1x default local command to the wireless controller and the default method list that points to local authentication is mapped to the SSID. See Configure AAA Server for an Enterprise Wireless Network and Configure AAA Server for a Guest Wireless Network. |
||
Enhancements to Editing RF Profiles |
Effective with this release, when you update an RF profile that is already provisioned on a wireless controller and AP, you must reprovision either the wireless controller or AP. Wireless controller reprovisioning also pushes the RF profiles updates to the devices and AP reprovisioning is not necessary. If you don't need the RF profile updates during the wireless controller reprovisioning, you can check the Skip AP Provision check box. See Edit or Delete a Basic Radio Frequency Profile and Edit an AI Radio Frequency Profile. |
||
Enhancements to RF Profiles |
Effective with this release, for Cisco Catalyst 9800 Series Wireless Controllers, disabling a radio band on the RF profile doesn't disable the Admin status of the respective radios on all APs that use the RF profile. Instead, Cisco DNA Center disables the Admin status of the corresponding RF profile.
See Create a Wireless Radio Frequency Profile and Create an AI Radio Frequency Profile. |
||
Enhancements to Site Tags, Policy Tags, and AP Zone Provisioning |
Site tags, policy tags, and AP zone provisioning have the following enhancements:
See Add AP Zones to a Network Profile and Add AP Groups, Flex Groups, Site Tags, and Policy Tags to a Network Profile. |
Feature | Description | ||
---|---|---|---|
Advanced WLAN Parameters Configuration Support for Enterprise and Guest Wireless Networks |
You can configure the following advanced WLAN parameters while creating SSIDs for enterprise and guest wireless networks:
See Create SSIDs for an Enterprise Wireless Network and Create SSIDs for a Guest Wireless Network. |
||
Basic RF Profile and AI RF Profile Enhancements |
You can configure the following settings for basic radio frequency (RF) profiles:
You can configure the following settings for AI RF profiles:
See Create a Wireless Radio Frequency Profile, Create an AI Radio Frequency Profile, Create a Model Config Design for Dot11ax Configuration, Create a Model Config Design for Advanced SSID, and Create a Model Config Design for RRM FRA Parameters. |
||
Cisco DNA Center Journey Map |
The Cisco DNA Center journey map shows various capabilities provided by Cisco DNA Center and its usage. |
||
Client Rate Limit Configuration Support for Enterprise and Guest Wireless Networks |
You can configure the client rate limit on Cisco IOS XE devices while creating SSIDs for enterprise and guest wireless networks. See Create SSIDs for an Enterprise Wireless Network and Create SSIDs for a Guest Wireless Network. |
||
Compliance Support Extended for Cisco Umbrella |
You can check compliance for switches or Cisco Embedded Wireless Controllers configured with Cisco Umbrella. You can view any violations under Workflow in the Compliance Summary window. See Types of Compliance. |
||
Compliance Support Extended for Network Settings |
You can check compliance for device network settings. You can view any violations under Network settings in the Compliance Summary window. See Types of Compliance. |
||
Detect Conflicts in a CLI Template |
You can detect potential design conflicts and run-time conflicts in the CLI templates for switching, SD-Access, and fabric. See Detect Conflicts in a CLI Template, Potential Design Conflicts Detection Between CLI Template and Service Provisioning Intent, and Detect CLI Template Run-Time Conflict. |
||
Enhanced Multicast Capabilities in Cisco SD-Access fabric |
Cisco SD-Access multicast capabilities are enhanced to accommodate multiple external RP configuration, ASM group-to-RP mapping, and concurrent ASM, SSM configuration per Layer 3 virtual network. See Configure Multicast. |
||
Enhancements to Default Configuration of Fast Transition Over Distributed Systems for SSIDs |
Effective with this release, fast transition over a distributed system (Over the DS check box) is disabled by default for SSIDs for guest and enterprise wireless networks. See Create SSIDs for an Enterprise Wireless Network and Create SSIDs for a Guest Wireless Network. |
||
Exclude Interfaces in Application Visibility Service Enablement |
You can exclude or include interfaces in the Application Visibility service enablement. See Day 0 Setup Wizard to Enable the Application Visibility Service. |
||
Fix Compliance Violations |
Cisco DNA Center provides you with an automated fix for device compliance violations that are identified during a compliance run. |
||
HTTPS Protocol Support for Software Image Management |
HTTPS protocol support is extended for software image management on Cisco Embedded Wireless Controllers. See Change the Protocol Order of an Image Distribution Server. |
||
LAN Automation Enhancements:
|
A new user interface window for LAN Automation supports both Day 0 and Day N operations, such as:
You can run multiple (a maximum of five) LAN Automation sessions simultaneously, across sites. However, you can enable only one LAN Automation session per site. See LAN Automation, Provision a Network Through LAN Automation, Create a Link Between Interfaces, and Delete a Link Between Interfaces. |
||
PSC Enforcement Support for RF Profiles |
You can enable Preferred Scanning Channel (PSC) enforcement for the 6-GHz radio type for basic RF profiles and AI RF profiles. See Create a Wireless Radio Frequency Profile and Create an AI Radio Frequency Profile. |
||
Resilient Ethernet Protocol (REP) Ring Device Support (Nonfabric) |
REP Ring support for nonfabric devices is extended for S5800. |
||
Support for AP Authorization Configuration |
You can configure a list of authorized APs. You can configure local and AAA authorization for APs using their MAC address, serial number, or both. See Create an AP Authorization List, Provision a Cisco AireOS Controller, and Provision a Cisco Catalyst 9800 Series Wireless Controller. |
||
Support for AP Power Profiles |
You can create AP power profiles for Cisco Wireless Controllers running Cisco IOS XE Release 17.10.1 and later. You can assign the AP power profile to APs by associating it with an AP profile. You can define multiple rules for the AP power profile and specify the sequences of the rules. |
||
Support for Custom AP Profiles |
AP profiles consolidate the AP authentication settings, aWIPS, rogue management, and mesh settings. AP profiles allow you to manage and provision APs. Cisco DNA Center provides a default AP profile for Cisco IOS XE devices and Cisco AireOS devices. You can create custom AP profiles for Cisco IOS XE devices and Cisco AireOS devices.
See AP Profiles, Create an AP Profile for Cisco IOS XE Devices, Create an AP Profile for Cisco AireOS Devices, Add AP Groups, Flex Groups, Site Tags, and Policy Tags to a Network Profile, and About Wireless Mesh Networks. |
||
Support for Native Multicast over SD-Access Transit |
You can configure SD-Access Native Multicast on a network that has multiple fabric sites that are connected to an SD-Access transit. Cisco DNA Center provides an option to enable multicast on the border nodes and on the SD-Access transit. See Add a Device as a Border Node and Create an SD-Access Transit. |
||
Support for Reuse of AP Groups and Flex Groups Within an Area |
While creating a network profile for wireless, you can use the same AP group and flex group across sites (buildings or floors) within an area. See Add AP Groups, Flex Groups, Site Tags, and Policy Tags to a Network Profile. |
||
Support for Wireless IP Address Pools from Layer 2 Segments for Cisco SD-Access Fabric Sites |
You can choose the wireless IP address pools that are configured for Layer 2 segments while configuring wireless SSIDs for fabric sites. |
||
Support Multiple IPv4 Addresses on Single Wired MAC Address in a Cisco SD-Access Fabric |
You can connect wired endpoints with multiple IPv4 addresses to a Cisco SD-Access fabric. |
||
Template Hub |
You can filter CLI templates based on Project Name, Template Language, Device Family, Device Series, Commit State, and Provision Status from .You can attach the CLI template to network profiles in the Template Hub window. You can also create a new network profile. See About Template Hub and Attach a CLI Template to the Network Profiles. |