Cisco Prime Infrastructure 2.2 Quick Start Guide
About Cisco Prime Infrastructure Licensing
Understanding System Requirements
If You Are Upgrading From Previous Releases of Prime Infrastructure
If You Are Running Multiple Prime Infrastructure Versions
Deploying the OVA from the VMware vSphere Client
Migrating Data From Previous Releases of Prime Infrastructure
Assurance Data after Migration
Resynchronizing WLC Configurations
Logging in to the Prime Infrastructure User Interface
Getting Started Using Prime Infrastructure
Ports Used by Prime Infrastructure and Assurance
Removing the Prime Infrastructure Virtual Appliance
Navigation and Documentation Reference
Obtaining Documentation and Submitting a Service Request
Installing Cisco Prime Infrastructure
Revised: 21 August 2015, OL-32125-01
SUPPLEMENTAL LICENSE AGREEMENT FOR CISCO SYSTEMS NETWORK MANAGEMENT SOFTWARE: CISCO PRIME INFRASTRUCTURE
IMPORTANT - READ CAREFULLY : This Supplemental License Agreement (“SLA”) contains additional limitations on the license to the Software provided to Customer under the End User License Agreement between Customer and Cisco. Capitalized terms used in this SLA and not otherwise defined herein shall have the meanings assigned to them in the End User License Agreement. To the extent that there is a conflict among any of these terms and conditions applicable to the Software, the terms and conditions in this SLA shall take precedence.
By installing, downloading, accessing or otherwise using the Software, Customer agrees to be bound by the terms of this SLA. If Customer does not agree to the terms of this SLA, Customer may not install, download or otherwise use the Software.
ADDITIONAL LICENSE RESTRICTIONS:
– Cisco Prime Infrastructure: May be installed on a server in Customer's network management environment.
For each Software license granted, customers may install and run the Software on a single server to manage the number of network devices and codecs specified in the license file provided with the Software, or as specified in the Software License Claim Certificate. Customers whose requirements exceed the network device and codec limits must purchase upgrade licenses or additional copies of the Software. The network device and codec limits are enforced by license registration.
DESCRIPTION OF OTHER RIGHTS AND LIMITATIONS.
Refer to the Cisco Systems, Inc. End User License Agreement.
This section provides basic information about the product and this Guide.
This guide describes how to install Cisco Prime Infrastructure 2.2.
For detailed information about configuring and managing this product, see the Cisco Prime Infrastructure 2.2 Administrator Guide and the Cisco Prime Infrastructure 2.2 User Guide.
This guide explains how to install Prime Infrastructure as a virtual appliance on customer-supplied hardware. Prime Infrastructure is also available as a physical appliance. For information on how to install the physical appliance, see the Cisco Prime Infrastructure 2.2 Appliance Hardware Installation Guide.
Prime Infrastructure provides a single integrated solution for comprehensive lifecycle management of the wired or wireless access, campus, and branch networks, and rich visibility into end-user connectivity and application performance assurance issues. Prime Infrastructure accelerates the rollout of new services, secure access and management of mobile devices, making “Bring Your Own Device” (BYOD) a reality for corporate IT. Tightly coupling client awareness with application performance visibility and network control, Prime Infrastructure helps ensure uncompromised end-user quality of experience. Deep integration with the Cisco Identity Services Engine (ISE) further extends this visibility across security and policy-related problems, presenting a complete view of client access issues with a clear path to solving them.
Prime Infrastructure licenses control the features that you can use and the number of devices you can manage using those features. For more information about:
Review the following topics before attempting to install Cisco Prime Infrastructure.
Prime Infrastructure is supplied as an appliance, which is a virtual machine (VM) that includes the application itself and a secured, hardened, 64-bit Red Hat Linux Enterprise Server operating system. The appliance comes in two main forms:
Users deploying the Prime Infrastructure virtual appliance can choose one of the four options shown in Table 1. The hardware that you supply must meet or exceed the specifications given in the “System Requirements” section of the table, under the option that you select.
Users deploying the Prime Infrastructure physical appliance can choose from the Gen 1 or Gen 2 options shown in Table 2. The The Gen 1 and Gen 2 physical appliance capacities match those of the virtual appliance Standard and Professional options, respectively.
All Prime Infrastructure users access the appliance from a client web browser. Web client requirements are:
– Google Chrome 34, 35, 36 or later
– Microsoft Internet Explorer 10, or 11 (No plug-ins are required.)
The Prime Infrastructure virtual appliance offers a “FIPS Mode” installation option. This option is intended for customers who require the products they use to be compliant with FIPS-140-2 standards.
Federal Information Processing Standards (FIPS) are United States government computer security standards. The FIPS-140-2 series specify requirements for cryptography modules. For a more complete description, see http://www.nist.gov/itl/fips.cfm .
To verify whether the Prime Infrastructure system is operating in FIPS mode, use the system CLI command show security-status. For more information, see Checking On Server Security Status in the Cisco Prime Infrastructure 2.2 Administrator Guide.
When deciding whether to install in FIPS Mode, be aware that:
This version of Prime Infrastructure does not offer an in-place upgrade. To upgrade to the latest version, you must instead install this version of Prime Infrastructure as a virtual appliance on a fresh server, or order it pre-installed on a fresh physical appliance. You can then migrate your data from your old Prime Infrastructure installation to the new one, using an application backup from the previous installation.
If you are currently using one of the following versions of Prime Infrastructure, you can back up your existing data and then restore that data to a different server running Prime Infrastructure 2.2:
If you are using a version earlier than 1.4.0.45 or 2.1.0.0.87, you will need to upgrade your server to version 2.1.0.0.87 (or version 1.4.0.45) before taking the backup.
If you are running multiple versions of Prime Infrastructure from which you want to migrate data, see If You Are Running Multiple Prime Infrastructure Versions.
Remember that backups can only be restored to a new Prime Infrastructure server that is the same size or bigger than your previous server. See FIPS Mode Installation Option.
To back up your data from a previous supported version of Prime Infrastructure, follow these steps:
Step 1 If you have not already done so: Set up a remote backup repository for the Prime Infrastructure version you are currently running. For details, see Using Remote Backup Repositories in the Cisco Prime Infrastructure 2.2 Administrator Guide.
Step 2 Take an application backup of the Prime Infrastructure version you are currently running, and store the backup in the remote repository. For details, see Taking Application Backups in the Cisco Prime Infrastructure 2.2 Administrator Guide.
Step 3 Verify the integrity of the backup as explained in Validating Your Backup.
If you are running multiple previous releases of Prime Infrastructure (for example, you are running version 1.4.x and version 2.1.x), you must select one version from which to restore data. You cannot restore data from more than one Prime Infrastructure version. To combine data from multiple Prime Infrastructure versions:
1. Perform the restore operation for one Prime Infrastructure system running a previous Prime Infrastructure version. See Migrating Data From Previous Releases of Prime Infrastructure.
2. Export your device inventory and maps from other Prime Infrastructure systems and import the information into the Prime Infrastructure 2.2 system.
You should check the validity of your Prime Infrastructure backup data by setting up an additional Prime Infrastructure server (either a spare Prime Infrastructure appliance or a new Prime Infrastructure virtual machine) and perform the restore operation as explained in Restoring From Application Backups in the Cisco Prime Infrastructure 2.2 Administrator Guide. If you do not have an additional Prime Infrastructure system to validate the backup, take at least two backups to reduce the risk of losing data.
If the restore operation does not work, or there are problems with the backed up image, try taking another backup from a production system, or try restoring from an earlier Prime Infrastructure backup.
If you cannot create a verified backup before installing this version of Prime Infrastructure, open a support case with Cisco TAC.
Follow the instructions in the Related Topics to install the Prime Infrastructure virtual appliance.
This Quick Start Guide covers the virtual appliance installation only. For information on installing the Prime Infrastructure physical appliance, see the Cisco Prime Infrastructure Appliance Hardware Installation Guide.
Before installing the Prime Infrastructure virtual appliance, you must ensure that:
See the VMware documentation on how to install the VMware vSphere Client. After the virtual host is available on the network, you can browse to its IP address to display a web-based interface from which you can install the VMware vSphere Client.
Make sure that all of the system requirements are met before you deploy the OVA. Review the sections Understanding System Requirements and Before You Begin Installation.
Step 1 Launch your VMware vSphere Client and connect to the ESXi host or vCenter server.
Step 2 Choose File > Deploy OVF Template.
Step 3 Click Browse to access the location where you have saved the OVA file on your local machine, then click Next.
Step 4 Verify the details on the OVF template details page, then click Next.
Step 5 In the End User License Agreement window, click Accept, then click Next.
Step 6 In the Name and Location window, specify:
Step 8 In the Deployment Configuration window, select the desired configuration (for example, Express, Standard, Professional, etc.) and view the resources required for the configuration you selected.
Note We recommend that you reserve 100% of CPU and memory resources for optimal performance.
Step 10 In the Host/Cluster window, select the host or cluster on which you want to deploy the OVF template, then click Next. (If the vSphere Client is connected directly to an ESXi host, this option does not appear.)
Step 11 In the Storage window, select the datastore that has the required space requirements described in Virtual Appliance Options, then click Next.
Step 12 In the Disk Format window, select Thick Provision Lazy Zeroed to provision the virtual machine virtual disks, then click Next. Do not select Thin Provision because if there is no free disk space when the virtual machine needs it, Prime Infrastructure will fail.
Step 13 In the Network Mapping window, select a network for the virtual machine to use, then click Next.
Step 14 In the Ready to Complete window, review your settings, select Power on After Deployment, then click Finish.
Depending on your network speed and the IOPS of the server, the deployment can take a few minutes to complete.
After you deploy the Prime Infrastructure OVA, you must configure the virtual appliance to install and start Prime Infrastructure.
Step 1 If the virtual machine is not already powered on, in the VMware vSphere Client, right-click the deployed virtual appliance and choose Power > Power On.
After the server boots up, you’ll see the localhost login prompt.
Step 3 At the localhost login prompt, enter setup.
Step 4 The console prompts you for the following parameters:
Tip Keep your Prime Infrastructure password in safe place. If you forget the password, see Recovering Administrator Passwords on Virtual Appliances in the Cisco Prime Infrastructure 2.2 Administrator Guide.
Step 5 When you are done entering these values, the installer application tests the network configuration parameters that you entered. If the tests are successful, it begins installing Prime Infrastructure.
Step 6 When the application installation is complete, you will be prompted for the following post-installation parameters:
Step 7 Select Yes to proceed with the installation, or select No to re-enter high availability and FIPS mode options.
Step 8 When the installation is complete, the appliance reboots and you are presented with a login prompt.
Step 9 Log in to the virtual machine using the “admin” username and password that you specified in Step 4.
Step 10 Run the ncs status command (see Checking Prime Infrastructure Server Status in the Cisco Prime Infrastructure 2.2 Administrator Guide) to verify that the processes have restarted. You should see the following process statuses:
Follow the instructions in the topics belows once you have finished installing Prime Infrastructure.
To restore your data from Prime Infrastructure 1.4.x or 2.1.x to your newly installed Prime Infrastructure 2.2 server, follow these steps:
Note If you are running multiple previous releases of Prime Infrastructure (for example, you are running version 1.4.x and version 2.1.x), you must select one version from which to restore data. You cannot restore data from more than one Prime Infrastructure version. See If You Are Running Multiple Prime Infrastructure Versions.
Step 1 Configure the new Prime Infrastructure host to use the same remote backup repository as the old host. For details, see Using Remote Backup Repositories in the Cisco Prime Infrastructure 2.2 Administrator Guide.
Step 2 Restore the application backup on the remote repository to the new host, as explained in Restoring From Application Backups in the Cisco Prime Infrastructure 2.2 Administrator Guide.
Step 3 When the process is complete:
Step 4 After the new Prime Infrastructure 2.2 server is operational, decommission your previous server.
After restoring Prime Infrastructure 1.4.x data on a new Prime Infrastructure 2.2 virtual or physical appliance, you need to rehost your Assurance license only. All other licenses are automatically applied to the new server. For new license requests, email licensing@cisco.com.
When you move your data to Prime Infrastructure 2.2, the following Assurance data is not migrated:
Aggregated data is migrated depending on from which version of Prime Infrastructure the data is backed up and then restored:
After you restore the backup of the previous version on the 2.2 version of Prime Infrastructure, your server’s records of Cisco Wireless LAN Controller configurations might be out of sync with the configurations stored on those devices. Resynchronize them using the following steps before continuing.
Step 1 Log in to Prime Infrastructure.
Step 2 Choose Inventory > Network Devices > Wireless Controller. Prime Infrastructure displays a list of all the controllers it is managing, including all Cisco WLCs.
Step 3 Select Refresh Config from Controller, then select Use the configuration on the controller currently, then click Go.
When the process completes, you should see a Refresh Configuration Report with a “Success” status value.
If the refresh process fails, click Audit Now to see any attribute mismatches.
Step 4 Repeat steps 3 and 4 for all your other WLCs.
Follow these steps to log in to the Prime Infrastructure user interface through a web browser:
Step 1 Launch one of the Supported Browsers (see Web Client Requirements) on a different computer from the one on which you installed and started Prime Infrastructure.
Step 2 In the browser’s address line, enter https: //ipaddress , where ipaddress is the IP address of the server on which you installed Prime Infrastructure. The Prime Infrastructure user interface displays the Login window.
When you access Prime Infrastructure for the first time, some browsers will display a warning that the site is untrusted. When this happens, follow the prompts to add a security exception and download the self-signed certificate from the Prime Infrastructure server. After you complete this procedure, the browser will accept the Prime Infrastructure server as a trusted site in all future login attempts.
Step 3 Enter the root administrator username and password, as specified when Installing the Server.
Step 4 Click Login to log in to Prime Infrastructure. The user interface is now active and available for use. The home page appears.
If any licensing problems occur, a message appears in an alert box. If you have an evaluation license, the number of days until the license expires is shown. You are also alerted to any expired licenses. You have the option to go directly to the Administration > Licenses page to address these problems.
Step 5 To ensure system security, choose Administration > Users, Roles & AAA > Change Password to change the password for the root administrator.
To exit the user interface, close the browser page or click Logout in the top-right corner of the page. Exiting a Prime Infrastructure user interface session does not shut down Prime Infrastructure on the server.
If a system administrator stops the Prime Infrastructure server during your Prime Infrastructure session, your session ends, and the browser displays this message: “The page cannot be displayed.” Your session does not re-associate to Prime Infrastructure when the server restarts. You must start a new Prime Infrastructure session.
After you install Prime Infrastructure, you must perform additional tasks to begin managing your network. If you are an administrator, see the following sections in the Administrator Setup Tasks in the Cisco Prime Infrastructure 2.2 Administrator Guide:
For information about installing the Cisco Plug and Play Application, see the Cisco Plug and Play Application User Guide.
Users should complete the tasks listed in the “Getting Started” chapter of the Cisco Prime Infrastructure 2.2 User Guide . After you complete these tasks, you are ready to start monitoring and configuring your network.
The following topics provide reference information about Prime Infrastructure and its support options.
Table 3 lists the ports used by Prime Infrastructure and Assurance. These ports must be open in firewalls if you are using these services.
To initiate SSH connection to endpoints during troubleshooting processes |
|||
Browser access to Prime Infrastructure via HTTPS (enabled by default). This port is also used to check for software updates between the Prime Infrastructure server and cisco.com. |
|||
To configure high availability database connection between the primary and secondary Prime Infrastructure |
|||
Authenticate Prime Infrastructure users via RADIUS Remote Access Server |
|||
9991 1 |
|||
Range of ports used for passive FTP file transfers (controller backups, device configurations, report retrieval, and so on) |
|||
110116 |
|||
616177 |
Removing Prime Infrastructure using the following method will permanently delete all data on the server, including server settings and local backups. You will be unable to restore your data unless you have a remote backup. For other methods of removal, see Removing Prime Infrastructure in the Cisco Prime Infrastructure 2.2 Administrator Guide.
Step 1 In the VMware vSphere client, right-click the Prime Infrastructure virtual appliance.
Step 2 Power off the virtual appliance.
Step 3 Click Delete from Disk to remove the Prime Infrastructure virtual appliance.
This section provides information about navigational paths to access Prime Infrastructure features, and the details of the sections where the features are covered in the Cisco Prime Infrastructure 2.2 User Guide.
The Cisco Prime Infrastructure 2.2 Documentation Overview lists all documentation available for Prime Infrastructure:
Note We sometimes update the documentation after original publication. Therefore, you should also review the documentation on Cisco.com for any updates.
For information on obtaining documentation, submitting a service request, and gathering additional information, see the monthly What’s New in Cisco Product Documentation, which also lists all new and revised Cisco technical documentation, at:
http://www.cisco.com/en/US/docs/general/whatsnew/whatsnew.html
Subscribe to the What’s New in Cisco Product Documentation as an RSS feed and set content to be delivered directly to your desktop using a reader application. The RSS feeds are a free service. Cisco currently supports RSS Version 2.0.