-
- Monitoring Devices
- Monitoring Wireless Devices
- Creating Monitoring Policies and Thresholds
- Monitoring Alarms
- Monitoring Clients and Users
- Performance Routing Version 3 Based Network Monitoring
- Monitoring Wireless Technologies
- Using Monitoring Tools
- Viewing Performance Graphs
- Troubleshooting
- Monitoring Multiple Prime Infrastructure Instances
-
- Configuring and Monitoring IWAN
- Using Converged Access Workflow
- Configuring Application Visibility and Control
- Ensuring Consistent Application Experiences
- Troubleshooting Applications
- Monitoring Microsoft Lync Traffic
- Using Mediatrace
- Cisco Mobility Services Engine and Services
- Configuring the Cisco AppNav Solution
- Configuring WAAS Container
- Working with Wireless Mobility
- System Time Zones
Cisco Prime Infrastructure 3.0 User Guide
Bias-Free Language
The documentation set for this product strives to use bias-free language. For the purposes of this documentation set, bias-free is defined as language that does not imply discrimination based on age, disability, gender, racial identity, ethnic identity, sexual orientation, socioeconomic status, and intersectionality. Exceptions may be present in the documentation due to language that is hardcoded in the user interfaces of the product software, language used based on RFP documentation, or language that is used by a referenced third-party product. Learn more about how Cisco is using Inclusive Language.
- Updated:
- July 30, 2018
Chapter: Working with Device Configurations
- Configuration Archives
- Changing Prime Infrastructure Device Configuration Settings
- Changing Prime Infrastructure Configuration Archive Collection Settings
- Comparing Current and Previous Device Configurations
- Scheduling Configuration Archive Tasks
- Overview of Device Configurations
- Configuration Rollbacks
- Rolling Back Device Configuration Versions
- Deleting Device Configurations
Working with Device Configurations
Cisco Prime Infrastructure archives device configurations and provides information such as the date of last configuration change, status of the configuration jobs, and allows you to compare current and previous configurations. Prime Infrastructure also allows you to roll back to a previously saved configuration in the archive if a configuration deployment fails.
- Configuration Archives
- Changing Prime Infrastructure Device Configuration Settings
- Comparing Current and Previous Device Configurations
- Scheduling Configuration Archive Tasks
- Overview of Device Configurations
- Configuration Rollbacks
- Rolling Back Device Configuration Versions
- Deleting Device Configurations
Configuration Archives
Prime Infrastructure attempts to collect and archive the following device configuration files:
A configuration archive is created if there is a change between the last archived configuration and the current running configuration only. You can specify how Prime Infrastructure archives the configurations:
- On demand—You can have Prime Infrastructure collect the configurations of selected devices by choosing Inventory > Configuration Archive and selecting the option to schedule the archive immediately.
- Scheduled—You can schedule when Prime Infrastructure collects the configurations of selected devices and specify recurring collections by choosing Inventory > Device Configuration Archive, then clicking Schedule Archive .
You can schedule to have Prime Infrastructure copy the running configuration to the startup configuration by choosing Inventory > Device Configuration Archive, then clicking Schedule Overwrite .
- During inventory—You can have Prime Infrastructure collect device configurations during the inventory collection process. See Changing Prime Infrastructure Device Configuration Settings for more information.
- Based on Syslogs— If device is configured to send syslogs, when there is any device configuration change, Prime Infrastructure collects and stores the configuration.
When you execute a configuration archive on VTP-enabled Nexus devices, the VLAN database is not archived. The Fetch VLAN field displays Unsupported operation , and the vlan.dat file is not uploaded to the Prime Infrastructure server.
Changing Prime Infrastructure Device Configuration Settings
By default, Prime Infrastructure has the following configuration settings:
- Does not back up the running configuration before pushing configuration changes to a device.
- Does not attempt to roll back to the previously saved configuration in the archive if the configuration deployment fails
- When pushing CLI to a device, uses 5 thread pools.
To change the default configuration settings:
Step 1 Choose Administration > Settings > System Settings , then click Configuration .
- Click Backup Running Configuration to have Prime Infrastructure back up the running configuration before pushing configuration changes to a device.
- Click Rollback Configuration to have Prime Infrastructure attempt to roll back to the previously saved configuration in the archive if the configuration deployment fails.
Changing Prime Infrastructure Configuration Archive Collection Settings
By default, Prime Infrastructure has the following Configuration Archive collection settings:
- Collects device configuration after Inventory Sync.
- Does not collect device configuration based on syslog events.
To change the default configuration settings:
Step 1 Choose Administration > Settings > System Settings , then click Configuration Archive .
Step 2 Select the Archive Configuration on receiving configuration change events check box so that Prime Infrastructure can collect and store the configuration based on syslog configuration change events. For more information about the supported Syslog formats, see Supported Syslog Formats for Configuration Archive Collection Settings.
Note This feature is not supported for WLC, because WLC does not send any syslog message for configuration changes.
Supported Syslog Formats for Configuration Archive Collection Settings
The following are the supported Syslog formats. Prime Infrastructure collects the configuration details if the device syslog matches any one of the following conditions:
-
Message Type is any one of the following:
OIR-6-INSCARD, SNMP-5-COLDSTART, SYS-5-RELOAD, CPU_REDUN-6-BOOTED_AS_ACTIVE, CPU_REDUN-5-SWITCHOVER, SYS-5-ONLINE, OIR-6-INSCARD, CPU_REDUN-6-RUNNING_CONFIG_CHG, CPU_REDUN-5-RCSF_SYNCED, CPU_REDUN-6-STARTUP_CONFIG_CHG, CPU_REDUN-5-STARTUP_CONFIG_SYNCED, PIX-5-111005, SYS-5-CONFIG_L, SYS-5-CONFIG_M, SYS-5-CONFIG_NV, SYS-5-CONFIG_NV_M, SYS-6-CFG_CH, SYS-3-CPUHOG, IP-4-DUPADDR, FW-3-FTP_SESSION_NOT_AUTHENTICATED, FW-3-FTP_PRIV_PORT, FW-3-SMTP_INVALID_COMMAND, FW-3-HTTP_JAVA_BLOCK, FW-4-ALERT_ON, FW-4-ALERT_OFF, FW-4-HOST_TCP_ALERT_ONLOG_WARNING, FW-4-UNBLOCK_HOST, FW-2-BLOCK_HOST,SYS-2-MALLOCFAIL, LINK-3-UPDOWN, FW-6-SESS_AUDIT_TRAIL, PIX-6-302001, PIX-6-302002, PIX-6-304001, LINEPROTO-5-UPDOWN, LINK-5-CHANGED, LINK-5-UPDOWN, CHAS-0-FATAL, CHAS-3-ERROR, CHAS-4-WARN, SNMP-5-CONF, PORT-5-CONF, CHAS-5-CONF, DIAG-5-CONF, RTT-6-SAATHRESHOLD, ILPOWER-3-SHUT_OVERDRAWN, ILPOWER-4-LOG_OVERDRAWN -
FACILITY is any one of the following:
RESTART, CONFIG,ENV, ENVM, FLASH, HA_EM, AUTOSMARTPORT,SMI -
MNEMONIC is any one of the following:
RESTART, CONFIG_I, CONFIG, OIR, PSECURE_VIOLATION, PSECURE_VIOLATION_VLAN, VLAN_REMOVED, ADDRESSES_REMOVED, VLAN_FULL, DHCP_SNOOPING_ERRDISABLE_WARNING, DHCP_SNOOPING_RATE_LIMIT_EXCEEDED, DHCP_SNOOPING_UNTRUSTED_PORT, DHCP_SNOOPING_MATCH_MAC_FAIL, INVALID_ARP, ACL_DENY, DHCP_SNOOPING_DENY, ACL_PERMIT,DHCP_SNOOPING_PERMIT, PACKET_RATE_EXCEEDED, PACKET_BURST_RATE_EXCEEDED, IP_SOURCE_GUARD_DENY_PACKET - Message Type is Nodemgr-5-CE and message text contains 'REBOOT'.
- Message Type is SYS-6-CFG_CHG and message text contains 'telnet', 'Console', 'SNMP', or 'ssh'.
- FACILITY is ACE and MNEMONIC is 111008.
- FACILITY is FWSM and MNEMONIC is 111008 and Message text contains 'configure terminal'.
- FACILITY is ASA and MNEMONIC is 111010.
-
FACILITY is PIX and MNEMONIC is either one of the following:
106010, 307001, 106001, 106006, 106002, 106003, 106004, 106005, 106008, 106009, 106011, 106012. - FACILITY ends with DIAG.
- FACILITY is VSHD and MNEMONIC is VSHD_SYSLOG_CONFIG_I.
Comparing Current and Previous Device Configurations
To compare a current device configuration with a previous version:
Step 1 Choose Inventory > Configuration Archive.
Step 2 Click the expand icon for the device whose configuration you want to view. Then click the expand icon again to view the specific configuration version that you want to compare.
Step 3 In the Compare With column, choose the configuration for which you want to compare the configuration that you selected in the previous step.
The color key at the bottom of the report shows the differences between the configurations you selected.
Scheduling Configuration Archive Tasks
When you choose Inventory > Device Management > Network Devices , click on a device name, then click the Configuration Archive tab, Prime Infrastructure allows you to schedule the following configuration archive tasks:
- Schedule Rollback—Specify when to roll back the running configuration, startup configuration, or both configurations.
- Schedule Overwrite—Specify when to copy the running configuration to the startup configuration.
- Schedule Archive—Specify when to archive the configuration.
- Schedule Deploy—You can schedule when to deploy the configuration and also specify to:
– Overwrite the startup configuration. This option is applicable for devices that have a startup configuration only.
Overview of Device Configurations
You can change a device’s configuration in two ways:
- Inventory > Device Management > Network Devices —To change the configuration of a single device. See Changing a Single Device Configuration.
- Configuration > Templates —To change the configuration of more than one device and apply a common set of changes, use a configuration template to make the changes.
Prime Infrastructure provides the following default configuration templates:
– CLI templates—CLI templates are user-defined and created based on your own parameters. CLI templates allow you to select the elements in the configurations. Prime Infrastructure provides variables which you replace with actual values and logic statements. You can also import templates from Cisco Prime LAN Management System. See Creating CLI Templates.
– Feature and technology templates—Feature templates are configurations that are specific to a feature or technology in a device’s configuration. See Creating Features and Technologies Templates.
– Composite templates—Composite templates are two or more feature or CLI templates grouped together into one template. You specify the order in which the templates contained in the composite template are deployed to devices. See Creating Composite Templates.
Changing a Single Device Configuration
Step 1 Choose Inventory > Device Management > Network Devices , then click a device name.
The device details appear in the lower part of the page.
Step 2 Click the Configuration tab.
The Feature Selector displays the values, organized into features, for the device that you selected.
Step 3 Select the feature that you want to change, then make the necessary changes.
Step 4 Click Save to save your configuration changes in the Prime Infrastructure database. (To view the status of the configuration change, choose Administration > Jobs .)
Adding a Wireless LAN Controller
The Cisco Unified Wireless Network (CUWN) solution is based on Wireless LAN Controllers running Airespace Operating System. The wireless LAN controller models include 2100, 2500, 4400, WiSM/WiSM2 (6500 service module), 5500, 7500, 8500. In this solution, access points tunnel the wireless traffic to the controllers through CAPWAP.
The Cisco Unified Access (UA) Wireless Solution is new architecture that provides a converged model where you can manage your wired and wireless network configurations in the same place. This solution includes the 3850 series switch with integrated wireless support. The solution also includes the 5760 series wireless controller, which can act as an aggregation point for many 3850 switches. This platform is based on IOS-XE, so the command structure is similar to other IOS products. In this solution, the wireless traffic can terminate directly on the 3850 switch, so that it can be treated in a similar mode to a wired connection on the switch.
Step 1 Choose Inventory > Device Management > Network Devices .
Step 2 Click Add Device . The Add Device page appears.
Step 3 In the Add Device page, enter the necessary parameters.
Changing Wireless LAN Controller Configuration Settings
Step 1 Choose Inventory > Device Management > Network Devices .
Step 2 Expand Device Type, and then click Wireless Controller .
Step 3 Select the controller that you want to change. The Network Devices page contains configuration functions at the bottom of the page. For details, see Monitoring Network Devices.
Step 4 Click the Configure tab, then make the necessary changes.
Rebooting Controllers
Step 1 Choose Inventory > Device Management > Network Devices .
Step 2 Expand Device Type, and then click Wireless Controller .
Step 3 Select the check box(es) of the applicable controller(s).
Step 4 From the Reboot drop-down list, choose Reboot Controllers .
Note Save the current controller configuration prior to rebooting.
Step 5 Select the Reboot Controller options that must be applied.
- Save Config to Flash—Data is saved to the controller in non-volatile RAM (NVRAM) and is preserved in the event of a power cycle. If the controller is rebooted, all applied changes are lost unless the configuration has been saved.
- Reboot APs—Select the check box to enable a reboot of the access point after making any other updates.
- Swap AP Image—Indicates whether or not to reboot controllers and APs by swapping AP images. This could be either Yes or No.
Note Options are disabled unless the Reboot APs check box is selected.
Step 6 Click OK to reboot the controller with the optional configuration selected.
Configuration Rollbacks
You can change the configuration on a device with a configuration stored in Prime Infrastructure. You can select a single archived version to which you want to “rollback.”
During the configuration rollback process, the configuration is converted into a set of commands which are them executed sequentially on the device.
When rolling back a configuration file you can specify the following options:
- The type of configuration file to which to rollback, for example running or startup configuration
- Whether to sync the running and startup configurations after rolling back the running configuration
- If rolling back a startup configuration only, specify to reboot the device so that startup configuration becomes the running configuration
- Before rolling back the configuration, specify whether to create new archived versions. You can also specify whether to continue the rollback if the archived configuration fails.
Rolling Back Device Configuration Versions
You can use Prime Infrastructure to rollback a device’s configuration to a previous version of the configuration.
To roll back a configuration change.
Step 1 Choose Inventory > Configuration Archive .
Step 2 Click the expand icon for the device whose configuration you want to roll back.
Step 3 Click the specific configuration version that you want to roll back, then click Schedule Rollback .
Step 4 Specify the rollback and scheduling options.
Deleting Device Configurations
By default, Prime Infrastructure archives up to five device configuration versions for each device for seven days after:
You cannot delete configuration versions, but older configuration versions are replaced by newer configuration versions.
To change the number of configurations that Prime Infrastructure retains:
Step 1 Choose Administration > Settings > System Settings , then click Configuration Archive .
Step 2 Enter a new value in the Number of Versions field. To archive an unlimited number of configuration versions, unselect the Number of version to retain and Number of days to retain check boxes.
Feedback