Home
Support
Product Support
Routers
Cisco SD-WAN
End-User Guides

Cisco Catalyst SD-WAN Control Components and Device Management Guide, Releases 26.x and Later

View all Saved Content

PDF

Is this content helpful?

Helpful Unhelpful

Suggestions for Improvement

Thank you for your feedback. Your response has been recorded.

Ask about this content

Cisco Catalyst SD-WAN Control Components and Device Management Guide, Releases 26.x and Later

Expand all sections

About this content

System Logging

Feature history: System logging
System logging
Configure system logging
Create a certificate signing request and install feature certificates
Viewing system log information
Verifying the trustpoint configuration on a device
Remote logging over TCP and TLS

Device Tagging

Feature history: Device tagging
Device tagging
Add device tags
Delete device tags

Configure Devices

Feature history for configure devices
Configure devices in Cisco Catalyst SD-WAN
Configure and manage device templates
Configuration prerequisites
Device configuration workflow
Configure and manage devices using SD-WAN Manager

Basic Settings for Cisco SD-WAN Manager

Basic system settings
Enforce a software version on devices
Configuring a login page banner
Configuring device basic settings
Configuring global system settings
Configuring NTP servers
Configuring a router as an NTP primary
Configure device time using CLI commands
Configuring GPS
Configuring automatic bandwidth detection
Proxy server for SD-WAN Manager HTTP and HTTPS traffic with external servers
Rate limit for bulk API requests
Configure device statistics collection
Configure the time interval for collecting device statistics
Configure the SD-WAN Manager server maintenance window
Configure system logging using CLI commands
Connect to a device by SSH terminal
View the rate limit for bulk API requests
Monitor NAT DIA endpoint trackers

Control component settings on Cisco SD-WAN manager

Feature history for Cisco SD-WAN Control Components settings on Cisco SD-WAN Manager
Cisco SD-WAN Control Components settings on Cisco SD-WAN Manager
Configure device specific control component network settings

Reverse Proxy

Feature history for reverse proxy
Reverse proxy
Provision certificates on the reverse proxy
Configure the reverse proxy settings
Configure reverse proxy settings on Cisco SD-WAN Controllers
Disable the reverse proxy
Monitor reverse proxy using the CLI

Wireless Management

Feature history for wireless management
Wireless management on ISR 1000 series routers
Configuring wireless management
Monitor wireless configuration on Cisco ISR 1000 series routers
Troubleshooting wireless configuration on Cisco ISR 1000 series routers

Cellular Gateway

Feature history for Cellular Gateway configuration
Cellular gateways
Configuring cellular gateways

CLI Templates for Cisco IOS XE Catalyst SD-WAN Devices

Feature history: CLI templates
CLI templates for Cisco IOS XE Catalyst SD-WAN devices
Using CLI templates in Cisco SD-WAN Manager
Sample configurations for CLI templates

CLI Add-On Feature Templates

Feature history for CLI add-on feature templates
CLI add-on feature templates
Create a CLI add-on feature template
Qualified CLI commands for CLI add-on feature templates

Cisco SD-AVC

Feature history for Cisco SD-AVC
Cisco SD-AVC
Installing and enabling Cisco SD-AVC, Releases 20.3.1 and later
Enable Cisco SD-AVC on Cisco vManage Release 20.3.1 through SD-WAN Manager 20.16.x
Enable Cisco SD-AVC on Cisco IOS XE Catalyst SD-WAN Devices

SD-AVC Cloud Connector

Feature history for Cisco SD-AVC Cloud Connector
Enabling Cisco SD-AVC Cloud Connector
Enable Cloud Services

Cisco SD-WAN Manager Data Storage

Cisco SD-WAN Manager data storage
Configure Cisco SD-WAN Manager data storage
Viewing Cisco SD-WAN Manager data storage information

Cellular gateways

Updated: June 9, 2026

Want to summarize with AI?

On this page

Secure communication with devices through a vmanage-admin account

Supported Cellular Gateway devices

Describes the role of a cellular gateway in bridging cellular WAN connectivity to enterprise LANs and enabling secure remote management.

A cellular gateway is a network device that

provides wireless connectivity to a wide area network (WAN),
functions as a bridge between cellular networks and enterprise LANs, and
supports secure remote management and monitoring.

Secure communication with devices through a vmanage-admin account

SD-WAN Manager communicates with devices, such as Cisco Catalyst Cellular Gateways, using a secure channel—either a datagram transport layer security (DTLS) tunnel or transport layer security (TLS) tunnel. Within this secure channel, it communicates with the devices or controllers using the NETCONF protocol, within an SSH session. It uses an internal-use-only passwordless "vmanage-admin" user account on the device or controller. The vmanage-admin account is created during the initial device setup. Cisco SD-WAN Manager uses this secure channel for monitoring, configuring, and managing devices.

As noted, the vmanage-admin user accounts do not have any password associated with them, so SD-WAN Manager uses a passwordless procedure to log in to the account. To accomplish this, SD-WAN Manager generates an asymmetric encryption public-private key pair. During deployment of a device, SD-WAN Manager copies the public key that it has generated to the device. It sends the public key using a proprietary protocol, within a secure channel—a DTLS or TLS tunnel.

The activity that SD-WAN Manager performs using the vmanage-admin account appears in syslog messages and in the output of certain show commands. The syslog messages are logged with the same level of detail as activities performed through any other user account. The level of syslog detail depends on the syslog configuration of the device.

Note

SD-WAN Manager requires the vmanage-admin account on devices in order to monitor, configure, and manage the devices. Removing, disabling, or altering this account on a device would prevent Cisco SD-WAN Manager from performing these activities, and is not supported.

Supported Cellular Gateway devices

This sections provides information about the supported Cisco Catalyst Cellular Gateway models.

CG418-E
CG522-E

Need help?

Open a support case

(Requires a Cisco Service Contract)

Bias-free language

The documentation set for this product strives to use bias-free language. For the purposes of this documentation set, bias-free is defined as language that does not imply discrimination based on age, disability, gender, racial identity, ethnic identity, sexual orientation, socioeconomic status, and intersectionality. Exceptions may be present in the documentation due to language that is hardcoded in the user interfaces of the product software, language used based on RFP documentation, or language that is used by a referenced third-party product. Learn more about how Cisco is using Inclusive Language.