Have an account?

  •   Personalized content
  •   Your products and support

Need an account?

Create an account
Cisco DNA Software Subscription Matrix for Switching
Network Essentials Network Advantage Cisco DNA Essentials Cisco DNA Advantage Cisco DNA Premier
License type Perpetual license, one-time purchase License type Perpetual license, one-time purchase 3/5/7 year term subscription Includes Cisco DNA Essentials, 3/5/7 year term subscription Includes Cisco DNA Advantage, 3/5/7 year term subscription
Management options Manual, WebUI Manual, WebUI Automation through Cisco DNA Center including Manual, WebUI Automation through Cisco DNA Center including Manual, WebUI Automation through Cisco DNA Center including Manual, WebUI
Network Essentials
License type Perpetual license, one-time purchase
Management options Manual, WebUI
Network Advantage
License type Perpetual license, one-time purchase
Management options Manual, WebUI
Cisco DNA Essentials
License type 3/5/7 year term subscription
Management options Automation through Cisco DNA Center including Manual, WebUI
Cisco DNA Advantage
License type Includes Cisco DNA Essentials, 3/5/7 year term subscription
Management options Automation through Cisco DNA Center including Manual, WebUI
Cisco DNA Premier
License type Includes Cisco DNA Advantage, 3/5/7 year term subscription
Management options Automation through Cisco DNA Center including Manual, WebUI
Features < >
Features < >
Support
* - not supported on all platforms.

With the help of Cisco DNA Assurance, we are able to reduce the time to troubleshoot. We now have a lot of data which we can reuse and model to improve the student quality while they are on-site utilizing our infrastructure.

– Robin Mok, Senior Communications Engineer, University of Wollongong

Read full story

Cisco DNA Center helps me find problems pro-actively, before users contact me. With a mostly wireless network, I’m able to find devices throughout the network and quickly solve any problems with the help of analytics.

– Manuel Ortiz III, Senior Wireless Engineer, Houston Methodist Hospital

See how

Can a network improve your bottom line?

Use our Cisco DNA ROI Calculator to see how much your organization could save with a software-defined network.

Start saving

The new Cisco Catalyst 9000 switches deliver outstanding performance, advanced security, and state-of-the-art high availability features. These switches enable us to keep patients’ data always secure and respond to emergency situations immediately without worrying about network issues.


– Ed Vanderpool, Senior Enterprise Network Engineer, Adventist Health

Our network is the core foundation driving the next-generation learning experience. With automated granular segmentation and RBAC (Role-Based Access Control) across multiple departments, we greatly improve service delivery, network security, and the user experience.


– Trevor Long, Associate Director of Network for UIT, University of Utah

The new Cisco Catalyst 9300 provides us the performance we need and the security features that are critical for our healthcare records. The new network, powered by Cisco Digital Network Architecture (Cisco DNA), gives us granular insight into who the users are, the devices they use, and the applications they access.


– Michel Fontaine, Network Architect, Centre Hospitalier Chre’tien (CHC), Belgium

At American University of Beirut, we encourage collaboration and offer access to exponential resources. With Catalyst 9000 switches, our network is poised to deliver automated, secure, and personalized learning experiences to students, faculty, and visitors.


– Mohammad Abbas, Director of IT Infrastructure, American University of Beirut

The more intuitive we can make troubleshooting for the team, the sooner we can take the network out of the equation.


– Nicholas Yurkovich, Chief Network Engineer, Scotiabank

The Catalyst 9000 has exceeded NASA’s mission-critical requirements for security and segmentation...and at twice the performance.


– Eric Latta, Solutions Architect, NASA

Cisco DNA Center is a great idea packed with a lots of potential. Cisco is moving in the right direction!


– Drew Norris, Senior Network Engineer, Stanford University

SD-Access is transformational in how our IT can securely and remotely provision cruise ships around the world.


– Michael Giresi, Chief Information Officer, Royal Caribbean Cruises Ltd.

WWT is always looking to what’s next, both in market trends and technology innovation. Being a longtime Cisco Certified Gold Partner, we have come to expect that Cisco will lean into what we see as a shared approach to helping customers make the transition toward digital transformation. The innovations Cisco has been pioneering recently—bringing higher 25 G densities to the enterprise while focusing on minimizing disruption—has been truly impressive. With backward compatibility and the ability to use existing fiber cabling at essentially the same price points as 10 G, Cisco Catalyst 9000 switches are making the transition to 25 G almost a no-brainer.


– Bill Thompson, Practice Manager, Mobility and Access Development, World Wide Technology (WWT)

Layer 2, routed access, OSPF, PBR, PIM Stub Multicast, PVLAN, VRRP, PBR, Cisco Discovery Protocol, QoS, FHS, 802.1X, MACsec-128, CoPP, SXP, IP SLA responder, SSO, Stackwise (9300/9200).

L3 Routed access (RIP, EIGRP Stub, OSPF (1000 routes)).

Model-driven programmability lets you automate configuration and control of your network devices with programmable interfaces.

Configure 128-bit MACSEC for authenticating and encrypting packets between MACsec-capable devices.

Manual/CLI or WebUI configuration of SPAN, RSPAN for providing near real-time access to operational statistics. No automation through Cisco DNA Center.

Model-driven telemetry lets you monitor your network by streaming data from network devices, continuously providing near-real-time access to operational statistics.

Help ensure hardware and software authenticity for supply chain trust and strong mitigation against man-in-the-middle attacks that compromise software and firmware.

Manually manage software upgrades and control the consistency of image versions through CLI or WebUI. Automation through Cisco DNA Center not supported.

BGP, OSPF, IS-IS.

VRF, VXLAN, LISP, SGT, MPLS*, BGP-EVPN with VXLAN*.

Support operational continuity and maintain availability during routine maintenance, and perform disaster recovery. NSF, GIR, HSRP, Stackwise Virtual*, ISSU/eFSU.

Manual/CLI operations or through WebUI only. Automation through Cisco DNA Center not supported.

Multicast is used between routers so they can track which multicast packets to forward to each other and to their directly connected LANs. RP Discovery, PIM BI-DIR.

Configure 256-bit MACSEC for authenticating and encrypting packets between MACsec-capable devices.

Software services-enabled license portability lets your software licenses stay current through hardware upgrades and replacements at no additional cost.

This next generation in flow technology optimizes the network infrastructure, reducing operating costs and improving capacity planning and security incident detection. (License is required for Manual/CLI, WebUI or automated Cisco DNA Center configuration).

Automate software upgrades and control the consistency of image versions through Cisco DNA Center.

Automate configurations and deployment of networks with Cisco DNA Center.

Gives a high-level overview of the health of every network device/client on the network, wired and wireless, Cisco and Meraki, managed by Cisco DNA Center.

Gives a high-level overview of the health of wired network devices/clients on the network, managed by Cisco DNA Center.

Zero-touch provisioning for new device installation of Cisco devices to be provisioned simply by connecting to the network, managed by Cisco DNA Center.

This software-defined, controller-less solution enables Bonjour services discovery and advertisement at for local cache discovery and distribution functions between VLANs. License is required for both manual/CLI configuration or automation through Cisco DNA Center.

Supports intent-based workflows for simplified wireless deployment and automation, managed by Cisco DNA Center appliance.

Create policies based on business intent for a particular part of the network that are network- and device-specific, adjusted dynamically to guarantee services, managed by Cisco DNA Center.

Gives a high-level overview of the health of every network device/client on the network, wired and wireless, Cisco and Meraki, managed by Cisco DNA Center.

Provides operational status of every network device connected to Cisco DNA Center, with suggested remediation for any communication issues, managed by Cisco DNA Center.

Displays operational status of every client connected to Cisco DNA Center, with suggested remediation for any issues, managed by Cisco DNA Center.

Displays overall health of all applications on the network, with special section for business-relevant application issues and suggested remediation, managed by Cisco DNA Center.

Enables network devices to send near-real-time telemetry information to Cisco DNA Center.

Zero-touch provisioning for new device installation allows off-the-shelf Cisco devices to be provisioned simply by connecting to the network, managed by Cisco DNA Center.

Enables policy-based automation with secure segmentation, complete visibility, and delivery of new services quickly on SD-Access devices, managed by Cisco DNA Center only.

Automated management of SMU/Patches patching by Cisco DNA Center.

Compliance, and detailed Network Reports, managed by Cisco DNA Center.

Display devices and client connectivity from any angle or context, providing for very granular troubleshooting in seconds.

Fabric technology is an integral part of SD-Access. Fabric-enabled wireless is a deployment option, managed by Cisco DNA Center only.

Assign policies to applications based on business relevance and business-critical QoS priority for life-saving devices, for example through Cisco DNA Center.

Allows third-party applications to be hosted in a secure container environment on the switch. License is required for both manual/CLI configuration or automation through Cisco DNA Center.

Detect malware within encrypted traffic. License is required for both manual/CLI configuration or automation through Cisco NA Center.

This software-defined, controller-based solution enables Bonjour services discovery and advertisement at scale across multiple domains. License is required for both manual/CLI configuration or automation through Cisco DNA Center.

Monitor and re-direct traffic. License is required for both manual/CLI configuration or automation through Cisco DNA Center.

Packet capture for analysis. License is required for both manual/CLI configuration or automation through Cisco DNA Center.

Gain application visibility and control through Next-Generation Network-Based Application Recognition. License is required for both manual/CLI configuration or automation through Cisco DNA Center.

Provides a single integrated solution for comprehensive lifecycle management of the wired or wireless access, campus, and branch networks, and rich visibility into end-user connectivity and application performance assurance issues. Only available on the Catalyst 9000 switches, not on legacy switches.

Packet capture for analysis. License is required for both manual/CLI configuration or automation through Cisco DNA Center.

Gain application visibility and control through Next-Generation Network-Based Application Recognition. License is required for both manual/CLI configuration or automation through Cisco DNA Center.

Provides a single integrated solution for comprehensive lifecycle management of the wired or wireless access, campus, and branch networks, and rich visibility into end-user connectivity and application performance assurance issues.

Gain application visibility and control through Next-Generation Network-Based Application Recognition. Does not require Cisco DNA Center. Not supported on Cisco Catalyst 9200 Series switches.

Encrypted Traffic Analytics detects malware within encrypted traffic. Manufacturer user description validates the IoT device, extends trust, and applies policy to the device. Does not require Cisco DNA Center. Not supported on Cisco Catalyst 9200 Series switches.

Gain complete security and threat containment, managed by Cisco DNA Center.

Detect malware within encrypted traffic. License is required for both manual/CLI configuration or automation through Cisco DNA Center. Includes Stealthwatch Flow Rate License, Virtual Stealthwatch Management Console, and Virtual Flow Collectors.

Enables policy-based automation with secure segmentation, complete visibility, and delivery of new services quickly on SD-Access devices, managed by Cisco DNA Center only.

90 days of Cisco TAC support; local business hours, 8x5; Hardware replacement (next business day where available); Warranty duration is lifespan of hardware product; OS software updates and upgrades.

Software Support Service in the subscription software stack includes 24-hour TAC support and software updates and upgrades in Cisco DNA Center.

Automated provisioning of a new Cisco switch using the Zero Touch Provisioning functionality built into the switch.

Smart Net Total Care, 24-hour hardware and network software stack support provided by TAC.