Cisco DNA Wired Assurance TDM

Cisco DNA Center Wired Assurance TDM
Prem Chandran & Harsharan Dhaliwal

Technical Marketing Engineer
July 2022
Americas EN Sales
Cisco DNA Center TDM Learning Map
9800
Template Automation
Editor
Day 0/PnP SWIM Wireless SD-AVC App

Automation Policy
DNA Center DNA DNA DNA Center License

TDM Automation Assurance Platform Manager
TDM
Here!
Wireless
Assurance
Wired PoE Analytics Wired Sensor StackWise Application

Assurance
Visibility
AI/ML/MRE Reports
2020 Cisco and/or its affiliates. All rights reserved. Cisco Confidential
1 DNA Wired Assurance Intro
2 Architecture
3 Getting Started
5 PoE Analytics
6 TrueTrace
Agenda 7 Wired Sensors
8 StackWise
9 Application Experience
10 Machine Reasoning
11 ThousandEyes
Introducing DNA Assurance
In this Environment, Context is Key
Cisco Context
Time
360-degree Visibility
Users Network
Devices Applications
Data Granularity
Location
Historical, Real-time, Future
Rich Context Increase Business Productivity and Frees Up IT Time

© 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public
Cisco DNA Assurance
From network data to business insights
Network telemetry Complex event Correlated Suggested

contextual data processing insights remediation
Traceroute
Complex
Syslog NetFlow correlation Clients Baseline
AAA Router DHCP

Metadata
Telnet WIRELESS CLI extraction
DNS
OID IPSLA Ping
WIRED MI Steam
SNMP IPAM
B Processing Application Network
AppD
CMX
Everything as a sensor Over 150 actionable insights

Clients | Applications | Wireless | Switching | Routing
Cisco DNA Assurance is part of Cisco DNA Center
Automation Assurance
• Global settings
Design • Site profiles
• User access
• Issues and trends

• Performance
• Device inventory
• SWIM, PNP • Proactive troubleshooting
Provision • SDA Provisioning
• Device on-boarding
• Virtual networks
• ISE, AAA, Radius
Policy • Access control
• Application control
Planning, installation and migration
Proactive and predictive network, client and application assurance

Introducing DNA Assurance
End-to-End Visibility Proactive & Predictive Insights Guided Remediation

360º view across network Proactive to get ahead Today—Remediate
Historical view of the problem with user input
Ability to follow the network Predictive to stay ahead Future—Automated remediation

path Assessment to see
impact of changes
Transforming network operations through actionable insights and simplicity

Cisco DNA Assurance Architecture
Cisco DNA Assurance Architecture
Customer Datacenter Cloud Based
ML Engine)
Cisco DNA Center Assurance UI
Insights & Trend
Feedback
Cisco DNA
Automation Cisco DNA Data
Cisco AI
Assurance Network
Network Analytics
Control Network Data Platform Cloud
Platform
SSH/NETCONF
Protocols & APIs (WSA, gRPC, SNMP, NetFlow, Syslog, Location, NETCONF, CLI, ...)
CMX
DHC
P
WAN
Network Control Points

Office Site Network Services DC Metrics, Events, Config, ...
Control, Notifications, ...
Customer Network
Telemetry Collection
Benefits of Streaming Telemetry
Export enriched, consistent and concise data with context from network
devices for a better user and operator experience
Periodic or On- Structured Scalable Reduced CPU

Change Data Load
Getting Started Workflow
DNA Assurance - Getting Started Workflow
DNA Center Network Device Network Design & Ready for DNA
Install Discovery Provision Assurance !
On-Premise CDP / LLDP Create Network

Single Node IP Address Range Hierarchy (Sites)
Cloud Tethered for Login Credential

App Updates SNMP Assign Device to Sites
Step 1– Network Device Discovery
From side menu go to Tools > Discovery
CDP / LLDP
IP Address Range
SSH Login Credential

SNMPv2 or v3
Enable NetConf
Provide seed IP address range,

Device CLI Credentials and SNMPv2 or V3 prior to starting Discovery process
Step 2 – Create Network Sites
From side menu go to Design > Network Hierarchy
Access the Design page and create network sites by adding area, building and floor
Step 3– Assign Device to Sites
From side menu go to Provision > Inventory
Select individual devices from the Provision menu and associate devices to sites
Step 4– Telemetry Configuration
 Telemetry Configuration
• SYSLOG Server
• SNMP Trap Server
• SNMP Polling
• NetFlow
• Wired Client Data Collection
 Cisco DNA Center is configured as Syslog and

SNMP Trap Server by default
 Telemetry Configuration is pushed while

assigning devices to sites
Assurance Dashboard Ready for DNA Assurance
DNA Assurance for Wired
Cisco DNA Wired Assurance – Investment Pillars
1 PoE Analytics
2 Wired Sensors
Powerful PoE Insights Supporting a Variety of

3 Stackwise
IEEE PoE Standards
2-Event Classification
4 Application Experience Perpetual PoE
Fast PoE
UPoE+
5 AI/ML Analytics & Machine Reasoning
1 PoE Analytics
2 Wired Sensors
3 Stackwise Emulates a client and runs as a hosted app on

Catalyst 9300 / 9400 switches
Supports various tests:

4 Application Experience • Onboarding tests (802.1x, ISE/Radius,
auth methods [TLS, PEAP], DHCP)
• Network and server reachability tests
5 AI/ML Analytics & Machine Reasoning
(ICMP ping)
1 PoE Analytics
2 Wired Sensors
• StackWise indicator in the banner

• New StackWise tab capturing the member and
3 StackWise connectivity details
• Interface table enhanced to show StackWise
link type
• New SVL and StackWise Issue Types
• DAD - Dual Active Detection Link (DAD)
5 Machine Reasoning Engine
1 PoE Analytics
2 Wired Sensors
3 Stackwise
• Top Applications in Use by

Business
4 Application Experience • Application Experience of
Business Critical Applications
• Rapid Troubleshooting of
5 AI/ML Analytics & Machine Reasoning Application issues by Client
1 PoE Analytics
2 Wired Sensors
3 Stackwise
Helping Humans Work Smarter

AI-driven, On-Prem and Cloud Network Analytics
Machine Reasoning Engine
Device Classification Service
5 AI/ML Analytics & Machine Reasoning Natural Language Search/Processing (NLS/NLP)
PoE Analytics
Introduction Cisco DNAC PoE Analytic Assurance
PROBLEM
• The big challenge is getting a complete visibility into the endpoints and monitoring switches for power usage and
overall capacity for hundreds of devices in the customer's environment.
• One had to go switch by switch to see, what’s the overall power budget of each device; how much power has been
utilized and how much is the remaining power budget.
SOLUTION
• Cisco DNA Center version 2.1 brings in a capability of PoE Analytics Assurance for a robust and efficient digital
building solution that resolves this exact challenge.
• It provides PoE visibility and assurance for the entire network power budget and real time utilization on individual
switches and switch stacks, visibility into end point device types, operational states and power consumption metrics.
• Troubleshooting options that enable easy fixes with just a few clicks.
• This offers complete control to add PoE endpoints to the most suitable switch without accessing the CLI.
Evolution of PoE Standards
UPOE+ Standardization • IEEE standardization expands the PoE
ecosystem
UPoE Powered
802.1AC Access Compact
VOIP Phones Points switches • IEEE 802.3bt complements Cisco UPOE© by
90W adding 4 new classes of devices
60W UPOE+
30W UPOE©
PoE+ IEE bt
E • Safety measures ensure up to 90W of power is
2 .3
15W
PoE
8 0
safely delivered
2018
2011
2009
2003 IEEE 802.3af IEEE 802.3at IEEE 802.3bt
PSE=15.4W, PD=13W PSE=30W, PD=25.5W PSE=90W, PD=71W, Type 4
Type 1 Type 2 PSE=60W, PD=51W, Type 3
Backward compatible
2003 2009 2018

POE PoE+ UPOE+
Evolution of PoE Devices
• Example
• High power access points
• Digital signage
• Nurse calling stations
• High-definition cameras
• USB-C dongles
• Smart TV’s
are already part of the network and are being powered using a single
RJ-45 cable with Power over Ethernet (PoE).
New PoE architectures are emerging with 90W
Catalyst 9400 1G UPOE©+ 90W line card (C9400-LC-48H) PoE Monitors PoE Monitors
UPOE+
Daisy-chaining
Light Fixtures Light Fixtures
(Cost saving with 90W)
IEEE 802.3bt compliant platforms

Catalyst 9400 and 9300 Series* PoE+ PoE+
Cat9K Provides High-Uptime for Critical IoT Applications
Cisco DNA Center™
Open APIs
Cisco DNA Assurance
Network Power Health Intelligent Building
Management
Telemetr
y
Systems
Primary Power Grid
N+1/N+N Redundant power supplies
AC PSU
Power available from AC + DC sources
DC PSU
Perpetual PoE available through upgrades

Backup DC power
Critical devices stay up during power cuts
Fast PoE restores power within a minute
EXIT
2020 Cisco and/or its affiliates. All rights reserved. Cisco Confidential Emergency pathway Hospital
Warning and status Surveillance Security control center
signs lighting systems ER and OT lighting (Reliable Data + Power)
Perpetual PoE/UPOE
PoE devices connected to switch stay powered even on switch reload
• PoE devices continue to get Last Negotiated Power

• Applicable to “Soft” Reload – image upgrade, software
crash, manual reboot Switch Soft Reload
• Supported with stacking deployments
• Not applicable during power outage to switch or power
supply removal
• Not applicable when switch is in hibernation mode
Switch> enable
Switch# configure terminal
Switch(config)# interface gigabitethernet2/0/1
Switch(config-if)# power inline port perpetual-poe-ha
Switch(config-if)# end
Fast PoE/UPOE
• Remembers the last power drawn from a
Power
particular PSE port Supplies
CLI/CDP/LLDP Main CPU
• Restores power to PD in less than 30 seconds Status
post restoration of power PoE configuration:
MCU
• Works even before IOS comes up Enable, Port PoE
Priority, Power Budget
etc
• Allocates last power (stored in NVRAM) drawn
from PDs PSE
Controller
• Works in stacking deployments 2 event
Classification
P
D
Switch> enable
Switch# configure terminal
Switch(config)# interface gigabitethernet2/0/1 * In case of UPOE, since the PD relies on LLDP to get
Switch(config-if)# power inline port perpetual-poe-ha to higher power levels, PD may still need to wait till the
Switch(config-if)# power inline port poe-ha IOS comes up and LLDP packet exchanges happen
Switch(config-if)# end
[“perpetual-poe-ha” is a perquisite to “poe-ha”]
PoE Dashboard
• Four PoE Widgets
1. PoE Operational State Distribution
2. Power Load Distribution
3. PoE Powered Device Distribution
4. PoE Insights
• PoE Telemetry is available on the

following platforms:
o Cisco 9200
o Cisco 9300
o Cisco 9400
o Cisco 3850
• Minimum Software versions:

• IOS-XE 17.3
• Enable Netconf port when

discovering these devices.
PoE Operational State Distribution Widget
This widget helps answer questions like…
1. How many Powered End-points do I have?
2. How are my PoE endpoints doing?
3. Which devices have power issues?
1.PoE Operational State Distribution Widget
20 PoE end-points indicates Off: Faulty.

• The default tab (LATEST) pie chart will
display the total count of powered
devices count.
• Color coded visual breakdown of

different state of the device such as: On,
Off, Faulty, Power Denied or Error
Disabled.
• Switching to TREND tab allows to see

the visual chart with powered device
count and time stamp along with
breakdown of the state of the devices.
PoE Operational State Distribution
Deep Dive Analytics
• Clicking View Details reveals

interactive pie chart.
• Mouse-over a section of the pie chart

to see the count of a particular color-
coded operation state
• Select a data type to filter the

proceeding table details:
• Top Locations
• Top Switch Names
• Top Switch Types
• Top Powered Device Types
• Data table:
o Identifier
o Powered Device Model or Type
o Connected Switch
o Switch Interface
o IEEE Compliant
o Location
o Allocated or Consumed Power
PoE Power Load Distribution Widget
1. How is the power load on my switching infrastructure for a certain site

or building?
2. Which switches have capacity to add 10 new IP-Cam or other

endpoints?
2.PoE Power Load Distribution Widget
• The default tab (LATEST) displays the

18 Switches taking only 0-20% of power load.
overall power load on switches to help
with power budgeting.
• The TREND tab allows to view the exact

timestamp with total number of devices
and along with it’s break down (Power
load % vs Switch Count).
PoE Power Load Distribution Widget
Deep Dive Analytics
interactive bar graphs. Click a bar
graph to see more in-dept data
analysis.

• Top Locations
• Data table:
o Identifier
o Switch Type
o OS Version
o IP Address
o Location
o Power Budget
o Consumed Power
o Power Load (%)
o Remaining Power
o Module Count
o Chassis Count
3.PoE Powered Device Distribution
• Displays the PoE endpoint distribution

based on power allocation and device
class of the endpoints in the network. 259 powered endpoints has a range of 4 to
15.4 (W) power allocation.
• The default tab (LATEST) displays the
overall power allocation for endpoint to
help with capacity planning.
103 powered endpoints belong to IEEE2

device class.
Delivered
PoE Powered Device Distribution
This widget helps answer question like…
How is the PoE endpoint distribution based on

power allocation?
PoE Powered Device Distribution
Deep Dive Analytics
interactive bar graphs. Click a bar
graph to see more in-dept data
analysis.

• Top Locations
• Top Switch Names
• Top Powered Device Types
• Data table:
o Identifier
o Powered Device Model
o Powered Device Type
o Connected Switch
o Switch Interface
o IEEE Compliant
o Location
o Allocated Power
o Consumed Power
Perpetual PoE
4.PoE Insights
Introduction
• This widget provides insight on features Fast PoE
like Perpetual PoE, Fast PoE, IEEE
Compliant, and UPOE+
• The availability of this information

ensures that all critical POE endpoints IEEE
are protected and function correctly if the Compliant
switch is rebooted.
UPOE+
PoE Insights
• What's the Compliant state?

• Are all my critical PoE end-points are
protected when the switch reboots?
PoE Insights
• Filter based on
o Perpetual PoE
o Fast PoE
o IEEE Compliant
o UPOE+
• View of % of end points complying to

PoE configuration recommendations or
standards
• Select a data type (Location, Switch

Names, Switch Types) to filter the
proceeding table details.
• Table is customizable.
Power Summary
Overall Power Budget of 3 Switches in a Stack
Power Budget of a Single Switch in a Stack of 3
PoE Interfaces
PoE Troubleshooting
2.2.3 PoE Features
Cisco DNA Center 2.2.3 PoE Features
• Visualize the Stack switch power supply details in 360 view
• Visualize the PoE details on a per port module basis
• View the PoE interfaces on a switch and the associated devices connected to
it and their power status
• Two new dashlets added to PoE dashboard
• PoE power allocation
• PoE Port Availability
• The new features help with capacity planning of PoE in the network
Stack Switch Power Supply Details in 360 view
• Total Power
• Reserved Power
• Allocated Power
• Switch Allocated Power
• Power Consumed by system
• Power Consumed by PoE
• Stack Count
• Power Supply Count
Stack Switch PoE Details in 360 View
• Module ID
• Total Power Budget
• Allocated Power
• Max Power per Port
• Total Ports
• Used Ports
• Free Ports
PoE interface details in Switch 360 View
PoE Config Filters

PoE Oper status Filters
PoE new dashlets in PoE dashboard
Allocated Power and Used and Free Ports by

Remaining Power output power (15.4, 30, 60
and 90 Watts)
PoE Power Allocation View Details
View Total Power

Available and Used for Po
on a per switch
basis
PoE Port Availability View Details
View used and free ports

for each power level by
module
* Dual Supervisors needed
Catalyst 9000 PoE feature matrixFlexibility / Density

Feature C9200L C9200 C9300 C9400
UPOE+ (90W)
UPOE (60W) Max Power

Draw
PoE+ (30W)
802.3BT Type 3 (up to 60W)

Standards
802.3BT Type 4 (up to 90W) Compliance
Perpetual PoE *
High
Fast PoE Availability
2-event Classification (30W)
Multi-event Classification(60W & 90W) Power

negotiation
LLDP Classification
TrueTrace (2.2.3)
TrueTrace
Enhanced Packet Capture that allows live traffic to be captured, providing
visibility into Network Topology, Security Policies, and Performance Metrics
to identify critical issues.
• Captures live traffic on devices in path for analysis

• KPIs such as packet loss are available at each hop
• Granular reason codes that explain degradation in the path
• Downloadable packet capture files
Using TrueTrace
From the Device 360 or Client 360 page for any client
or any Catalyst device running IOS 17.1.x or greater:
Enable “Live Traffic” for

TrueTrace
Start Trace
TrueTrace Results
Results from
TrueTrace provide:
• Ingress/Egress
Info
• Average
Processing Delay,
in ms (ACL, GRE,
Queue)
• Packet Forwarding
Decision (#
packets forwarded,
# packets dropped,
drop reason)
Wired Sensors
Overview
• For a network to recover, the first thing it needs to be able to do is detect problems
and measure network parameters. (e.g., latency)
• For that it needs sensors placed strategically at various parts of its network.
• The goal of this project to simulate a Wired Client (virtual) which can perform
various tests/measure parameters and send back the data to DNAC for further
analysis.
• Such a Wired Sensor must virtually emulate in all respects a wired client that is
physical attached to the switch.
• This includes client authentication, DHCP, DNS operations etc.
Wired Sensor on Cat9K
Emulates a wired client for ongoing proactive monitoring as well as on-demand acceptance tests
Provisioned by Cisco DNA Center on-demand
Performs various test to check –
PHASE 1: (Early 2021)

Onboarding
• Auth Types - 802.1x, MAB and Open Auth
• DHCP
Network and server reachability
• DNS
• RADIUS
Application Tests
• Host Reachability
• URL Reachability
Phase 2: (Late 2021)

Network Performance
Runs as a docker app hosted on Cat 9300/9400 • DNS, iPerf, Speed Test (NDT)
switches Application
• Mail Server, FTP
Reports back status and results to Cisco DNA Center to

© 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public monitor from central dashboard
Difference between wired and wireless sensor
Docker App
C9300/9400
VS
AP1800s
Wired Sensors Wireless Sensors

Software on the Switch Separate piece of Hardware
Topology Example
Scalable Sensor Test Workflow
Step.1 Create Sensor Test Step.2 Assign Sensor Test to Sites
• Step-by-Step, Guided Sensor Test Making • Deploy Sensor Test to Location(s)
• More Options, Less complexity • Deploy Template to Global / Site / Building / Floor / Sensor level
1
© 2019 Cisco and/or its affiliates. All rights reserved. Cisco Public 4
Steps Scalable Sensor Test Workflow
Select Wired Sensor • Create Once, Unlimited Reuse - Location-based Template (Global/Site/Building)
• Per-Site or or per-Sensor assignment

Create Template
Select Auth Type

1 • Intuitive, Easy to use,
Select Test Categories
• Single Test Template per Sensor
Upload Sensor App • Easy Template Edit
• Unique Sensor Test Case scenario

Select Location
Deploy Template
• Band-specific Test Coverage Control

2
Select SWITCH + VLAN • Resource Protection based on Sensor Test Estimation
• New Scheduling option – 7 min./ 15min Interval, Time of day, Continuous

Select Schedule
Sensor Dashboard Heatmap-based Navigation
• Network Time Travel with Sensor Test Result
• Customizable Color grading threshold
• Insight View – Worst Location, Largest Health Drop
by Location, Most Common Test Failure with reason
code, expandable to top 5 on each category
• Search Bar to find any location/site
• Insight page for Actionable, Location-based insight
• Familiar Assurance Workflow – Network Time Travel,
LATEST/TREND
• Drill-Down View to Test Result Detail
Test Result Color Code
Test Failure % Threshold • Failure-based or Threshold-based
Onboarding, Network Services, App. Connectivity

• Two Green and Two Red Levels
• Customizable Threshold
All Available Tests
Onboarding Authentication
DHCP
Network Services DNS
RADIUS
App. Connectivity Host Reachability
Sensor 360
Network Time Travel Target Site View
Performance Trend w/ comparison
New Cisco Cisco DNA Center Wired Sensor
Enterprise Ready Features
• Sensor-Test Template – Location-based

• Sensor Dashboard - Top location-based Sensor test Heatmap
• Location-based Drill Down
• Sensor 360
• Enhanced Cisco DNA Center Discovery
Sensor Workflow
Day-0. Sensor Provisioning Day-1 Sensor Test Config

1. Device Discovery (w/ HTTPS Read Perm.) 6. Select Onboarding Test (Open Auth)
2. Enable HTTPs on the Switch 7. Select Network Services Test
3. Configs and Validate HTTPs User 8. Select Application Connectivity Test
4. Assign Device to Site
5. Install Wired Client Sensor App on Switch
Day-N. Sensor Manage Day-N Sensor Dashboard
9. Sensor Controls
10. Upgrade using Cisco DNAC or CLI
Recommended Software
Cisco DNA Center 2.1.2
Catalyst 9300 (Standalone) IOS XE 17.4.1 (SSD USB not required starting with 17.4)
Application Hosting 1.5.0.x
Sensor Assurance 2.1.2.7272
Sensor Automation 2.1.260.62364
Wired Client Sensor c9k_sensor_1.0.tar (Agent can be downloaded from Wired Sensor Test wizard)
NOTE: For EFT code please request it from the BU.
StackWise Switch Monitoring
(Physical Stack and Virtual Stack)
StackWise Physical Details in 360 View
New StackWise tab capturing the member

and connectivity details
StackWise Physical
Interface table enhanced to show StackPort status
StackWise Virtual Monitoring
New StackWise Virtual tab capturing

the member and connectivity details
StackWise Virtual SVL Details
DAD - Dual Active Detection Link Status
StackWise Switch Issues
Stack Member Removed Issue Details
StackWise Virtual Link Failure Issue Details
Traps or Syslogs relevant to issue
StackWise Physical and Virtual Issues
Application Experience
Application Experience
Client level Application usage

visibility per Business
relevance category
Per-Application Health Score

along with historical trending
Detailed Application level flow

metrics – Throughput, Packet
loss, Latency, Delay
Top Applications in Use by Business
• Collection of application performance metric from routers
• Use of NBAR2 to identify over 1400 applications, including
hundreds of encrypted applications (without decryption and
while ensuring full privacy and message-integrity)
• Use of Flexible NetFlow with application-identification
extensions to export flow telemetry from wired and wireless
clients
Top Applications in Use by Business
• Business Value: The majority of network traffic on today’s networks is Apps

Encrypted
encrypted; however, network operators still need to know: What applications
are running over my network? How much traffic do these generate? Where
are they running? And when? google services
cisco collaboration media
box
apple services
Application Experience of Business-Critical Applications
• Application Response Time (ART) to Monitor dozens of application health Key

Performance Indicators for each application flow
• Use of Flexible NetFlow to export application qualitative metrics from network

devices to DNA Center for analysis
• Use of standards-based models in DNA Assurance to analyze application traffic

KPIs and translate these into easily-understandable health-scores
• Application Health Dashboard for Business relevant apps
Assurance of Business Critical Applications
The Intent-Based Networking Method for Monitoring Application Quality
Table with the top N (filterable)

applications:
• Name
• Heath
• User count
• Business class / Traffic class
• Usage / Average Throughput
• Perf (Loss, Latency, App Delay)
Health of Business Relevant

Apps overtime
Rapid Troubleshooting of Application Issues
Past and Present
• Use of Application Response Time (ART) to monitor dozens of

application health Key Performance Indicators for each application
flow
• Use of Flexible NetFlow to export application qualitative metrics
from network devices to DNA Center for analysis
• Break down of delay components apart, separating network delays
from those occurring beyond its edges, for faster troubleshooting and
root cause analysis
• Application 360 View for each application
 Health Score Time Series
 Application Experience Table showing Top N Conversations for the application
 Drill down into Time Series Performance Charts per App and Table of Clients
using the application
DNAC 1.2
Application Assurance – Per App 360 View
• Application Performance over last 24 hrs

• List of clients who used the App in the given
timeframe
• Top N Flows between Sites

Application Issues – Excessive Network Latency
In Client 360, raising

Insights for excessive
Network Latency Issue
The second charts details the

issues in the Application
Server causing the delay
Historical Reporting: Client Details Report
Shows:
• Type
• MAC
• Health
• Issue count
• Location(s)
Filters:
• Location
• SSID
• Band
• Vendor
• Time
Summary
Majority of network traffic on today’s networks is encrypted; however,
network operators still need to know:
• What applications are running over my network?
• How are my business-critical applications performing
• How much traffic do these generate?
• Make Fast and Active Triage Decision – Application or Network issue
How can Application experience in DNA Center Assurance help?

• Monitor Health of business-critical applications through qualitative metric and
without all the data-noise
• Transform raw application-performance data into meaningful information and
actionable insights
• Correlates KPIs sourced from the network and beyond to identify the problem-
domain faster and accelerates issue-resolution
Machine Reasoning Engine (MRE)
Accelerated Remediation
Powered by Machine Reasoning Algorithms
Visibility Insight Act
Network
Guided
analytics
remediation
capture
Machine
reasoning engine
Close the
Knowledge
Automated troubleshooting intent based
base
and root cause analysis loop
Machine Reasoning Engine Architecture
Semantic Compilers Best
Practices
...
PSIRT
Knowledge Packages
Defect
Signatures
Inferences
Dashboard
Machine Reasoning
Engine Workflow
Anonymized Governance Editor
Telemetry
Remediation
WSA Collector
Cisco DNA Cloud
Cisco DNA Center
Cisco Community Partners

Network Infrastructure
Subject Matter Experts
Machine Reasoning Process
1 Detect & Notification 2 Machine Reasoning 3 Conclusion

DNA Dashboard
Email Notification
Root Cause Analysis
Machine Reasoning Engine (MRE)
• High CPU Utilization –

Troubleshoot causes for high CPU
utilization on a device.
• Power Supply – Determine the

causes for power supply problems
on a device
• Interface Down – Troubleshoot

causes for interface down on a
network device
Root Cause Analysis
Suggested Actions
Customize Issue Settings
Customize Issue Settings
Reports
Reports
• 12 new reports templates across client and
network devices.
• Customize report scope based on location,

site, etc
• Reports can go back up to 30 days.
• Run instantly or Schedule for later. Option

to schedule to generate recurring reports
also available.
• Generate and export report in various

formats (CSV, JSON, Tablue)*
• Email reports or send via Webhook.
ThousandEyes Integration (2.3.3)
ThousandEyes Integration
• Integrate ThousandEyes with Cisco DNA Center by deploying the
ThousandEyes Enterprise Agent on a Cisco Catalyst 9300 or 9400 via Cisco
Application Hosting (Docker)
• Configure and deploy Enterprise Agent Tests from the ThousandEyes
dashboard.
• View agent, test, and alert data on the DNA Center Application Experience
dashboard.
• Cross-link to test in ThousandEyes dashboard.
Install ThousandEyes Enterprise Agent
Click “Edit” then

fill in the copied
Account Group
Token and switch
hostname.
Click “Install” to
begin the install
workflow and
select the switch
the agent will be
installed on.
Configure Access Token
Revoke the existing

OAuth Bearer Token
and copy the new
one
Configure Access Token
Access ThousandEyes Integration on DNA Center

Cisco DNA Wired Assurance TDM

Uploaded by

Copyright:

Available Formats

Cisco DNA Wired Assurance TDM

Uploaded by

Document Information

Original Title

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

Cisco DNA Wired Assurance TDM

Uploaded by

Copyright:

Available Formats

Cisco DNA Center Wired Assurance TDM

Prem Chandran & Harsharan Dhaliwal

Day 0/PnP SWIM Wireless SD-AVC App

DNA Center DNA DNA DNA Center License

Wired PoE Analytics Wired Sensor StackWise Application

Rich Context Increase Business Productivity and Frees Up IT Time

Network telemetry Complex event Correlated Suggested

AAA Router DHCP

Everything as a sensor Over 150 actionable insights

• Issues and trends

Planning, installation and migration

Proactive and predictive network, client and application assurance

End-to-End Visibility Proactive & Predictive Insights Guided Remediation

Ability to follow the network Predictive to stay ahead Future—Automated remediation

Transforming network operations through actionable insights and simplicity

Network Control Points

Periodic or On- Structured Scalable Reduced CPU

On-Premise CDP / LLDP Create Network

Cloud Tethered for Login Credential

From side menu go to Tools > Discovery

SSH Login Credential

Provide seed IP address range,

From side menu go to Design > Network Hierarchy

From side menu go to Provision > Inventory

 Cisco DNA Center is configured as Syslog and

 Telemetry Configuration is pushed while

Powerful PoE Insights Supporting a Variety of

5 AI/ML Analytics & Machine Reasoning

3 Stackwise Emulates a client and runs as a hosted app on

Supports various tests:

• StackWise indicator in the banner

5 Machine Reasoning Engine

• Top Applications in Use by

Helping Humans Work Smarter

2003 2009 2018

IEEE 802.3bt compliant platforms

Perpetual PoE available through upgrades

Fast PoE restores power within a minute

• PoE devices continue to get Last Negotiated Power

[“perpetual-poe-ha” is a perquisite to “poe-ha”]

• PoE Telemetry is available on the

• Minimum Software versions:

• Enable Netconf port when

This widget helps answer questions like…

1. How many Powered End-points do I have?

2. How are my PoE endpoints doing?

3. Which devices have power issues?

20 PoE end-points indicates Off: Faulty.

• Color coded visual breakdown of

• Switching to TREND tab allows to see

• Clicking View Details reveals

• Mouse-over a section of the pie chart

• Select a data type to filter the

This widget helps answer questions like…

1. How is the power load on my switching infrastructure for a certain site

2. Which switches have capacity to add 10 new IP-Cam or other

• The default tab (LATEST) displays the

• The TREND tab allows to view the exact

• Select a data type to filter the