activate with cisco unified access · •prime infrastructure 2.0 deep dive ... practices in order...

BYOD PartnerFIRST © 2010 Cisco and/or its affiliates. All rights reserved. 1

Activate with Cisco Unified Access Part V: Converged User Access Management

Eric S. Calhoun Sr. Manager, Prime Enablement

CSMTG

June2013

© 2010 Cisco and/or its affiliates. All rights reserved. BYOD PartnerFIRST 2

# Session Date

1 Activate the IT Transformation April 3, 2013

2 One Network Part 1: Deploying Unified Access April 17, 2013

3 One Network Part 2: Simplifying the Network

Infrastructure

May 1, 2013

4 One Policy: Centralized Policy. Control and

Enforcement

May 15, 2013

5 One Management: Converged User Access

Management

June 5, 2013

Join the Community: www.cisco.com/go/talkandlearn


• Get Update on Prime Infrastructure

• What is Prime? Why do I need it?

• Strategic roadmap direction for PI

• Prime Infrastructure 2.0 Deep Dive

• Additional Resources

• PI 2.0 Demonstration


Cisco Advantage

Consolidation

Convergence

Simplify deployment and management of Cisco®

services, technologies and platforms… Unified Access

One Management

Converged

Voice and Video

Virtualized

Network-Compute-Storage

Borderless

Collaboration

Data Center


• Independent "point" products

• Untimely device and technology

support

• Reliance on highly skilled staff

• Inconsistent user experience

• Difficult to install, administer,

and maintain

• Integrated solutions that align with

major transitions

• Day-one device support for the

Cisco® Advantage

• Use of Cisco best practices and

knowledgebase

• Integrated workflows and user

experience

• Single solution and virtual

appliance

The Old Way The Cisco Prime™ Way


• A single integrated solution for comprehensive lifecycle management of wired/wireless access, campus, and branch networks

• Utilizes rich performance data for end-to-end network visibility to assure application delivery and optimal end-user experience

Prime Infrastructure

Convergence Consolidation Cisco Advantage


• Converged wired/wireless, Campus and Branch Management

• Centralized Discovery, Inventory, Configuration Management, SWIM, and Proactive/Reactive Monitoring

• Accelerated Troubleshooting of Wired/Wireless Infrastructure Issues

• Customizable out-of-the-box Cisco best practices and validated design configuration templates for wired/wireless devices

• Unified Access Management and Client Tracking

• Infrastructure lifecycle reports - EoX, Contract, PSIRT

• Plug & Play for Automated Deployment

• 3rd party device support


• End-to-End Visibility for Service-Aware Networking

• By applications, services and end-users

• Out-of-the-Box Support for Cisco Advanced Instrumentation

• Netflow, Flexible Netflow, AVC, NBAR, PA, Medianet, etc.

• Simplified End-to-End Visibility for Faster Troubleshooting

• Normalizes, correlates and aggregates data sources

• Automated Baselining with Dynamic Thresholds

• NBAR2 Custom Application Support

• Multi-NAM Management

• Service Health Dashboard


NB

AR

2

SN

MP

/CLI

Pollin

g

WA

AS

NB

AR

ME

DIA

-N

ET

PA

SP

AN

/ E

RS

PA

N

Netflo

w

FN

F

Network Analysis Modules (Prime NAM)

Cisco ASR

Cisco 6509

Wireless Controller

Cisco ISR

Cisco Catalyst 3750-X End-User Experience • Wired/Wireless user experience

• User 360

• Voice quality experience

Visibility • Application Traffic Analysis & Reporting

• Multi-NAM: Packet level debugging and troubleshooting

• WAN optimization visibility

Network Performance • Device Availability and Interface polling

• Event/Alarm generation

• Configuration of devices for data and flow collection: NetFlow, Medianet, PA, NBAR

Netflow Generation Application (Prime NGA)


TE

CH

NO

LO

GY

TE

CH

NO

LO

GY

U

NIF

ICA

TIO

N

Unified IT Operations Integrated Management Stack

• Network, DC, Security, Collab

• EMS, assurance, orchestration…

• Large Enterprise & SP Scale

Customer Consolidation Wired / Wireless Bundle

• Introduce PI as bundle

• Unified purchase & entitlement

One Management One wired/wireless/routing Product

• New & NCS customers use PI

• LMS migrates over time

Shipping Development Radar

PI Lifecycle

Prime

Infrastructure

2.0

PI Assurance

PI DC/Cloud

Assurance

PI Lifecycle

Prime

Infrastructure

CY13/14

PI Assurance

Prime

Infrastructure

1.x

PI Assurance

LMS 4.2

PI Lifecycle

Data Center • E2E assurance from user to DC

• DCNM integration

One Firewall • One Firewall in ASR / ISR

• PrSM integration

Wired & Wireless • Wired/wireless endpoint visibility

• ISE policy system integration

AVC for Branch & Edge • ISR / ASR / branch

• Assurance & app visibility with Prime NAM

integration

• Prime Site & Device 360`

Unified Access • Unified Mobility Architecture

• Unified wired / wireless / WAN

• ISE policy system integration

• User application experience


• Simplify configuration and management of the new 3850 converged access switch and 5760 wireless controller

• Out-of-the-box templates and best practices for quick error-free deployment

• New workflows for mobility architecture support

• ISR 4400 Overlord Support

• Greater device coverage

• Added support for 100+ Cisco devices, including ASAs, ONS, IOS-XR devices, AirOS, etc.

• Monthly Device Update packs


• Prime Infrastructure sports a powerful templating engine, allowing customers to build templates for efficiency and automation

• Prime Infrastructure 2.0 also provides dozens of templates reflecting best practices in order to turn on IOS features

• Including One-Click AVC, Zone-Based Firewall, Medianet, etc.

• Readiness Assessments to prepare networks for specific technologies, including TrustSec 2.0 and IPv6


• Simplify troubleshooting and remediation by correlating various sources of information

• Use 360 views for

Users

Devices

Interfaces

Applications

Policy Context

Applications Connectivity

User 360


• Day 0 ZTD for Switches and Routers

• Plug & Play Gateway embedded in PI 2.0

• Includes Apple iOS Plug & Play App allowing anyone to stage and push a configuration

• Day 0 / Day 1 Deployment of Unified Access devices

• Deployment workflow for tier 1/tier 2 engineers, with multi-tabbed template mode for advanced engineers

• Optimized deployment based on best practices

• Cisco recommended mobility domain configurations based on number of APs to be deployed

• Simplified guided guest access configuration


• Prime Infrastructure integrates with Cisco backend systems for increased visibility into impact analysis

• PSIRT (Security Advisories) reports provide an analysis on which devices are impacted based on:

- IOS version running on the device

- How the device is configured

• EoX reports provide a lifecycle management analysis on the devices

- Shows devices that are or will be ‘End-of-Sales’ or ‘End-of-Support’

- Allows customers to budget for upcoming refresh

• One-Click access to related posts and discussions on Cisco Forums

• One-Click creation of TAC Case

- Most fields are pre-populated


• Automated Baselining

• Proactive Performance Troubleshooting

• Service Health Dashboard

• AVC Configuration for ISR/ASR

• One-click AVC Configuration

• AVC Monitoring Customization

• Capacity Management

• NBAR2 Custom Applications

• Embedded Packet Capture for ASR

• Top URL/Domain Views

• The upcoming NAM 6.0 will provide NBAR2 for your core/DC switches


• Clustering Phase 1

- Focus on large scale wireless monitoring

- BETA target Jul 2013

- FCS target Q3 CY 2013

- Scale target:

• Distributed Data Collector Phase 1

- Focus on Netflow data aggregation

- BETA target July 2013

- FCS target Q3 CY 2013

Static Data Device

Affinity

Device

Affinity

Prime Infrastructure Instances

Prime Infrastructure Collectors

Prime Infrastructure (Cluster Console)

Static /

Network Data

Static /

Network DataStatic /

Network Data

Static /

Network Data

PI 1.2 PI 2.0 Cluster

Lightweight APs 15K 20K 500K

Wired Devices 5K 15K 300K

WLAN Clients 100K 200K 4M

Wired Clients 100K 100K 2M

Phase 1

Single Pane of Glass

Monitoring

• Unified Assets View

• Unified Alarms View

• Unified Clients views

• Consolidated Reports

• Consolidated Dashlets

• Consolidated Search


• Single Pane of Glass for true converged Wired/Wireless Lifecycle

and Assurance management – No other vendor does this!

• Centralized Policy integration (Prime and ISE) is unique in the

industry

• Saves Time to deploy Wireless/Voice/Video-ready Wiring Closet

and Branch

• Easy to enable Cisco best practice engineered into IOS and

instrumentation

• Power of embedded intelligence inherent in a Cisco network

improves application delivery and end user experience by using Prime NAM, Medianet, AVC, NetFlow, and NBAR2


Every Week* Prime Demo Series Topic Same Time Same Place

Every Monday Cisco Prime LMS

11:00 AM PST San Jose

Time (90 Min)

www.tinyurl.com/primed

emo

No Registration

Required

Every Tuesday Cisco Prime Collaboration Assurance & Provisioning

Every Wednesday Cisco Prime NAM & NGA

Every Thursday Cisco Prime Infrastructure (including Assurance)

Americas

Edition

EMEAR

Edition

Day Prime Demo Series Topic Same Time Same Place

See Schedule (bi-weekly)

Cisco Prime Infrastructure (including Assurance) 9:30 AM GMT

(90 Min)

www.tinyurl.com/prime-

emear

Registration Required Cisco Prime Collaboration Assurance & Provisioning

Prim

e D

em

o S

eri

es

* Exceptions: US Public Holidays and Cisco Shutdown

Every Wednesday Cisco Prime Data Center Network Management (DCNM)

9:00 AM PST (60 Min)

www.tinyurl.com/primed

cnm

Password: dcnmdemo

Free Trial Software www.cisco.com/go/nmsevals

APJC

Edition

Every Week* Prime Demo Series Topic Same Time Same Place

Every 2nd Thursday Cisco Prime Infrastructure Lifecycle Mgmt & Assurance 12:00 PM Singapore

Time (90 Min)

www.tinyurl.com/prime-

APJC

No Registration Required

Every 2nd Thursday (alternating week)

Cisco Prime Collaboration Assurance & Provisioning

* Exceptions: Indian Public Holidays and Cisco Shutdown

Open to

Custo

mers

, Partn

ers

and C

isco P

eople

http://www.tinyurl.com/primedemo

http://www.tinyurl.com/primedemo

http://www.tinyurl.com/primedcnm



http://www.cisco.com/go/nmsevals

http://www.tinyurl.com/prime-APJC




• Detailed, 18-segment Quick Start VoDs cover essentials of how to download, deploy, configure and customize Prime Infrastructure.

• Available on Cisco’s YouTube Channel & PEC

• VoD Series available here:

http://www.youtube.com/playlist?list=PL7406F0EF2BC7DED8




Cisco Prime™

www.cisco.com/go/prime

Cisco Prime Infrastructure

www.cisco.com/go/primeinfrastructure

Cisco Prime for Partners

www.cisco.com/go/partnernm

Free Trial and NFR Software Downloads

www.cisco.com/go/nmsevals


Cisco Prime Infrastructure 2.0

Product Demo

Thank you.

activate with cisco unified access · •prime infrastructure 2.0 deep dive ... practices in order...

Documents