DEVNET-3620 Get Hands On With DNA Center APIs for Managing Intent Adam Radford Distinguished Systems Engineer
Cisco Spark How Questions? Use Cisco Spark to communicate with the speaker after the session 1. Find this session in the Cisco Live Mobile App 2. Click Join the Discussion 3. Install Spark or go directly to the space 4. Enter messages/questions in the space cs.co/ciscolivebot#devnet-3620 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public
Agenda Introduction to DNAC API Overview Discovery/Inventory PnP SWIM Other Conclusion
Some Operational Challenges 95% 70% 75% Manual Changes Policy Violations Due to Human Error OpEx spent on Network Visibility and Troubleshooting Source: 2016 Cisco Study DEVNET-3620 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 5
The Network. Intuitive. DNA Center Policy Automation Analytics L E A R N I N G Informed by Context Visibility into traffic and threat patterns Who, What, When, Where, How Powered by Intent I N T E N T Translate Business Intent to Network Policy Automate the management and provisioning millions of devices instantly S E C U R I T Y C O N T E X T Intent-based Network Infrastructure DEVNET-3620 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 6
Abstractions Intent (policy) Context (health) "WHAT" I want "WHAT" is happening "HOW" it's done "HOW" it's working DEVNET-3620 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 7
Comparison PI APIC-EM DNAC 1.1 PnP Uses APIC-EM Stacking workaround. API only until March 2018 Visibility/assurance Netflow based. Limited abstraction None. Limited to EasyQoS Health based. No Application health until Jan Day-N Configuration change Template based None- EQ only New Integrated workflow. Site settings + configuration templates. Day-N Software upgrade Limited scale 5 devices None New workflow. Golden Images. Pre/Post checks. API Not complete. Retro fitted API first Limited until March 2018 DEVNET-3620 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 8
DNA Center DEVNET-3620 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 9
DNAC Day-N configuration change Policy Segmentation, QoS Configuration template (Day 0-N) Non Policy Configuration Non- Device Controllability Network Profile Settings Device Controllability NTP server, MOTD, DHCP, DNS, TimeZone SNMP trap, netflow, aaa, syslog, IPDT, Certificate DNAC Network Device Configuration File DEVNET-3620 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 10
API Documentation DEVNET-3620 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 11
Documentation DEVNET-3620 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 12
API Overview
Why API? Automation Integration Innovation DEVNET-3620 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 14
DNAC Official API support Design - Device credentials Policy Provision - PnP - SWIM Assurance Other - network-device - hosts - discovery DEVNET-3620 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 15
Taxonomy Discovery - CRUD credentials - CRUD discovery - Filter discovery results Plug and Play - CRUD Project - CRUD device rules - CRUD Settings - Image/Config/Templates System - File CRUD - PKI CRUD Network Device - GET network-device - Filter network-device - GET module Network Host - Get host - Filter host SWIM - CRUD/upload image - Distribute image - Activate image - Image recommendation DEVNET-3620 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 16
API: VERBS + NOUNS + Syntax GET POST PUT DELETE /host /network-device /interface JSON Syntax: { "policyowner": "Admin", "networkuser": {"useridentifiers":["40.0.0.15"], "applications":[{"raw": "12340;UDP"}] } } Header: Content-Type: Application/JSON https://adam-dnac/api/v1/host GET DEVNET-3620 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 17
Authentication request - POSTMAN APIC-EM DNAC Authentication request POST JSON Body Basic Auth Response ["response"]["serviceticket"] ["Token"] DEVNET-3620 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 18
Conclusion
Cisco Spark How Questions? Use Cisco Spark to communicate with the speaker after the session 1. Find this session in the Cisco Live Mobile App 2. Click Join the Discussion 3. Install Spark or go directly to the space 4. Enter messages/questions in the space cs.co/ciscolivebot#devnet-3620 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public
Please complete your Online Session Evaluations after each session Complete 4 Session Evaluations & the Overall Conference Evaluation (available from Thursday) to receive your Cisco Live T-shirt All surveys can be completed via the Cisco Live Mobile App or the Communication Stations Complete Your Online Session Evaluation Don t forget: Cisco Live sessions will be available for viewing on-demand after the event at www.ciscolive.com/global/on-demand-library/. 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public
Continue Your Education Demos in the Cisco campus Walk-in Self-Paced Labs Tech Circle Meet the Engineer 1:1 meetings Related sessions DEVNET-3620 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public 22
Thank you