Cisco DNA Center

SDN-based Network Infrastructures

In the field of enterprise networking, there is a migration taking place towards centralized network control and programming. This is made possible by means of the rapid development on the level of SDN controllers. The platform Cisco DNA Center (Cisco Digital Network Architecture Center) has been optimized for the enterprise sector. It is equipped with modules for design, security policy, and the provisioning of SD access. In addition, the scope of functions can easily be expanded by apps programmed on one's own. This provides the prerequisites required to operate the enterprise network in a more flexible and optimal manner. It is a trend which has been implemented in the service provider area for some time since.

Course Contents

Software-Defined Networking (SDN): Motivation and Implementation?
Typical Use Cases
The Architecture of SDN Solutions
Network Function Virtualization (NFV)
Setup and Installation of the Cisco DNA Center
Cooperation of the Cisco DNA Center and the Identity Services Engine (ISE)
Design and Provisioning of SD Access by Means of the Cisco DNA Center and the ISE
Tools and Apps of the Cisco DNA Center
How does the REST API work?
How can the REST API be used for network programming?

You will receive the comprehensive documentation package from ExperTeach – printed documentation, e-book, and personalized PDF! As online participant, you will receive the e-book and the personalized PDF.

Target Group

The course is designed for persons charged with the design, planning, and implementation of enterprise networks on the basis of Cisco components.

Knowledge Prerequisites

Knowledge in the field of Cisco LAN, WLAN, or WAN networks and their practical implementation is the entrance ticket to this course.

1	Software-Defined Networking
1.1	Network and Application
1.1.1	The Idea
1.2	Definition of SDN
1.2.1	Classic Routers / Switch Networks
1.2.2	Software-Defined Networking
1.2.3	Substructure of the Control Plane
1.2.4	Networking with SDN
1.2.5	The Path to SDN
1.3	Digital Network Architecture (DNA)
1.3.1	DNA Center
1.3.2	Network Fabrics in DNA
1.3.3	Interaction of the Service Components
1.3.4	Analytics and Telemetry Values in DNA
1.4	Motivation for Enterprise 4.0
1.4.1	Use Cases for the Application of SD Access

2	Software-Defined Access
2.1	SD Access in an Overview
2.1.1	The Reference Model
2.1.2	Network Topologies for the Campus Fabric
2.2	Segmentation in the SDA
2.2.1	Underlay and Overlay
2.2.2	Virtual Networks
2.2.3	IP Pools
2.2.4	Scalable Groups
2.2.5	Stretched Subnets
2.2.6	Anycast Gateway
2.3	The Fabric in the SDA
2.3.1	Host Mobility
2.3.2	The Function of the Identity Services Engine (ISE)
2.3.3	Fabric Nodes
2.3.4	Fabric in a Box
2.3.5	Extended Node
2.4	Insight into the Technologies
2.4.1	IS-IS
2.4.2	BGP-4
2.4.3	LISP
2.4.4	VXLAN
2.4.5	TrustSec
2.5	Interaction of the Technologies
2.6	Breakouts from the Fabric Domain

3	Configuration of the DNA Center
3.1	Commissioning of the DNA Center
3.1.1	Demands Made on the Network
3.1.2	DNA Center Cluster
3.1.3	Setting a BIOS Password
3.1.4	Configuration of the CIMC
3.2	Basic Setup with the Configuration Wizard
3.3	First Steps after the Installation
3.3.1	Connection to the Web Server
3.3.2	Integration with the ISE
3.3.3	ISE Setup
3.3.4	ISE Access
3.3.5	Configuration of an IP Address Manager
3.3.6	Other AAA Servers

4	Design and Provisioning of SD Access
4.1	Configuration of SD Access
4.2	Design App for the Infrastructure
4.2.1	Configuration of the Network Hierarchy
4.2.2	Adaptations to the Floor Layout
4.2.3	Network Services, Credentials, and IP Pools
4.2.4	Creation of a Network Profile
4.3	Capture of the Network Components
4.3.1	Device Discovery
4.3.2	Device Inventory Function
4.3.3	Monitoring of the Topology Map
4.4	Software Image Management (SWIM)
4.5	Provision
4.5.1	Plug-and-Play Provisioning
4.5.2	LAN Automation
4.5.3	Site Assignment
4.5.4	Device Provisioning
4.6	Configuration of a Fabric
4.7	Multi-Site Fabric Interconnect
4.7.1	MPLS as IP Transit
4.7.2	Cisco SD Access Transit
4.7.3	Configuration of a Transit

5	Host Onboarding in SD Access
5.1	Configuration of Virtual Networks under Policy
5.2	Scalable Groups in the DNA Center
5.2.1	Scalable Group Tags for User Groups
5.2.2	Dot1X Policy—Policy Sets
5.3	Creating Policies
5.3.1	Creating Custom Access Contracts
5.3.2	The TrustSec Matrix on the ISE
5.3.3	Application Policy
5.4	Host Onboarding under Provision
5.4.1	Authentication
5.4.2	Capturing the End Systems

6	Apps and Tools in the DNA Center
6.1	Overview of Further Apps
6.1.1	The Command Runner
6.1.2	The License Manager
6.1.3	The Template Editor
6.1.4	The Model Config Editor
6.1.5	Wide Area Bonjour
6.1.6	Security Advisories
6.1.7	Network Reasoner
6.2	Working with the Template Editor
6.2.1	Calling a Template
6.2.2	Editing a Template
6.2.3	Integration into a Network Profile
6.2.4	Application during Provisioning

7	WLAN and DNA Center
7.1	Classic WLAN Architecture
7.1.1	Control and Provisioning of Wireless Access Points
7.1.2	Split-MAC Architecture
7.2	CAPWAP Connection Setup
7.2.1	Data Exchange between Controller and AP
7.2.2	CAPWAP Connection Setup
7.2.3	Communication Paths in the Network
7.2.4	Layer 2 Roaming
7.3	WLAN and SD Access
7.3.1	SD Access Wireless Protocols and Communications Interfaces
7.4	WLAN Configuration in the DNA Center
7.4.1	Floor Plan
7.4.2	Adaptations to the Floor Layout
7.5	Creation of a Network Profile for Wireless
7.5.1	Settings of the WLAN Parameters

8	Assurance and Analytics with the DNA Center
8.1	DNA Assurance in an Overview
8.1.1	Preparatory Steps
8.2	Overall Enterprise Health
8.3	Network Health
8.3.1	Device Health: Device 360
8.3.2	Path Trace
8.4	Client Health
8.4.1	Client Dashboard: Client 360
8.5	Application Health
8.5.1	Application 360
8.6	Sensor-Driven Tests
8.6.1	Configuration of Tests
8.6.2	Telemetry
8.7	Intelligent Capture
8.7.1	Intelligent Capture for Access Points
8.7.2	Intelligent Capture with Client 360
8.7.3	Intelligent Capture with Device 360
8.8	Creation of Reports

9	The REST API of the DNA Center
9.1	North- & Southbound Protocols
9.1.1	REST API
9.1.2	REST in Python—Requests
9.1.3	XML
9.1.4	JSON
9.1.5	YANG
9.2	Overview DNA Center API

A	List of Abbreviations

Classroom training: Do you prefer the classic training method? A course in one of our Training Centers, with a competent trainer and the direct exchange between all course participants? Then you should book one of our classroom training dates!
Hybrid training: Hybrid training means that online participants can additionally attend a classroom course. The dynamics of a real seminar are maintained, and the online participants are able to benefit from that. Online participants of a hybrid course use a collaboration platform, such as WebEx Training Center or Saba Meeting. To do this, a PC with browser and Internet access is required, as well as a headset and ideally a Web cam. In the seminar room, we use specially developed and customized audio- and video-technologies. This makes sure that the communication between all persons involved works in a convenient and fault-free way.
Online training: You wish to attend a course in online mode? We offer you online course dates for this course topic. To attend these seminars, you need to have a PC with Internet access (minimum data rate 1Mbps), a headset when working via VoIP and optionally a camera. For further information and technical recommendations, please refer to.
Tailor-made courses: You need a special course for your team? In addition to our standard offer, we will also support you in creating your customized courses, which precisely meet your individual demands. We will be glad to consult you and create an individual offer for you.
Request for customized courses

You can find the complete description of this course with dates and prices ready for download at as PDF.

Course Contents

Software-Defined Networking (SDN): Motivation and Implementation?
Typical Use Cases
The Architecture of SDN Solutions
Network Function Virtualization (NFV)
Setup and Installation of the Cisco DNA Center
Cooperation of the Cisco DNA Center and the Identity Services Engine (ISE)
Design and Provisioning of SD Access by Means of the Cisco DNA Center and the ISE
Tools and Apps of the Cisco DNA Center
How does the REST API work?
How can the REST API be used for network programming?

Target Group

The course is designed for persons charged with the design, planning, and implementation of enterprise networks on the basis of Cisco components.

Knowledge Prerequisites

Knowledge in the field of Cisco LAN, WLAN, or WAN networks and their practical implementation is the entrance ticket to this course.

1	Software-Defined Networking
1.1	Network and Application
1.1.1	The Idea
1.2	Definition of SDN
1.2.1	Classic Routers / Switch Networks
1.2.2	Software-Defined Networking
1.2.3	Substructure of the Control Plane
1.2.4	Networking with SDN
1.2.5	The Path to SDN
1.3	Digital Network Architecture (DNA)
1.3.1	DNA Center
1.3.2	Network Fabrics in DNA
1.3.3	Interaction of the Service Components
1.3.4	Analytics and Telemetry Values in DNA
1.4	Motivation for Enterprise 4.0
1.4.1	Use Cases for the Application of SD Access

2	Software-Defined Access
2.1	SD Access in an Overview
2.1.1	The Reference Model
2.1.2	Network Topologies for the Campus Fabric
2.2	Segmentation in the SDA
2.2.1	Underlay and Overlay
2.2.2	Virtual Networks
2.2.3	IP Pools
2.2.4	Scalable Groups
2.2.5	Stretched Subnets
2.2.6	Anycast Gateway
2.3	The Fabric in the SDA
2.3.1	Host Mobility
2.3.2	The Function of the Identity Services Engine (ISE)
2.3.3	Fabric Nodes
2.3.4	Fabric in a Box
2.3.5	Extended Node
2.4	Insight into the Technologies
2.4.1	IS-IS
2.4.2	BGP-4
2.4.3	LISP
2.4.4	VXLAN
2.4.5	TrustSec
2.5	Interaction of the Technologies
2.6	Breakouts from the Fabric Domain

3	Configuration of the DNA Center
3.1	Commissioning of the DNA Center
3.1.1	Demands Made on the Network
3.1.2	DNA Center Cluster
3.1.3	Setting a BIOS Password
3.1.4	Configuration of the CIMC
3.2	Basic Setup with the Configuration Wizard
3.3	First Steps after the Installation
3.3.1	Connection to the Web Server
3.3.2	Integration with the ISE
3.3.3	ISE Setup
3.3.4	ISE Access
3.3.5	Configuration of an IP Address Manager
3.3.6	Other AAA Servers

4	Design and Provisioning of SD Access
4.1	Configuration of SD Access
4.2	Design App for the Infrastructure
4.2.1	Configuration of the Network Hierarchy
4.2.2	Adaptations to the Floor Layout
4.2.3	Network Services, Credentials, and IP Pools
4.2.4	Creation of a Network Profile
4.3	Capture of the Network Components
4.3.1	Device Discovery
4.3.2	Device Inventory Function
4.3.3	Monitoring of the Topology Map
4.4	Software Image Management (SWIM)
4.5	Provision
4.5.1	Plug-and-Play Provisioning
4.5.2	LAN Automation
4.5.3	Site Assignment
4.5.4	Device Provisioning
4.6	Configuration of a Fabric
4.7	Multi-Site Fabric Interconnect
4.7.1	MPLS as IP Transit
4.7.2	Cisco SD Access Transit
4.7.3	Configuration of a Transit

5	Host Onboarding in SD Access
5.1	Configuration of Virtual Networks under Policy
5.2	Scalable Groups in the DNA Center
5.2.1	Scalable Group Tags for User Groups
5.2.2	Dot1X Policy—Policy Sets
5.3	Creating Policies
5.3.1	Creating Custom Access Contracts
5.3.2	The TrustSec Matrix on the ISE
5.3.3	Application Policy
5.4	Host Onboarding under Provision
5.4.1	Authentication
5.4.2	Capturing the End Systems

6	Apps and Tools in the DNA Center
6.1	Overview of Further Apps
6.1.1	The Command Runner
6.1.2	The License Manager
6.1.3	The Template Editor
6.1.4	The Model Config Editor
6.1.5	Wide Area Bonjour
6.1.6	Security Advisories
6.1.7	Network Reasoner
6.2	Working with the Template Editor
6.2.1	Calling a Template
6.2.2	Editing a Template
6.2.3	Integration into a Network Profile
6.2.4	Application during Provisioning

7	WLAN and DNA Center
7.1	Classic WLAN Architecture
7.1.1	Control and Provisioning of Wireless Access Points
7.1.2	Split-MAC Architecture
7.2	CAPWAP Connection Setup
7.2.1	Data Exchange between Controller and AP
7.2.2	CAPWAP Connection Setup
7.2.3	Communication Paths in the Network
7.2.4	Layer 2 Roaming
7.3	WLAN and SD Access
7.3.1	SD Access Wireless Protocols and Communications Interfaces
7.4	WLAN Configuration in the DNA Center
7.4.1	Floor Plan
7.4.2	Adaptations to the Floor Layout
7.5	Creation of a Network Profile for Wireless
7.5.1	Settings of the WLAN Parameters

8	Assurance and Analytics with the DNA Center
8.1	DNA Assurance in an Overview
8.1.1	Preparatory Steps
8.2	Overall Enterprise Health
8.3	Network Health
8.3.1	Device Health: Device 360
8.3.2	Path Trace
8.4	Client Health
8.4.1	Client Dashboard: Client 360
8.5	Application Health
8.5.1	Application 360
8.6	Sensor-Driven Tests
8.6.1	Configuration of Tests
8.6.2	Telemetry
8.7	Intelligent Capture
8.7.1	Intelligent Capture for Access Points
8.7.2	Intelligent Capture with Client 360
8.7.3	Intelligent Capture with Device 360
8.8	Creation of Reports

9	The REST API of the DNA Center
9.1	North- & Southbound Protocols
9.1.1	REST API
9.1.2	REST in Python—Requests
9.1.3	XML
9.1.4	JSON
9.1.5	YANG
9.2	Overview DNA Center API

A	List of Abbreviations

Classroom training: Do you prefer the classic training method? A course in one of our Training Centers, with a competent trainer and the direct exchange between all course participants? Then you should book one of our classroom training dates!
Hybrid training: Hybrid training means that online participants can additionally attend a classroom course. The dynamics of a real seminar are maintained, and the online participants are able to benefit from that. Online participants of a hybrid course use a collaboration platform, such as WebEx Training Center or Saba Meeting. To do this, a PC with browser and Internet access is required, as well as a headset and ideally a Web cam. In the seminar room, we use specially developed and customized audio- and video-technologies. This makes sure that the communication between all persons involved works in a convenient and fault-free way.
Online training: You wish to attend a course in online mode? We offer you online course dates for this course topic. To attend these seminars, you need to have a PC with Internet access (minimum data rate 1Mbps), a headset when working via VoIP and optionally a camera. For further information and technical recommendations, please refer to.
Tailor-made courses: You need a special course for your team? In addition to our standard offer, we will also support you in creating your customized courses, which precisely meet your individual demands. We will be glad to consult you and create an individual offer for you.
Request for customized courses

You can find the complete description of this course with dates and prices ready for download at as PDF.

Duration & Prices

Prices excl. V.A.T.

Classes in Germany

5 days

€ 3,395

Classes in Austria

5 days

€ 3,395

Classes in Switzerland

5 days

€ 4,590

Online training

5 days

€ 3,395

ExperTeach Identifier

CAEN

			Date	City
20240422	0	3	04/22/-04/26/24	München
20240422	0	3	04/22/-04/26/24	Live Online
20240617	0	3	06/17/-06/21/24	Frankfurt
20240617	0	3	06/17/-06/21/24	Live Online
20240617	2	1	06/17/-06/21/24	Zürich
20240722	2	3	07/22/-07/26/24	Düsseldorf
20240722	2	3	07/22/-07/26/24	Live Online
20240826	2	3	08/26/-08/30/24	Frankfurt
20240826	2	3	08/26/-08/30/24	Live Online
20240923	2	3	09/23/-09/27/24	Live Online
20240923	2	3	09/23/-09/27/24	Wien
20241104	2	3	11/04/-11/08/24	Frankfurt
20241104	2	3	11/04/-11/08/24	Live Online