Versions Compared

Old Version 9

changes.mady.by.user Gireesh Geetha

Saved on

compared with

New Version 10

changes.mady.by.user Gireesh Geetha

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

  1. From the Grid tab, select the Grid Manager tab, and then click Discovery.
  2. For the Grid: Click Edit –> Grid Discovery Properties in the Toolbar.
    For the Probe member: Select the member check box, and then lick Edit –> Member Discovery Properties in the Toolbar.
  3. Click the Credentials tab. To override Grid settings for a Probe member, click Override.
  4. Click the Add icon to add a new community string entry to the list. Click the Read Community cell and enter a text string that the management system sends together with its queries to the network device during discovery.
    A community string is similar to a password in that the discovered device accepts queries only from management systems that send the correct community string. Note that this community string must exactly match the value that is entered in the managed system. If you have a substantial list of community strings in this list and need to find a specific string, enter the value in the Go To field and click Go. To remove a community string entry, select the check box and click the Delete icon.
  5. Optionally, you can test the credentials you added to the list by selecting a community string check box and clicking Test Credentials, as described in Testing SNMP and CLI Credentials.
  6. To export the entire list of community strings in a table file readable by a spreadsheet program, click the Export icon and choose Export Data in Infoblox CSV Import Format. To export all data in a different format, click the Export icon and choose Export Visible Data.

...

  1. From the Grid tab, select the Grid Manager tab, and then click Discovery.
  2. For the Grid: Click Edit –> Grid Discovery Properties in the Toolbar.
    For the Probe member: Select the member check box, and then lick click Edit –> Member Discovery Properties in the Toolbar.
  3. Click the Credentials tab -> SNMPv3 tab. To override Grid settings for a Probe member, click Override.
  4. Click the Add icon to add a new SNMPv3 authentication entry to the list. Enter the Name for the new credential; followed by the Auth Protocol, Auth Password, Privacy Protocol, Privacy Password, and the Order value, which is the order used for attempting use of the SNMP credentials. You can press Tab to navigate across the fields for the credential entry.
  5. If you have a substantial list of SNMPv3 entries and need to find a specific entry, enter the value in the Go To field and click Go.
  6. To remove an SNMPv3 authentication entry: select the check box and click the Delete icon.
  7. To export the entire list of community strings in a table file readable by a spreadsheet program, click the Export icon and choose Export Data in Infoblox CSV Import Format.
    1. To export just the subset of data that is visible in the dialog, click the Export icon and choose Export Visible Data.
    2. A Show Passwords option allows the secret keys to be visible in the import.

...

  1. From the Grid tab, select the Grid Manager tab, and then click Discovery.
  2. For the Grid: Click Edit –> Grid Discovery Properties in the Toolbar.
    For the Probe member: Select a member check box, and then click Edit –> Member Discovery Properties in the Toolbar.
  3. Click the Credentials tab -> CLI tab. To override Grid settings for a Probe member, click Override.
  4. Click the Add icon to add a new CLI username/password entry to the list. Select the Credential Type, which can be one of two choices:
  5. In the Login Credentials list, click the Add icon to add a new CLI username/password entry:
    • Protocol: Select SSH or Telnet. Infoblox recommends the use of SSH.
      • SSH — SSH credentials require both a username and password. The default protocol is SSH.
      • Telnet — In Network Insight, Telnet credentials must use both a username or password.
      Note: Should you choose to use a Telnet-based credential, Network Insight requires both the username and password for the login account. This also applies when you override the CLI credentials on objects such as a fixed address, host or IPv4 reservation. For more information, see the section Defining CLI Credentials Settings for Objects.
    • Name — Username for the CLI login account.
    • Password — Login password for the CLI login account.
    • Comment — A text comment describing the CLI login account.
    • Order — By default, Network Insight inserts the new credential record at the bottom of the credentials list, which is reflected by its Order value, showing the order used for attempting use of CLI credentials. Enter a new value in the Order field if you want the new credential to be in a position other than the last in order.
  6. In the Enable Credentials list, click the Add icon to add a new Enable password entry:
    • Protocol — SSH or Telnet. Infoblox recommends the use of SSH.
    • Password — Enable password for device configuration access.
    • Comment — A text description.
    • Order — By default, Network Insight inserts the new record at the bottom of the list, reflected by its Order value, showing the order used for attempting use of the CLI credentials. Enter a new value in the Order field if you want the new credential to be in a position other than the last in order.
  7. Click Save & Close to save changes. You may also select Save to keep the dialog box open for further changes. You can press Tab to navigate across the fields for the credential entry.

...

You can override CLI credentials, and enable password credentials, for IPAM objects such as fixed addresses, IP reservations, and host objects. You can also do so for networks under IPAM and DHCP.
When you do so, you define and test the CLI credentials and enable passwords locally to the object.

...

After configuring SNMP and CLI credentials, you can click Test Credentials in the SNMP Credentials or CLI Credentials panel to test the credentials. Credential testing ensures that the configured credentials work for as many devices and networks as possible. The procedure in this section applies at to both the Grid and the member levels. You can override the Grid settings at the member level.
For CLI credentials, you can test an admin login name and password tuple as well as a following enable credential, if necessary. You can also override CLI credentials and enable credentials for IPAM objects such as fixed addresses, IP reservations, and host objects. You can test any credential set, an enable credential , or both in combination against any device within any network view. Network Insight sets the login sequence to match the command-line standards for the selected device.
To test SNMP credentials or CLI credentials, complete the following:

  1. From the Grid tab, select the Grid Manager tab, and then click Discovery.
  2. For the Grid: Click Edit –> Grid Discovery Properties in the Toolbar.
    For a Probe member: Select a member check box, and then click Edit –> Member Discovery Properties in the Toolbar.
  3. In the Grid Discovery Properties or Member Discovery Properties editor, click the Credentials tab -> SNMPv1/v2 tab, SNMPv3 tab, or CLI tab.
  4. Select the check box or check boxes for the credentials and/or enable credentials (if applicable) you want to test. For a Probe member, click Override, and then select the credential check boxes.
  5. Click Test Credentials.
  6. In the Test SNMP Credentials editor, complete the following:
    • IP Address: Select this to test the credential against an IP address of a reachable device in a network (even if it has not been discovered or managed through NIOS) within a specified network view. Enter the IP address in the field. Ensure that you select the respective network view in which this IP address resides.
    • Network View: If you have multiple network views, select the network view in which the IP address resides from the drop-down list. If you have only one network view, which is the default view, the Network View drop-down list is hidden by default. NIOS conducts credential testing for the IP address in the selected network view.
    • Device: Select this to test against a selected device. Click Select Device and the Device Selector appears. If you have multiple network views, you must first select the network view in which the device resides from the Network View drop-down list, located at the upper left-hand corner of the selector. If you have only one network view, which is the default view, the Network View drop-down list is hidden by default. You can check the device categories under All Devices to locate discovered switches and routers or any unmanaged devices previously detected by discovery under NIOS. You can explore categories including Discovered Switches/Routers, Microsoft Windows Devices (this can include items such as Windows Servers of various types), Router and Wireless Access Point Devices, Unmanaged, and others. By default, all devices previously discovered appear in this selector. If you have a long list of devices, you can enter a device name search value or a search expression in the Find field and click Go. You can also click Show Filter to narrow down your selection by selecting available filters. Click OK after you have selected a device and its corresponding network view.
  7. Click Start to begin testing the credential against the IP address or selected device. The communication and testing processes appear in the lower pane of the editor.
    Note: If the specified IP address is excluded from all discovery ranges or is not part of the selected network view, or the credential is entered with missing information, a message appears at the top of the editor after clicking Start. Otherwise, the test begins and its process and results appear in the lower pane of the editor.

...

Seed routers can be defined only on Probe appliances. You can define seed routers that NIOS uses in quickly performing network discovery. Definition of seed routers is highly recommended for IPv4 networks and is required for IPv6 networks. For the discovery of any IPv6 networks, you must use seed router values that comprised of at least one well-connected IPv6 router, preferably with routes to all other networks to be managed. In some cases, seed routers may not have the full routing tables or be unable to provide full information for some reason. The general rule of thumb is that more seed routers are better, but the connectivity of seed router(s) also helps determine how many seed routers you need. Avoid having more seed entries than necessary.
You must associate each seed router with a network view so the appliance can properly discover virtual networks when using multiple seed routers.

...

IPv6 Seed Router Usage

For the discovery of any IPv6 network, you must use seed router values, comprised of at least one well-connected IPv6 router, preferably with routes to all other networks to be managed. In some cases, seed routers may not have the full routing tables or be unable to provide full information for some reason. The general rule of thumb is that more seed routers are better, but the connectivity of seed router(s) also helps determine how many seed routers you need. Avoid having more seed router entries than necessary.

...

Anchor
bookmark1423
bookmark1423
Anchor
Configuring Cisco Application Policy Infrastructure Controller (APIC)
Configuring Cisco Application Policy Infrastructure Controller (APIC)
Configuring Cisco Application Policy Infrastructure Controller (APIC)

To configure Integrating Cisco APIC on NIOS , complete the following:

...

provides visibility into your Cisco APIC infrastructure, which allows you to view and manage discovered IP addresses from Cisco ACI cluster. You can discover the SDN Controller and Elements (Spine, Leaf, End Points) using the Network Insight feature. You can view devices discovered by a discovery member in the Devices tab. For information, see Viewing Discovered Devices and their Properties.

To configure Cisco APIC on NIOS, complete the following:

  1. From the Grid tab, select the Grid Manager tab, and then click Discovery.
  2. Select the member check box, and then click Edit –> Member Discovery Properties in the Toolbar.
  3. Click the Cisco APIC Configuration tab and click the Add icon and complete the following:

...

    • Protocol: Select HTTP or HTTPS as the protocol. When you select HTTPS, you must upload the corresponding SSL CA certificate to the Grid in order for NIOS to communicate with Cisco APIC, as described in Managing Certificates

...

    • .
    • Network View: Select the network view to which the device is associated.
    • Username: The login name of Cisco APIC.
    • Password: The login password of Cisco APIC.
    • Address: Enter the hostname or IP address of Cisco APIC.
    • Comment: Enter additional information Cisco APIC.
  2. Click Add to add Cisco APIC.
  3. When finished, click Save & Close.
  1. For Grid: From the Grid tab-> Grid Manager tab -> Discovery service, select Edit -> Grid Discovery Properties from the Toolbar.
    For members: From the Grid tab-> Grid Manager tab -> Discovery service, select Edit -> Member Discovery Properties from the Toolbar.
    For networks: From the IPAM tab, select the network check box and click the Edit icon.
  2. In the Grid Discovery Properties, Member Discovery Properties, or (IPv4 or IPv6) Network editor, click the Polling tab, and then complete the following in the Advanced tab:
    For Probe members and networks, click Override to override the Grid settings.
    • TCP Scan Technique: Select the TCP technique you want to use for the discovery. The default is SYN. For more information, see TCP.
      • SYN: Select this to quickly perform scans on thousands of TCP ports per system, never completing connections across any well-known port. SYN packets are sent and the poller waits for a response while continuing to scan other ports. A SYN/ACK response indicates the protocol port is listening while a RST indicates it is not listening. The SYN option presents less impact on the network.
      • CONNECT: Select this to scan IPv6 networks. Unlike the SYN option, complete connections are attempted on the scanned system and each successive TCP protocol port being scanned.
      In the port table, select the check boxes of the TCP ports you want to discover. You can select all ports by clicking the check box in the header.
      Optionally, you can click the Add icon and complete the following to add a new port to the list.
      • Port: Enter the port number you want to add to the list. You must enter a number between 1 and 65535.
      • Service: Enter the name of the service.

...

  1. .