Buy or Renew
Buy or Renew
Cisco DNA Center is now Catalyst Center. New name, same great product. Learn more about Catalyst Center here.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
934
Views
0
Helpful
5
Replies

Not able to edit switch configuration

Go to solution
akrapf_007
Level 1
Level 1

‎12-03-2023 07:32 AM

I feel this is a fundamental question, but i need to ask as a newbie here.  I have been trying to figure out how to edit a switch configuration once it has been discovered and onboarded into DNA Center.  Command Runner won't let me use any command to edit the config.  I am logged in as a "super admin", so what am I missing?

When I think of central management, having access to all CLI commands as admin should be allowed.  It's got to be my understanding of how to get there, but I can't find it online or in the help documents.

Any thoughts?

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
balaji.bandi
Hall of Fame
Hall of Fame

‎12-03-2023 10:11 AM

You can use templates and push to device, or you can change on device cli (using SSH) and re-sync from DNAC also works.

DANC device configuration management :

https://blogs.cisco.com/networking/cisco-dna-center-and-device-configuration-management

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

View solution in original post

0 Helpful
5 Replies 5

Go to solution
marce1000
VIP
VIP

‎12-03-2023 10:00 AM

 

         >... Command Runner won't let me use any command to edit the config.
               - What happens then ? What errors are you seeing ? What....

 M.



-- Each morning when I wake up and look into the mirror I always say ' Why am I so brilliant ? '
    When the mirror will then always repond to me with ' The only thing that exceeds your brilliance is your beauty! '
0 Helpful

Go to solution
akrapf_007
Level 1
Level 1
In response to marce1000

‎12-03-2023 10:29 AM

I get a "Command is blacklisted, execution is not supported". 

0 Helpful

Go to solution
balaji.bandi
Hall of Fame
Hall of Fame

‎12-03-2023 10:11 AM

You can use templates and push to device, or you can change on device cli (using SSH) and re-sync from DNAC also works.

DANC device configuration management :

https://blogs.cisco.com/networking/cisco-dna-center-and-device-configuration-management

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

Go to solution
akrapf_007
Level 1
Level 1
In response to balaji.bandi

‎12-03-2023 10:36 AM

If I read this correctly, you are saying there is no way to modify a switch config within DNAC?  Lets say all I want to do is add an NTP reference.  I would have to create a template of the entire switch config and then push it to the switch?

0 Helpful

Go to solution
Preston Chilcote
Cisco Employee
Cisco Employee

‎12-06-2023 09:40 AM

In general config changes are done through the Provision workflow (aka Day-N Automation).  For something as simple as an NTP or DNS server you would make these changes in Design->Network Settings and then Provision all the devices that need the change to be made.  The site hierarchy makes it possible to change these settings only one time for all or part of the network and push the changes to those sites in just a few clicks.

For features that aren't represented in Design Settings, you can use templates.  You don't have to templatize the entire config, which is nice for brownfield scenarios like yours.  The commands you templatize will be applied with the same logic as if you copied and pasted them yourself, meaning they just get added to the existing config.  This has 2 extra advantages though:

1) If you need to change the configs in the template on multiple devices, it is again as simple as changing the necessary lines in the config template once, then applying to multiple devices.  This saves time when lots of devices are invovled, and helps prevent copy/paste errors, which I think every IT person has an experience of screwing up when done manually.

2) When the config is pushed through Cisco DNA (aka Catalyst Center) it can also start monitoring those configs for CLI Template Compliance, meaning that if those lines of config have change (probably due to manual changes), you will get alerted.  

I like to recommend getting started with  Day-N automation on greenfield devices (after onboaridng them via Plug and Play), but the CLI template compliance features makes it reasonable to redo all or part of a brownfield device's config via the Provision workflow.  

The last advantage of templatizing is config simplification.  It's often a nightmare to manage a network where every access port has a different config, so trying to build a template is a good time to think about how one can simplify that to ease network operations.

For more information you can start leveraging Cisco Customer Success. There are webinars called Ask The Experts (ATX) delivered weekly: 

https://learningnetwork.cisco.com/s/atx-customer-experience

0 Helpful
Customers Also Viewed These Support Documents