Re: Questions about DNA

John Ventura · ‎09-20-2017

Hello Community,

I am new to Digital Network Architecture technology and I have a couple of questions:

What are the protocols that interact between fabric devices / ISE / DNA Center?
Can you run DNA Center on VM?

Thank you for your reply

- John

ybauwens · ‎09-26-2017

DNA on VM: yes, runs on VM but NOT YET supported. Planned for later on.

Alexandro Carrasquedo · ‎09-26-2017

Between ISE and your fabric devices, cisco trustsec is used

Between ISE and DNA Center, PxGrid is used.

allen00874 · ‎06-10-2018

Hey Alex,

I just want to clarify...

In traditional ISE deployments (non DNA Center) ISE communicates with network device (NADs) using RADIUS. The TrustSec is how polices are applied.

Are Fabric devices not seen as NADs by ISE when DNA Center is used?

Allen

Mohammad Roos · ‎06-11-2018

Hi Allen,

Each Edge Node in the fabric is seen as a NAD on ISE.

Regards

Mohammad

allen00874 · ‎06-11-2018

Hello Mohammad,

So is it safe to say that in DNA Center implementations the protocol that interacts between fabric devices and ISE is RADIUS and not Cisco Trustsec or are there other considerations?

Regards,

Allen

Mohammad Roos · ‎06-11-2018

Yes you are right,

ISE sends typical radius messages to the edge switches or WLCs,

The NADs will use the loopback interface to send radius messages, and you will see these entries normally in the ISE.

No other considerations.

You need to be familier with trustsec and SGTs to apply policies that are not a must.

You can start with simple authorization profiles without using the tustsec.

allen00874 · ‎06-11-2018

Thank you Mohammad.

Allen

Farhan Mohamed · ‎07-10-2018

1-Ans- Trustsec, Pxgrid, NDP, SMNP etc are few protocols which work in DNA center, there are many as well.

2.Ans- As of Now DNA center cannot run as VM for ver 1.1, It might be supported in future versions.