Re: DNA failing when using HTTPS

dtwoods83 · ‎03-03-2022

I am able to login to the device using HTTPS. But DNA is saying that it has failed to connect. Is there something special I need to enable?

Here is the config for HTTPS on the 9300 switch:

ip http server
ip http authentication aaa
ip http secure-server
ip http max-connections 48
ip http client source-interface Vlan xxx
destination transport-method http

Priv level is 15

DNA version 2.2.2

dtwoods83 · ‎03-03-2022

I have added these commands

ip http secure-active-session-modules webui
ip http session-module-list webui NG_WEBUI
ip http session-module-list pki OPENRESTY_PKI
ip http active-session-modules pki

Still not working

yusun3 · ‎03-16-2022

Hi dtwoods83,

Do you mean that the reachability of the device in the inventory is unreachable?
Please check the following Discovery prerequisites have been met before you discover the device.

• Understand that the preferred network latency between Cisco DNA Center and devices is 100 ms round-trip time (RTT). (The maximum latency is 200 ms RTT.)
• Ensure at least one SNMP credential is configured on your devices for use by Cisco DNA Center. At a minimum, this can be an SNMPv2C read credential.

Here's a link for your further reference.
https://www.cisco.com/c/en/us/td/docs/cloud-systems-management/network-automation-and-management/dna-center/2-2-2/user_guide/b_cisco_dna_center_ug_2_2_2/b_cisco_dna_center_ug_2_2_2_chapter_010.html

Best regards,