Solved: Using SD-WAN 20.15.1 in CML 2.8

hnavi77 · ‎04-02-2025

Dear All,

I need your help to understand something. When I ran the automated script to install SD-WAN in CML 2.8, everything works as expected (https://github.com/cisco-open/sdwan-lab-deployment-tool/).

When I decide to install manually each components on CML 2.8 (Manager, Validator and Controller), using the initial configuration I am only able to see the Manager from the GUI. I tried everything without success... When generating certificate for Validator, i see that the Manager is unable to push the certificate to Validator. At the same time the GUI is not showing at all the Validator even configure with the basic configuration.

Now I am thinking maybe this issue is due to the fact I am not generating the licences from the Cisco Smart Account, due to the manual deployment or any other issue with this version 20.15.1?

Anyway, i don't have any right to use the Cisco Smart Account and to use Plug and Play...

I am curious to understand what's going on...

hnavi77 · ‎04-02-2025

I finally resolved my issue. In order to be able to see all the controllers in the GUI, we need to generate the CSR from the manager and generate the CA certificate + Server Certificates for all Controllers. Then, we need to use SCP to copy the files (RootCA".pem" + Server Certificate".crt" in Validator and Controller and finally install them using the "request root-ca-cert" for CA and "request certificate install" for Server certificate. Once done, the Validator and Controller will show up.

Finally, we will be able to see from the Manager all control connections.

show control connections.

thank you.

View solution in original post

bigevilbeard · ‎04-02-2025

Some good tips here https://learningnetwork.cisco.com/s/question/0D56e0000EBst6LCQR/set-up-cisco-sdwan-with-cml-iac

Please mark this as helpful or solution accepted to help others
Connect with me https://bigevilbeard.github.io

hnavi77 · ‎04-02-2025

Thank you "bigevilbeard", my issue was related to manual configuration not the one automated.

Torbjørn · ‎04-02-2025

Can you post the configurations from these devices? You don't need licenses or a smart account to bring up the controllers. You will however need to use the PNP portal to be able to onboard cEdges.

Happy to help! Please mark as helpful/solution if applicable.
Get in touch: https://torbjorn.dev

hnavi77 · ‎04-02-2025

Hi Torbjorn, i haven't yet onbarded the cEdge. I will let you know if i have some problems.

Thank you.

hnavi77 · ‎04-06-2025

Hello Torbj0rn,

How could I generate licences for my cEdge devices on my CML 2.8 lab, if I don't have the access to the Smart Account and Plug and Play Connect?

***

This is the error I am getting when connecting to the plug and play connect:

Your Cisco.com User ID does not have the privileges required to access Plug and Play Connect...

Any idea, how I can generate those licences for my cEdge? My goal is to install Cisco SD-WAN on my lab without using the automated tasks (https://github.com/cisco-open/sdwan-lab-deployment-tool/).

hnavi77 · ‎04-02-2025

I finally resolved my issue. In order to be able to see all the controllers in the GUI, we need to generate the CSR from the manager and generate the CA certificate + Server Certificates for all Controllers. Then, we need to use SCP to copy the files (RootCA".pem" + Server Certificate".crt" in Validator and Controller and finally install them using the "request root-ca-cert" for CA and "request certificate install" for Server certificate. Once done, the Validator and Controller will show up.

Finally, we will be able to see from the Manager all control connections.

show control connections.

thank you.