Cisco Catalyst Center (formerly Cisco DNA
Center) is a network management system that leverages AI to connect,
secure, and automate customer’s network operations. It harnesses the Catalyst family of switching and wireless through AI-enabled
automation that simplifies the IT experience and streamlines complex network
operations. Offering
operational flexibility, Cisco Catalyst Center can be deployed on-premises on a
physical appliance or in a VMware virtual environment, or in a…
N/A
Cisco SD-Access
Score 8.5 out of 10
N/A
Cisco's Software-Defined Access (SD-Access) provides automated end-to-end segmentation to separate user, device and application traffic without redesigning the network. Cisco SD-Access automates user access policy so organizations can make sure the right policies are established for any user or device with any application across the network.
I think if you have Cisco infrastructure and you are looking to do a big hardware install per se, the plug-and-play feature is really helpful to be able to really quickly push out a config to a bunch of switches. That was really helpful for us. It really sped things up. If you need to push out configuration changes to a bunch of switches at once, it can be helpful, I guess if you plan it out. I guess that's the part I'm struggling with is trying to figure out how to streamline that process, but it has the potential there to be really helpful.
It's well suited in our corporate offices, where all our business users resides and where we can control all their accesses. What doesn't really fit well is when we have our branch fronts, where all the software domain access features aren't utilized to its fullest, due to the fact that customers and users don't really need to have all the security features that SDA provides.
I want to hammer home this swim process. It is amazing how you can upgrade something. It does all the readiness checks for you, does all the compliance checks for you, and it eliminates a lot of potential human error. Maybe you won't copy a file correctly, maybe you didn't check your MD five hash properly. There's a lot of things that if you're doing 50, 60, 70 upgrades over the course of a week or two weeks, you might try to cut corners, or not intentionally, but just human error. You do something repetitive, maybe you skip a step with swim, there is no skipping a step. It checks compliance, it checks your iOS, you download your iOS straight from Cisco from Catalyst Center. It eliminates any fatigue that you might have whenever it comes to doing repetitive things for weeks on end.
We started using the product quite early and as I understand it was quite a new product for Cisco, so it's been developed quite aggressively. So even though we thought we were running the latest recommended version, a month later we realized that we are so much behind that it might take a week to upgrade to the latest recommended versions. In a way, it's good because it's developed so fast, but it's hard to keep up with all the implementations. And last upgrade for us took three weeks because we were so behind and it just takes longer because we've got large-scale deployment.
We utilize Cisco Catalyst Center frequently for many tasks including SWIM and vulnerability mitigation which has provided better options than manual processes
Cisco DNA Center is going to help us in security, simplicity and ease of administration. Cisco DNA Center is complete management and control platform that simplifies and streamlines network operations. Cisco DNA Center offers a single dashboard for every core function in your network. With this platform, IT can become more nimble and respond to changes and challenges faster and more intelligently.
El soporte de CISCO DNA Center es muy bueno, responden a mis dudas pero no he tenido oportunidad de reportar un incidente o determinar un tiempo de respuesta critico. The support of CISCO DNA Center is very good, they answer my questions, but I have not had the opportunity to report an incident or determine a critical response time.
As far as my experience with SD-Access -I'd say things that can be improved are - better functionality with ISE, ease to understand licensing and better documentation for configuration (add-ons, etc), and licensing.
The software upgrades and ability to integrate with the wireless telemetry data set Cisco DNA Center ahead. However the automation with Change Control, Intent and better path mapping (even across MPLS and WAN Circuits) make NetBrain a needed tool to get that gives you that visibility and flexibility. Solarwinds has the ablity to view Netflow which would be an interesting add to DNA Center or an easier path to get or integrate with Stealthwatch.
Automation, pushing template-based configuration to multiple devices in one push saves time and manpower. Assurance helps trace issues related to devices, clients, and provide the troubleshoot as the best practices. Segmentation, with the use of the SGT tags, we are able to achieve segmentation and micro-segmentation securely.
Initial cost is pricy, but management needs to understand the value this provides so make them aware
Reporting could be improved in more detail in our opinion, but it gives a great overview of your environment. High level overview for managers would be greatly appreciated with as little or much detail as needed for certain Cisco gear.
Does not work as well with some older Cisco equipment because they want you to buy new, again the cost impact comes into play.