Cisco Prime NCS: Converged User, Access and Policy Management

Unified Management for Borderless Networks
Cisco Prime Network Control System

Disclaimer
Many of the products and features described herein remain in varying stages of development and will be offered on a when-and-if-available basis. This roadmap is subject to change at the sole discretion of Cisco, and Cisco will have no liability for delay in the delivery or failure to deliver any of the products or features set forth in this document.

Agenda
Mobile devices created challenges when using focused tools
Understanding Cisco Prime
Cisco Prime Network Control System (NCS)
Addressing client access issues with Cisco Prime NCS
Cisco Prime NCS v1.0 deep dive
Comprehensive Wireless Lifecycle Management
Scalability, Deployment Options and Services
Summary

Influx of Mobile Devices Creates IT Challenge
IT Consumerization: Now a Reality
Smartphone adoption is growing at 50%+ annually*
By 2015, tablets will constitute 50% of laptop sales**
ORGANIZATION
TIME

The User to Device Ratio Has Changed
IT Resources Stay The Same
Borderless User
Anytime, Anywhere access
One user: Many devices
Fixed User
Wired access
One user: One device
Mobile User
Wireless access
One user: Local devices
Access Evolution
Early 90’s
Today
Late 90’s
Effectively support users with box management
Need for policy & control
Need for operational efficiency

What is Cisco Prime?
Cisco Prime …..
Is a strategy for innovative management
Supports enterprise and service providers
Delivers service-centric foundation and set of common operational attributes
Cisco Prime offers…..
A portfolio of enterprise and service provider products
Integrated lifecycle management across Cisco architectures and technologies
Intuitive workflow-oriented user experience
Cisco Prime benefits…
Simplified and predictable network management
Increased operations efficiencies
Lowered total cost of ownership
For more information visit Cisco Prime Websites

Cisco Prime for Enterprise Product Feature Summary
100% support
Partial support
1
1
2
3
1 Day-one support for selected products only
2 Includes sub-set of Smart Interactions features
3 In conjunction with Cisco Identity Services Engine (ISE)

Cisco Prime Network Control System
Converged Access Management for Wired and Wireless Networks
Wireless | Wired | Security Policy | Network Services
Unified Management
Operations
Users
Policy
Improved Network Visibility  Faster Troubleshooting  Eliminate Configuration Errors

Networks are Converging
Wireless considered as an EQUAL MEANS of ACCESS
Aligning to Today’s Operational Environment
Teams are Converging
Cost pressure requires a ”DO MORE WITH LESS” operational model
Visibility Must Converge
Focused solutions will deliver DIMINISHING RETURNS

Aligning to Today’s Operational Environment
One Network  One Team One Solution

Client Devices: Top Contributor to Network Performance Problems
A recent survey shows that respondents view client devices as the TOP contributor to wireless network performance problems

From “Box Management” to “User-focused Management”
Integrated Wired & Wireless Monitoring and Troubleshooting
Any End-user Device
Any Location
Any Network
Wired
Access
Wireless
Access
Remote
Access
UNIQUE PERSPECTIVE
Extends to USERS and ENDPOINTS

Evolving User Access Management
Traditional Approach
Cisco Prime NCS Approach
Network
Generalist
Wired
Expert
Wireless
Expert
Security
Expert
Converged
Access
Visibility
Wireless
Management
Security
Policy
Wired
Devices
Less time and resources needed
Single view of critical data
Improves IT efficiency
Consumes lots of time and resources
Manual correlation of data
Inefficient operational model

The Goal: Get Users Back On-line Faster
Answer the who, what, when, where and how access related questions

Optimize Network Operations
Troubleshooting Laptop Connectivity Issues Example
Traditional Approach
Multiple teams/tools to provide resolution:
Wireless NetOps – WCS with MSE
Verify user credentials
Confirm laptop associates to network
Observe time laptop may connect
Validate current location
Wired NetOps – LMS
Check port and connectivity
Security Ops – NAC and ACS View
Check laptop conforms to AUP
Confirm access to VLAN for resource/application is permitted
Where?
LMS
MSE
?
?
How?
?
?
Who?
?
WCS
NAC
When?
What?
WCS

Cisco Prime NCS Approach
One platform with consolidated view for immediate resolution:
Account verified
Connectivity confirmed
Endpoint complies with AUP
Permitted time of day
Impermissible location for laptop
Problem identified/Case closed
How?
Where?
What?
When?
Who?
Optimize Network Operations
Troubleshooting Laptop Connectivity Issues Example
Unified Management

Cisco Prime Network Control System v1.0

Enhanced User Experience
Information architecture: Seamless navigation and workflows align to tasks
Modern interaction behavior: Maintains context while performing network management tasks
Smart tables & advanced filtering: Quickly view additional information without leaving the workflow
Ever-present alarm views & browser: Always-on visibility to potential end-user problems to speed remediation
Designed to Work With How IT Approaches Problems
Empower first-tier support teams to solve more problems
Release upper-tier teams to focus on strategic projects

Single Integrated User and Access Dashboard
High-level View of Key Metrics with Contextual Drill-down to Detailed Data
Flexible platform: Accommodates new and experienced IT administrators
Simple, intuitive user interface: Eliminates complexity
User-defined customization: Display the the most relevant information
19
© 2011 Cisco Systems, Inc. All rights reserved.
Lumos Features DRAFT
Cisco Confidential

Unified User and Endpoint Services
Correlated and focused wired / wireless client visibility
Client health metrics
Client posture & profile
Client troubleshooting
Client Reporting
Unknown device ID input
Clear view of the end-user
landscape
Who is connecting
Using which device
Are they authorized

Integrated Access Infrastructure Visibility
Wired & wireless discovery and inventory
Add / detect infrastructure devices such as switches, WLAN controllers and access points
Comprehensive access infrastructure reporting
View the access infrastructure as a whole or as discrete technologies
Stolen asset notification
Track when devices presumed stolen come back online
21
Cisco Confidential

Spatial Maps
Provides Context as to Where the Wired Endpoint Resides
Associate access wired infrastructure and clients with a floor or building

Identity Services Engine Integration
Converged Security and Policy Monitoring and Troubleshooting
Streamline
Service
Operations
Enhance
Infrastructure
Security
Enforce Compliance
Shows where security & policy problems exist
Retrieves information directly from clients: Wired, wireless - authenticated, unauthenticated
Reduces the time to troubleshoot security & policy problems
Client posture status and client profiled views
Drill deeper into security & policy issue details
Direct linkage from Cisco NCS to Cisco ISE with contextual filtering

Comprehensive Wireless Lifecycle Management
Full Range of Lifecycle Capabilities

PlanningRF Prediction Tools Assist in Designing Optimal WLANs
Instant Access to Tools
Easily Visualize the Ideal RF Environment
Hierarchical Maps
Integrated Planning Tool
Import floor plans from 3rd-party tools
Configure access point placement, coverage, and other variables
Generate equipment proposal
Hierarchical Maps
Design multiple buildings, floors, regions
Location and Voice Readiness Tools
View performance and coverage estimates
Planning Tool
Eliminate improper RF designs and coverage problems
Built-in tools perform site-surveys, RF reassessments and RF readiness evaluation

DeploymentFlexible Configuration Templates Streamline Operations
Instant Additional Info.
Industry’s Broadest Array of Integrated Configuration Templates
Customizable Templates
Apply common configurations across one or more controllers and access points
Role-based access control and partitioning
Standalone access point monitoring and migration
Control power consumption with energy wise integration
Controlled wireless guest access
Easily Define Configuration Parameters
Fast creation and maintenance of configurations for WLAN controllers, APs, and MSE
Maximizes uptime and improves operational efficiency
Deploy large, multi-site networks and managed-service alike

Monitoring and Troubleshooting Quickly Access the Information You Need – When You Need IT
Coverage Visualization
Centralized Monitoring of the entire WLAN and LAN
Identify and diagnose RF Interference events, air quality and interference security threats with Cisco CleanAir
Robust fault event and alarm management
Guided step-by-step client troubleshooting tools
Ever-present search for cross network historical information
Cisco ISE and ACS views for additional endpoint data
Color-Coded Icons
Ever-present Alarm Summary
Efficiently assess, prioritize and manage RF interference issues
Analyze problems and misconfigurations for all client devices across all connection media
Troubleshoot large-scale LAN and WLAN environments with minimal IT staffing
Quickly discover events occurring outside baseline parameters

Ever-Present Search
Simplified Customization of Display
Mapping HierarchyandIcons
(Expandable)
Easily Monitor Each Location
Quick Access To Tools
Ever-Present Alarm Summary(Expandable)
Heat Map of Each Location

Remediation Returning the Network to Optimal Performance
Streamlined Workflows
1
Integrated workflows and tools:
Receive performance degradation notices
Quickly asses service disruptions
Research resolution
Take action
CleanAir alerts summaries and reports identify where poor air quality and interferers exist
Security dashboard and index show current security status
Voice Tools for customized queries to address VoWLAN problems
2
3
Security Dashboard
Diagnose the RF environment and mitigate interference from Wi-Fi and non-WiFi sources
Quickly assess and understand ways to improve the security index of the network
Quickly discover events occurring outside baseline parameters

OptimizeContinuous Improvement
Long term historical reporting and trend analysis
Extensive on-demand and automatic reporting
Fully customizable
Focused compliance reporting
Alarm and event forwarding to 3rd-party solutions
Output to CSV of PDF
Effectively plan for future capacity, while properly controlling costs
Align the reporting structure to your business or operational environment
Understand common trends and top users of resources to right-size the network environment

Services Management and Integration

Unprecedented Scalability
Complete lifecycle management of hundreds of wireless LAN controllers from a centralized location
Rich monitoring and troubleshooting for Cisco Catalyst Switches
Visibility into key performance metrics – interface ports, endpoints and users and switch inventory

Virtual Appliance
Physical Appliance
Appliance Delivery Models
Physical and Virtual
Application & Components
Application & Components
Cisco Provided
Cisco Provided
OS
OS
Customer Provided
Cisco-branded Hardware
(1RU)
Virtual Infrastructure
Discontinuation of software binaries
- Replaced by new Complete Appliance Model -

Cisco WCS to Cisco Prime NCS Migration
34
Cisco Prime NCS
Cisco WCS 7.0.X
Licenses
Multi-tier License Model
Singlei-tier License Model
WCS Base License
(Examples: WCS-APBASE-X or WCS-WLSE-APB-X)
Prime NCS License
(Example: L-NCS-1.0-X)
WCS Plus License
(Examples: WCS-Plus-X or WCS-WLSE-Plus-X)
Database*
Must be on WCS 7.0.164.0 or 7.0.164.3
1:1 Upgrade
*Note: WCS 7.X is the last release running on CiscoWorks Wireless LAN Solution Engine (WLSE)
Cisco Confidential

Mission Critical Wireless
Wireless LAN Services Converged Management of Borderless Networks
Plan
Identify mobility solutions that align to your business strategy
Cisco Unified Wireless Network Readiness Assessment
Optimize mobile connectivity with enhanced performance, security and reliability
Wireless LAN Network Assessment
Ensure the architecture can support the solutions
Wireless LAN Architecture Design
Build
Design a secure, high performance network for mobile collaboration
Wireless LAN Planning and Design
Accelerate ROI with efficient migration and implementation
Wireless LAN Implementation
Run
Lower TCO with out-tasked management and monitoring
Wireless LAN Remote Management Services
Improve efficiency and performance with network intelligence
Wireless LAN Optimization
Enable the Architecture
Enable Business Solutions
Enable a Smart Network

One Network - One Solution
Converged Access Management for Borderless Networks
Improve IT Productivity
Enable the Workforce
Single Unified View
Provide reliable access to network services
Visibility at the access layer as networks become borderless
Address problems where most issues occur - The endpoint
Single viewpoint for wired, wireless, security& policy management
Unprecedented visibility and control
Direct access to Cisco support and services
Empower first-tier to address issues without escalation
Resolve problems faster with logical workflows
Improve resource productivity, lower TCO

Cisco Prime NCS: Converged User, Access and Policy Management

by Cisco Wireless on Jun 23, 2011

Accessibility

Categories

Tags

Upload Details

Usage Rights

1 Embed 4

Statistics

Cisco Prime NCS: Converged User, Access and Policy Management — Presentation Transcript