Before You Begin
Before you begin using Cisco Crosswork Optimization Engine, Cisco recommends that you complete the following planning and information-gathering steps:
-
User Accounts : Cisco recommends as a best practice that you create separate accounts for all of your users, so that there is an audit record of user activity on the system. Prepare a list of the people who will use Cisco Crosswork Optimization Engine. Decide on their user names and preliminary passwords, and create user profiles for them (see Manage Users).
-
User Roles: Cisco recommends that you use role-based access control to confine users to just the software functions needed to perform their job duties. By default, every new user you create has full administrative privileges. Unless you want to extend the same privileges to every user, you will need to plan a system of user roles, create them, and assign them to the user profiles you create (see Create User Roles).
-
Credentials: Gather access credentials and supported protocols that you will use to monitor and manage your devices. For providers, this always includes user IDs, passwords, and connection protocols. For devices, it includes user IDs, passwords, and additional data such as the SNMP v2 read and write community strings, and SNMPv3 auth and privilege types. You will use these to create credential profiles.
Credential profiles must be present in order for Cisco Crosswork Optimization Engineto access a device or to interact with a provider. Rather than entering credentials each time they are needed, you instead create credential profiles to securely store this information. The platform supports unique credentials for each type of access protocol, and allows you to bundle multiple protocols and their corresponding credentials in a single profile. Devices that use the same credentials can share a credential profile. For example, if all of your routers in a particular building share a single SSH user ID and password, you can create a single credential profile to allow Cisco Crosswork Optimization Engine to access and manage them
-
Tags: Tags are simple text strings you can attach to objects to help group them. Cisco Crosswork Optimization Engine comes with a short list of ready-made tags used to group network devices. You can create your own tags and use them to identify, find, and group devices for a variety of purposes. Plan a preliminary list of custom tags to create when setting up the system, so that you can use them to group your devices when you first onboard them. For example, in addition to type and geolocation, you may want to identify and group them by their location in your network topology (Spine vs. Leaf), or the function they serve on your network (Provider vs. ProviderEdge). You need not have a complete list of tags at first, as you can always add more later, but please note that all the tags you do plan to use must be in place before you need them; you cannot create them "on the fly" (see Manage Tags).
-
Providers: Cisco Crosswork Optimization Engine does not perform route segmentation or configuration changes directly. Instead, it relies on providers, such as SR-PCE and Cisco Crosswork Optimization Engine, to do the basic work of direct interaction with network devices. The provider family determines the type of service that provider supplies to Cisco Crosswork Optimization Engine, and the parameters unique to that service, which must be configured.
Cisco Crosswork Optimization Engine requires you to have at least one SR-PCE configured as a provider to discover devices and to distribute policy configuration to devices. You can choose to have a backup SR-PCE for redundancy. Cisco recommends that you have an optional NSO server installed and configured as a provider in order to automate the configuration of devices to work with Cisco Crosswork Optimization Engine.
-
Devices: Decide how you are going to onboard your devices:
-
Manually, via the UI or importing a CSV file
-
Automatically (with some manual edits), where the SR-PCE discover the devices and onboards them
For more information, see About Adding Devices. To see an overview of each onboarding process, see High-Level Workflows.
-
-
Data Destination(s): Decide which external data destination you are going to use and ensure it is set up to receive input from Cisco Crosswork Optimization Engine. By default, Cisco Crosswork Optimization Engineis configured as the data destination.
Note that you can capture the devices, credential profiles, tags, and providers lists in spreadsheet form, convert the spreadsheet to CSV format, and then upload them in bulk to Cisco Crosswork Optimization Engine. You do this using the Import feature.
You can access CSV templates for each of these lists by clicking the Import icon in the corresponding places in the user interface. Select the Download template link when prompted to choose an export destination path and file name.