The documentation set for this product strives to use bias-free language. For the purposes of this documentation set, bias-free is defined as language that does not imply discrimination based on age, disability, gender, racial identity, ethnic identity, sexual orientation, socioeconomic status, and intersectionality. Exceptions may be present in the documentation due to language that is hardcoded in the user interfaces of the product software, language used based on RFP documentation, or language that is used by a referenced third-party product. Learn more about how Cisco is using Inclusive Language.
Introduction
The Cisco Application Centric Infrastructure (ACI) is an architecture that allows the application to define the networking requirements in a programmatic way. This architecture simplifies, optimizes, and accelerates the entire application deployment lifecycle. Cisco Application Policy Infrastructure Controller (APIC) is the software, or operating system, that acts as the controller.
This document describes the features, issues, and limitations for the Cisco APIC software. For the features, issues, and limitations for the Cisco NX-OS software for the Cisco Nexus 9000 series switches, see the Cisco Nexus 9000 ACI-Mode Switches Release Notes, Release 16.1(1).
For more information about this product, see "Related Content."
Date |
Description |
October 4, 2024 |
In the Miscellaneous Compatibility Information section, added:
● the latest recommended CIMC versions.
|
September 30, 2024 |
In the Virtualization Compatibility Information section, added:
● support for VMware vSphere 8.0.
|
August 1, 2024 |
Release 6.1(1f) became available. |
Product Impact |
Feature |
Description |
Base Functionality |
Cisco ACI border gateways |
With the Cisco ACI border gateway (BGW) solution, you can now have a seamless extension of a Virtual Routing and Forwarding (VRF) instance and bridge domain between fabrics. The Cisco ACI BGW is a node that interacts with nodes within a site and with nodes that are external to the site. The Cisco ACI BGW feature can be conceptualized as multiple site-local EVPN control planes and IP forwarding domains interconnected by a single common EVPN control and forwarding domain. For more information, see the Cisco APIC Layer 3 Networking Configuration Guide, Release 6.1(x). |
Base Functionality |
Deploying remote leaf switch fabric ports on L3Outs as a routed sub-interface |
You can now deploy remote leaf switch fabric ports on user tenant L3Outs and on SR-MPLS infra L3Outs as a routed sub-interface. For more information, see the Cisco APIC Layer 3 Networking Configuration Guide, Release 6.1(x). |
Base Functionality |
Support for new PIDs for virtual Cisco APICs on ESXi hosts |
Two new virtual Cisco APIC PIDs have been introduced: VAPIC-S and VAPIC-L. For more information, see Deploying Cisco Virtual APIC Using VMware vCenter. |
Ease of Use |
Preview of the next generation user interface |
This release introduces a preview of the next generation Cisco APIC user interface. With this preview, you can get an idea of upcoming development of the GUI. You cannot make any configuration changes using the new GUI. For more information, see the Cisco APIC Getting Started Guide, Release 6.1(x). |
Interoperability |
Cisco ISE and APIC integration for group policy and identity exchange |
Integrating Cisco ISE with Cisco ACI provides a solution that allows Cisco ISE and APICs to communicate and share context information using Cisco pxGrid (Platform Exchange Grid). This integration enables the exchange of group information between Cisco APIC and ISE and is part of the Common Policy architecture, which supports the sharing of group context among various controllers connected to ISE as a central context exchange hub. For details about the Cisco APIC and ISE integration, see the Cisco APIC and Cisco ISE Integration document. Note: Cisco ISE and Cisco APIC integration is a Beta feature in the 6.1(1) release and not intended for production deployments. Use Beta features in non-production environments and be aware that they are subject to change. |
Interoperability |
Support for Cisco Nexus Dashboard Insights traffic analytics |
The Cisco Nexus Dashboard Insights traffic analytics feature automatically discovers services and visualizes flows by matching well-known TCP Layer 4 ports to their corresponding service endpoint categories, and identifies congestion, latency, and traffic drops. Traffic analytics provides detailed information about which services are running on the data center switches and the clients that are connected to these services. Traffic analytics also provides support for troubleshooting traffic issues between different source and destination endpoints and collects data transfer metrics. You can monitor the traffic without programming subnet rules. Once enabled, traffic analytics is pervasive monitoring. When you enable the traffic analytics mode in Nexus Dashboard Insights, the REST API initiates a request to the switches in the Cisco ACI fabric and Cisco APIC enables the traffic analytics mode on the switches. The switches then export the flow records directly to Nexus Dashboard Insights. To confirm the configurations on the switch, use the show flow monitor and show flow exporter commands. An in-band EPG is used for connectivity between Nexus Dashboard Insights and the Cisco ACI fabric. For other relevant prerequisites, see the Prerequisites section in the Cisco Nexus Dashboard Insights Fabrics, Release 6.5.1 - For Cisco ACI article. For more information about traffic analytics, see the Cisco Nexus Dashboard Insights Analysis Hub, Release 6.5.1 - For Cisco ACI article. |
Licensing |
Proxy authentication |
Proxy authentication is now supported as an optional feature. To use this feature, you must configure and enable proxy authentication on the proxy server configuration file, enter the proxy username and password, and enter your product instance ID token in the Cisco APIC GUI. You can obtain the token from your CSSM virtual account. For more information, see Cisco ACI Smart Licensing using Policy. |
Licensing |
Tracking Cisco ACI spine switch license usage |
Cisco ACI now tracks spine switch license usage. The Cisco APIC GUI includes your licensed spine switch information when you view your entitlement. For more information, see Cisco ACI Smart Licensing using Policy. |
Performance and Scalability |
Migrating physical APICs to virtual APICs and virtual APICs to physical APICs |
You can migrate Cisco APICs from a physical APIC cluster to a virtual APIC cluster deployed on an ESXi host (using VMware vCenter, or from a virtual APIC cluster (on an ESXi host) to a physical APIC cluster. For more information, see the Cisco APIC Getting Started Guide, Release 6.1(x). |
Security |
OSPFv2 authentication |
For enhanced security with OSPFv2, you can specify the OSPFv2 authentication key. The authentication key is a password of up to 8 characters that you can assign on a per-interface basis. For more information, see the Cisco APIC Layer 3 Networking Configuration Guide, Release 6.1(x). |
Security |
OSPFv2 rotating keys |
For enhanced security with OSPFv2, you can use the rotating keys by specifying a lifetime for each key. When the lifetime expires for a key, it automatically rotates to the next key. If you do not specify any algorithm, OSPF will use MD5, which is the default cryptographic authentication algorithm. For more information, see the Cisco APIC Layer 3 Networking Configuration Guide, Release 6.1(x). |
Security |
Restricting Cisco APIC OOB management subnet IP addresses from accessing the OOB IP address |
You can restrict access to the Cisco APIC by enabling Strict Security on the Cisco APIC out-of-band (OOB) subnet. In previous releases, a user could access the Cisco APIC using its OOB IP address from the same subnet using ICMP, SSH, HTTP, HTTPS, or TCP 4200, regardless of the user's configuration. For more information, see the Cisco APIC Basic Configuration Guide, Release 6.1(x). |
Security |
Support for AES128-CMAC for the Network Time Protocol |
You can use the AES128-CMAC authentication scheme for the Network Time Protocol (NTP). For more information, see the Cisco APIC Basic Configuration Guide, Release 6.1(x). |
For the new hardware features, see the Cisco Nexus 9000 ACI-Mode Switches Release Notes, Release 16.1(1).
Changes in Behavior
For the changes in behavior, see Cisco ACI Releases Changes in Behavior.
Open Issues
Click the bug ID to access the Bug Search tool and see additional information about the bug. The "Exists In" column of the table specifies the 6.1(1) releases in which the bug exists. A bug might also exist in releases other than the 6.1(1) releases.
Bug ID |
Description |
Exists in |
A SPAN session with the source type set to "Routed-Outside" goes down. The SPAN configuration is pushed to the anchor or non-anchor nodes, but the interfaces are not pushed due to the following fault: "Failed to configure SPAN with source SpanFL3out due to Source fvIfConn not available". |
6.1(1f) and later |
|
Traffic from an endpoint under a remote leaf switch to an external node and its attached external networks is dropped. This occurs if the external node is attached to an L3Out with a vPC and there is a redistribution configuration on the L3Out to advertise the reachability of the external nodes as direct-attached hosts. |
6.1(1f) and later |
|
- Traffic gets disrupted across a vPC pair on a given encapsulation. OR - EPG flood in encapsulation gets blackholed on a given encapsulation. OR - STP packets received on an encapsulation on a given port are not forwarded on all the leaf switches where the same EPG/same encapsulation is deployed. |
6.1(1f) and later |
|
When using two different host profiles (for example UCS C-Series and UCS B-Series) to deploy NSX, the uplink policy will be different for the host profiles. In this case, using one uplink profile with two policies might cause traffic disruption for a non-default teaming policy. |
6.1(1f) and later |
|
A GOLF spine switch advertises the bridge domain prefixes to a GOLF peer in multiple VRF instances. |
6.1(1f) and later |
|
Deleting and re-adding RedirectDest with a different IP address, but the same MAC address, generates the following error: "Same virtual MAC is provided for different RedirectDest". |
6.1(1f) and later |
|
Additional entries of svcredirRsBackupDestAttMo and svcredirRsDestAttMo are created in a leaf switch. This can impact the traffic hash and can lead to traffic drop. |
6.1(1f) and later |
|
The following faults get raised for l2IngrByte, l2IngrPkts, and l2IngrPktsPart crossing thresholds: F112296, F110344, F112128, F110473, F112425, F110176, and F110473 |
6.1(1f) and later |
|
In-Band Management Access, the Next button not clickable on the first try if the In-Band IPv4 Gateway input box is set to focus. |
6.1(1f) and later |
|
The service graph template bindings are missing on Cisco ACI. |
6.1(1f) and later |
|
The configuration (EPGs, contracts, external EPGs, etc.) is out-of-sync between the Cisco APIC and ISE. |
6.1(1f) and later |
|
In LA, ISE can't subscribe to the uSeg (micro-segmentation) EPG. |
6.1(1f) and later |
|
In a high scale scenario, ISE is missing some of the Cisco ACI endpoints. |
6.1(1f) and later |
|
Stale prefix entries are left behind for bindings that are no longer associated with the service graph template. When the bindings are learned from other service graph template, prefix entries failed to get installed due to the stale entries. |
6.1(1f) and later |
|
In the IS-IS Domains table, the IS-IS Databases column shows the number of databases. However, if you click the number to see more information about the IS-IS databases, the quantity of databases shown in the dialog to does not match the number shown in the IS-IS Domains table. |
6.1(1f) and later |
|
An external EPG in an L3Out that is used to connect to the campus is missing even though the corresponding service graph in the outbound filter still exists. |
6.1(1f) and later |
|
Service graph template subnets (resolved managed object type: fvSubnetHost256) are mistakenly removed in the Cisco APIC and policy engine, and the corresponding prefix entries are also uninstalled. |
6.1(1f) and later |
|
The AAA Providers GUI page does not display. |
6.1(1f) and later |
|
The Cisco APIC upgrade status is stuck in the "Post Upgrade Pending" state. |
6.1(1f) and later |
Resolved Issues
Click the bug ID to access the Bug Search tool and see additional information about the bug. The "Fixed In" column of the table specifies the 6.1(1) release in which the bug was first fixed.
Bug ID |
Description |
Fixed in |
A Cisco APIC upgrade will be shown as completed only after the post upgrade activities are completed. |
6.1(1f) |
|
Audit logs under System > History > Audit Logs are limited to the current logged in user. Only the user with the username admin can see the audit logs from all users, but other users despite having admin privileges cannot see the audit logs from other users. The audit logs under Tenants are visible to every user. |
6.1(1f) |
|
A Cisco ACI switch can spend hours to complete the bootstrap process. At the worst, the expected completion time should be about 90 minutes. |
6.1(1f) |
|
After upgrading, the Cisco APIC cluster is diverged and policymgr is down and repeatedly crashing on one Cisco APIC. In the policymgr logs, there is a critical error. |
6.1(1f) |
|
When running release version 6.0(3e), the policymgr service can crash after pushing an Ansible configuration. Multiple core files get generated on APIC 2, which prevents the deployment any configuration, including a single L3Out push from the GUI. Fault F4367 and 576 configurations transactions get queued in transaction for more than 2 minutes. Rebooting APIC 2 and APIC 3 results in APIC 1 generating a core 3 times with policymgr as well while APIC 2 is shutdown. |
6.1(1f) |
|
ACI switches show in maintenance with the CLI command "acidiag fnvread" on Cisco APIC, but they show "normal" in vsh and even top. System also shows In service. - Switches do not show up in the GUI nor API for configurations, as APIC vectors it as in maintenance. This severely impacts the ability to make changes. - Switches may continue to work normally even though no new configurations can be made on them. |
6.1(1f) |
|
After creating a SAML provider on the Cisco APIC and a login domain, then choosing option to Validate SAML Metadata, the following error is shown: Oops! Something went wrong Please try and reload the page.If the problem persists, contact Cisco TAC for assistance in resolving the issue and provide the following error report |
6.1(1f) |
|
Altering the IP SLA policy for an IP SLA track member led to the crashing of switches. |
6.1(1f) |
|
A 16GB fixed spine switch has high memory usage and is running 64-bit switch image. |
6.1(1f) |
|
Cannot delete a static node's management address. |
6.1(1f) |
Known Issues
Click the bug ID to access the Bug Search tool and see additional information about the bug. The "Exists In" column of the table specifies the 6.1(1) releases in which the bug exists. A bug might also exist in releases other than the 6.1(1) releases.
Bug ID |
Description |
Exists in |
The "show run leaf|spine <nodeId>" command might produce an error for scaled up configurations. |
6.1(1f) and later |
|
With a uniform distribution of EPs and traffic flows, a fabric module in slot 25 sometimes reports far less than 50% of the traffic compared to the traffic on fabric modules in non-FM25 slots. |
6.1(1f) and later |
|
When you click Restart for the Microsoft System Center Virtual Machine Manager (SCVMM) agent on a scaled-out setup, the service may stop. You can restart the agent by clicking Start. |
6.1(1f) and later |
|
One of the following symptoms occurs: App installation/enable/disable takes a long time and does not complete. Nomad leadership is lost. The output of the acidiag scheduler logs members command contains the following error: Error querying node status: Unexpected response code: 500 (rpc error: No cluster leader) |
6.1(1f) and later |
|
The CRC and stomped CRC error values do not match when seen from the APIC CLI compared to the APIC GUI. This is expected behavior. The GUI values are from the history data, whereas the CLI values are from the current data. |
6.1(1f) and later |
|
Upgrading Cisco APIC from a 3.x release to a 4.x release causes Smart Licensing to lose its registration. Registering Smart Licensing again will clear the fault. |
6.1(1f) and later |
|
In the 4.x and later releases, if a firmware policy is created with different name than the maintenance policy, the firmware policy will be deleted and a new firmware policy gets created with the same name, which causes the upgrade process to fail. |
6.1(1f) and later |
|
svcredirDestmon objects get programmed in all of the leaf switches where the service L3Out is deployed, even though the service node may not be connected to some of the leaf switch. There is no impact to traffic. |
6.1(1f) and later |
|
A remote leaf switch has momentary traffic loss for flushed endpoints as the traffic goes through the tglean path and does not directly go through the spine switch proxy path. |
6.1(1f) and later |
|
xR IP flush for all endpoints under the bridge domain subnets of the EPG being migrated to ESG. This will lead to a temporary traffic loss on remote leaf switch for all EPGs in the bridge domain. Traffic is expected to recover. |
6.1(1f) and later |
|
With the floating L3Out multipath recursive feature, if a static route with multipath is configured, not all paths are installed at the non-border leaf switch/non-anchor nodes. |
6.1(1f) and later |
|
Starting with the 6.1(1) release, the following apps built with the following non-compliant Docker versions cannot be installed nor run:
● ConnectivityCompliance 1.2
● SevOneAciMonitor 1.0
|
6.1(1f) and later |
|
The file size mentioned in the status managed object for techsupport "dbgexpTechSupStatus" is wrong if the file size is larger than 4GB. |
6.1(1f) and later |
|
In the "Visibility and Troubleshooting Wizard," ERSPAN support for IPv6 traffic is not available. |
6.1(1f) and later |
|
While navigating to the last records in the various History sub tabs, it is possible to not see any results. The first, previous, next, and last buttons will then stop working too. |
6.1(1f) and later |
|
VMMmgr process experiences a very high load for an extended period of time that impacts other operations that involve it. The process may consume excessive amount of memory and get aborted. This can be confirmed with the command "dmesg -T | grep oom_reaper" if messages such as the following are reported: oom_reaper: reaped process 5578 (svc_ifc_vmmmgr.) |
6.1(1f) and later |
|
When the "BGP" branch is expanded in the Fabric > Inventory > POD 1 > Leaf > Protocols > BGP navigation path, the GUI freezes and you cannot navigate to any other page. This occurs because the APIC gets large set of data in response, which cannot be handled by the browser for parts of the GUI that do not have the pagination. |
6.1(1f) and later |
|
The logical switch created for the EPG remains in the NSX-T manager after the EPG is disassociated from the domain, or the logical switch does not get created when the EPG is associated with the domain. |
6.1(1f) and later |
|
Multiple duplicate subnets are created on Nutanix for the same EPG. |
6.1(1f) and later |
|
With the addressing of CSCwe64407, a release that integrates that bug fix can the reference of a static VLAN pool in a VMM domain, which before was not possible. However, if the VMM domain is used by Layer 4 to Layer 7 virtual services and the VMM domain is referencing a static VLAN pool, the services do not work and a fault is raised. |
6.1(1f) and later |
|
After upgrading a Cisco APIC from a release before 5.2(8) to release 6.1(1) or later, there is a loss of out-of-band management connectivity over IPv6 if the APIC has dual stack out-of-band management. However, IPv4 connectivity remains intact. This issue does not occur if the out-of-band management is only IPv4 or only IPv6. |
6.1(1f) and later |
|
License manager occasionally cores after image upgrade. |
6.1(1f) and later |
|
The Cisco APIC upgrade or downgrade time has increased. |
6.1(1f) and later |
|
N/A |
Beginning in Cisco APIC release 4.1(1), the IP SLA monitor policy validates the IP SLA port value. Because of the validation, when TCP is configured as the IP SLA type, Cisco APIC no longer accepts an IP SLA port value of 0, which was allowed in previous releases. An IP SLA monitor policy from a previous release that has an IP SLA port value of 0 becomes invalid if the Cisco APIC is upgraded to release 4.1(1) or later. This results in a failure for the configuration import or snapshot rollback. The workaround is to configure a non-zero IP SLA port value before upgrading the Cisco APIC, and use the snapshot and configuration export that was taken after the IP SLA port change. |
6.1(1f) and later |
N/A |
If you use the REST API to upgrade an app, you must create a new firmware.OSource to be able to download a new app image. |
6.1(1f) and later |
N/A |
In a multipod configuration, before you make any changes to a spine switch, ensure that there is at least one operationally "up" external link that is participating in the multipod topology. Failure to do so could bring down the multipod connectivity. For more information about multipod, see the Cisco Application Centric Infrastructure Fundamentals document and the Cisco APIC Getting Started Guide. |
6.1(1f) and later |
N/A |
With a non-english SCVMM 2012 R2 or SCVMM 2016 setup and where the virtual machine names are specified in non-english characters, if the host is removed and re-added to the host group, the GUID for all the virtual machines under that host changes. Therefore, if a user has created a micro segmentation endpoint group using "VM name" attribute specifying the GUID of respective virtual machine, then that micro segmentation endpoint group will not work if the host (hosting the virtual machines) is removed and re-added to the host group, as the GUID for all the virtual machines would have changed. This does not happen if the virtual name has name specified in all english characters. |
6.1(1f) and later |
N/A |
A query of a configurable policy that does not have a subscription goes to the policy distributor. However, a query of a configurable policy that has a subscription goes to the policy manager. As a result, if the policy propagation from the policy distributor to the policy manager takes a prolonged amount of time, then in such cases the query with the subscription might not return the policy simply because it has not reached policy manager yet. |
6.1(1f) and later |
N/A |
When there are silent hosts across sites, ARP glean messages might not be forwarded to remote sites if a leaf switch without -EX or a later designation in the product ID happens to be in the transit path and the VRF is deployed on that leaf switch, the switch does not forward the ARP glean packet back into the fabric to reach the remote site. This issue is specific to transit leaf switches without -EX or a later designation in the product ID and does not affect leaf switches that have -EX or a later designation in the product ID. This issue breaks the capability of discovering silent hosts. |
6.1(1f) and later |
N/A |
Typically, faults are generally raised based on the presence of the BGP route target profile under the VRF table. However, if a BGP route target profile is configured without actual route targets (that is, the profile has empty policies), a fault will not be raised in this situation. |
6.1(1f) and later |
N/A |
MPLS interface statistics shown in a switch's CLI get cleared after an admin or operational down event. |
6.1(1f) and later |
N/A |
MPLS interface statistics in a switch's CLI are reported every 10 seconds. If, for example, an interface goes down 3 seconds after the collection of the statistics, the CLI reports only 3 seconds of the statistics and clears all of the other statistics. |
6.1(1f) and later |
Virtualization Compatibility Information
This section lists virtualization compatibility information for the Cisco APIC software.
● For a table that shows the supported virtualization products, see the ACI Virtualization Compatibility Matrix.
● For information about Cisco APIC compatibility with Cisco UCS Director, see the appropriate Cisco UCS Director Compatibility Matrix document.
● This release supports the following additional virtualization products:
Product |
Supported Release |
Information Location |
Microsoft Hyper-V |
● SCVMM 2019 RTM (Build 10.19.1013.0) or newer
● SCVMM 2016 RTM (Build 4.0.1662.0) or newer
● SCVMM 2012 R2 with Update Rollup 9 (Build 3.2.8145.0) or newer
|
N/A |
VMM Integration and VMware Distributed Virtual Switch (DVS) |
6.5, 6.7, 7.0 and 8.0. Note: vSphere 8.0 does not support the vCenter Plug-in and Cisco ACI Virtual Edge (AVE). If you need to continue to use the vCenter Plug-in and Cisco AVE, use vSphere 7.0. |
Hardware Compatibility Information
This release supports the following Cisco APIC servers:
Product ID |
Description |
APIC-L2 |
Cisco APIC with large CPU, hard drive, and memory configurations (more than 1000 edge ports) |
APIC-L3 |
Cisco APIC with large CPU, hard drive, and memory configurations (more than 1200 edge ports) |
APIC-L4 |
Cisco APIC with large CPU, hard drive, and memory configurations (more than 1200 edge ports) |
APIC-M2 |
Cisco APIC with medium-size CPU, hard drive, and memory configurations (up to 1000 edge ports) |
APIC-M3 |
Cisco APIC with medium-size CPU, hard drive, and memory configurations (up to 1200 edge ports) |
APIC-M4 |
Cisco APIC with medium-size CPU, hard drive, and memory configurations (up to 1200 edge ports) |
The following list includes general hardware compatibility information:
● For the supported hardware, see the Cisco Nexus 9000 ACI-Mode Switches Release Notes, Release 16.1(1).
● Contracts using matchDscp filters are only supported on switches with "EX" on the end of the switch name. For example, N9K-93108TC-EX.
● When the fabric node switch (spine or leaf) is out-of-fabric, the environmental sensor values, such as Current Temperature, Power Draw, and Power Consumption, might be reported as "N/A." A status might be reported as "Normal" even when the Current Temperature is "N/A."
● First generation switches (switches without -EX, -FX, -GX, or a later suffix in the product ID) do not support Contract filters with match type "IPv4" or "IPv6." Only match type "IP" is supported. Because of this, a contract will match both IPv4 and IPv6 traffic when the match type of "IP" is used.
The following table provides compatibility information for specific hardware:
Product ID |
Description |
Cisco UCS M4-based Cisco APIC |
The Cisco UCS M4-based Cisco APIC and previous versions support only the 10G interface. Connecting the Cisco APIC to the Cisco ACI fabric requires a same speed interface on the Cisco ACI leaf switch. You cannot connect the Cisco APIC directly to the Cisco N9332PQ ACI leaf switch, unless you use a 40G to 10G converter (part number CVR-QSFP-SFP10G), in which case the port on the Cisco N9332PQ switch auto-negotiates to 10G without requiring any manual configuration. |
Cisco UCS M5-based Cisco APIC |
The Cisco UCS M5-based Cisco APIC supports dual speed 10G and 25G interfaces. Connecting the Cisco APIC to the Cisco ACI fabric requires a same speed interface on the Cisco ACI leaf switch. You cannot connect the Cisco APIC directly to the Cisco N9332PQ ACI leaf switch, unless you use a 40G to 10G converter (part number CVR-QSFP-SFP10G), in which case the port on the Cisco N9332PQ switch auto-negotiates to 10G without requiring any manual configuration. |
N2348UPQ |
To connect the N2348UPQ to Cisco ACI leaf switches, the following options are available: Directly connect the 40G FEX ports on the N2348UPQ to the 40G switch ports on the Cisco ACI leaf switches Break out the 40G FEX ports on the N2348UPQ to 4x10G ports and connect to the 10G ports on all other Cisco ACI leaf switches. Note: A fabric uplink port cannot be used as a FEX fabric port. |
N9K-C9348GC-FXP |
This switch does not read SPROM information if the PSU is in a shut state. You might see an empty string in the Cisco APIC output. |
N9K-C9364C-FX |
Ports 49-64 do not support 1G SFPs with QSA. |
N9K-C9508-FM-E |
The Cisco N9K-C9508-FM-E2 and N9K-C9508-FM-E fabric modules in the mixed mode configuration are not supported on the same spine switch. |
N9K-C9508-FM-E2 |
The Cisco N9K-C9508-FM-E2 and N9K-C9508-FM-E fabric modules in the mixed mode configuration are not supported on the same spine switch. The locator LED enable/disable feature is supported in the GUI and not supported in the Cisco ACI NX-OS switch CLI. |
N9K-C9508-FM-E2 |
This fabric module must be physically removed before downgrading to releases earlier than Cisco APIC 3.0(1). |
N9K-X9736C-FX |
The locator LED enable/disable feature is supported in the GUI and not supported in the Cisco ACI NX-OS Switch CLI. |
N9K-X9736C-FX |
Ports 29 to 36 do not support 1G SFPs with QSA. |
Miscellaneous Compatibility Information
This release supports the following products:
Product |
Supported Release |
Cisco NX-OS |
16.1(1) |
Cisco UCS Manager |
2.2(1c) or later is required for the Cisco UCS Fabric Interconnect and other components, including the BIOS, CIMC, and the adapter. |
CIMC HUU ISO |
● 4.3.4.241063 (recommended) CIMC HUU ISO for UCS C225 M6 (APIC-L4/M4)
● 4.3.2.240077 (recommended) CIMC HUU ISO for UCS C220/C240 M5 (APIC-L3/M3)
● 4.3.2.240009 CIMC HUU ISO for UCS C220/C240 M5 (APIC-L3/M3) and UCS C225 M6 (APIC-L4/M4)
● 4.3.2.230207 CIMC HUU ISO for UCS C220/C240 M5 (APIC-L3/M3) and UCS C225 M6 (APIC-L4/M4)
● 4.2(3e) CIMC HUU ISO for UCS C220/C240 M5 (APIC-L3/M3) and UCS C225 M6 (APIC-L4/M4)
● 4.2(3b) CIMC HUU ISO for UCS C225 M6 (APIC-L4/M4)
● 4.2(3b) CIMC HUU ISO for UCS C220/C240 M5 (APIC-L3/M3)
● 4.2(2a) CIMC HUU ISO for UCS C220/C240 M5 (APIC-L3/M3)
● 4.1(3m) CIMC HUU ISO for UCS C220/C240 M5 (APIC-L3/M3)
● 4.1(3f) CIMC HUU ISO for UCS C220/C240 M5 (APIC-L3/M3)
● 4.1(3d) CIMC HUU ISO for UCS C220/C240 M5 (APIC-L3/M3)
● 4.1(3c) CIMC HUU ISO for UCS C220/C240 M5 (APIC-L3/M3)
● 4.1(2m) CIMC HUU ISO (recommended) for UCS C220/C240 M4 (APIC-L2/M2)
● 4.1(2k) CIMC HUU ISO for UCS C220/C240 M4 (APIC-L2/M2)
● 4.1(2g) CIMC HUU ISO for UCS C220/C240 M4 (APIC-L2/M2)
● 4.1(2b) CIMC HUU ISO for UCS C220/C240 M4 (APIC-L2/M2)
● 4.1(1g) CIMC HUU ISO for UCS C220/C240 M4 (APIC-L2/M2) and M5 (APIC-L3/M3)
● 4.1(1f) CIMC HUU ISO for UCS C220 M4 (APIC-L2/M2) (deferred release)
● 4.1(1d) CIMC HUU ISO for UCS C220 M5 (APIC-L3/M3)
● 4.1(1c) CIMC HUU ISO for UCS C220 M4 (APIC-L2/M2)
● 4.0(4e) CIMC HUU ISO for UCS C220 M5 (APIC-L3/M3)
● 4.0(2g) CIMC HUU ISO for UCS C220/C240 M4 and M5 (APIC-L2/M2 and APIC-L3/M3)
● 4.0(1a) CIMC HUU ISO for UCS C220 M5 (APIC-L3/M3)
● 3.0(4d) CIMC HUU ISO for UCS C220/C240 M3 and M4 (APIC-L2/M2)
● 3.0(3f) CIMC HUU ISO for UCS C220/C240 M4 (APIC-L2/M2)
● 2.0(13i) CIMC HUU ISO
● 2.0(9c) CIMC HUU ISO
● 2.0(3i) CIMC HUU ISO
|
Network Insights Base, Network Insights Advisor, and Network Insights for Resources |
For the release information, documentation, and download links, see the Cisco Network Insights for Data Center page. For the supported releases, see the Cisco Data Center Networking Applications Compatibility Matrix. |
● This release supports the partner packages specified in the L4-L7 Compatibility List Solution Overview document.
● A known issue exists with the Safari browser and unsigned certificates, which applies when connecting to the Cisco APIC GUI. For more information, see the Cisco APIC Getting Started Guide, Release 6.0(x).
● For compatibility with Day-2 Operations apps, see the Cisco Data Center Networking Applications Compatibility Matrix.
● Cisco Nexus Dashboard Insights creates a user in Cisco APIC called cisco_SN_NI. This user is used when Nexus Dashboard Insights needs to make any changes or query any information from the Cisco APIC. In the Cisco APIC, navigate to the Audit Logs tab of the System > History page. The cisco_SN_NI user is displayed in the User column.
Related Content
See the Cisco Application Policy Infrastructure Controller (APIC) page for the documentation.
The documentation includes installation, upgrade, configuration, programming, and troubleshooting guides, technical references, release notes, and knowledge base (KB) articles, as well as other documentation. KB articles provide information about a specific use case or a specific topic.
By using the "Choose a topic" and "Choose a document type" fields of the APIC documentation website, you can narrow down the displayed documentation list to make it easier to find the desired document.
You can watch videos that demonstrate how to perform specific tasks in the Cisco APIC on the Cisco Cloud Networking YouTube channel.
Temporary licenses with an expiry date are available for evaluation and lab use purposes. They are strictly not allowed to be used in production. Use a permanent or subscription license that has been purchased through Cisco for production purposes. For more information, go to Cisco Data Center Networking Software Subscriptions.
The following table provides links to the release notes, verified scalability documentation, and new documentation:
Document |
Description |
Cisco Nexus 9000 ACI-Mode Switches Release Notes, Release 16.1(1) |
The release notes for Cisco NX-OS for Cisco Nexus 9000 Series ACI-Mode Switches. |
This guide contains the maximum verified scalability limits for Cisco Application Centric Infrastructure (ACI) parameters for Cisco APIC and Cisco Nexus 9000 Series ACI-Mode Switches. |
|
This document resides on developer.cisco.com and provides information about and procedures for using the Cisco APIC REST APIs. The new REST API procedures for this release reside only here and not in the configuration guides. However, older REST API procedures are still in the relevant configuration guides. |
Documentation Feedback
To provide technical feedback on this document, or to report an error or omission, send your comments to apic-docfeedback@cisco.com. We appreciate your feedback.
Legal Information
Cisco and the Cisco logo are trademarks or registered trademarks of Cisco and/or its affiliates in the U.S. and other countries. To view a list of Cisco trademarks, go to this URL: http://www.cisco.com/go/trademarks. Third-party trademarks mentioned are the property of their respective owners. The use of the word partner does not imply a partnership relationship between Cisco and any other company. (1110R)
Any Internet Protocol (IP) addresses and phone numbers used in this document are not intended to be actual addresses and phone numbers. Any examples, command display output, network topology diagrams, and other figures included in the document are shown for illustrative purposes only. Any use of actual IP addresses or phone numbers in illustrative content is unintentional and coincidental.
© 2024 Cisco Systems, Inc. All rights reserved.