Meraki Community
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Q. Catalyst Cloud Monitoring without Onboarding App?

Solved
Aron33
Conversationalist
2 weeks ago
2 weeks ago

Q. Catalyst Cloud Monitoring without Onboarding App?

Hello there, 

 

I just started to look into this whole "Cloud Monitoring for Catalyst" topic for my employer as we have some valuable usecases for some customers. As I swept through different forums I've already got to the conclusion, that the Onboarding App just won't work (conveniently) for our customer setup:

 

  • HTTPS proxies that perform TLS decryption are not currently supported
  • We have a dedicated, secured management environment with no connection to the internet or production / office VLANs
    • Also Switch MGMT IPs are not reachable from production / office VLANs
  • Some other smaller hurdles

 

Q. Would it be possible to do the onboarding of a Catalyst Switch, without the Onboarding App e.g. automate all the steps (incl. prechecks) and configurations described in the documentation  with AWX (Ansible)?

Many thanks, Aron

 

0 Kudos
Subscribe
1 Accepted Solution
In response to thomasthomsen
Minjie_Lin
Meraki Employee
Meraki Employee
Tuesday
Tuesday

We hope to launch app-less onboarding for switches by later this calendar year. 

View solution in original post

Subscribe
7 Replies 7
Brash
Kind of a big deal
Kind of a big deal
2 weeks ago
2 weeks ago

There's no way to onboard without the application (unless Meraki engineering have another method which is not available to the public).

That said, I'm not sure I understand the issue as the requirements for internet connectivity and TLS decryption bypass also apply to the switches and are not only required for onboarding but are required for the solution as a whole.

0 Kudos
Subscribe
In response to Brash
Aron33
Conversationalist
Monday
Monday

That's what I thought. So I'll need a Meraki employee / engineer / supporter to answer the onboarding automation topic. 

We could do TLS decryption bypass for the management networks where the switches reside and deploy the onboarding software on our management jumphost but it is, as already mentioned, not very convenient for some deployments imo (see points mentioned above).
Aron33_0-1714127968168.png

0 Kudos
Subscribe
thomasthomsen
Head in the Cloud
Friday
Friday

Im pretty sure that there will be a way, like with the 9800 currently not using the onboard app, but NexTunnel like other Meraki devices.

 

If you have a 9K switch on 17.12.x you can actually see the same commands for this in the CLI 🙂 - And they do work, the switch tries to communitate this way with the dashboard, but, unfortunatly, the dashboards denies the device because its unknown.

But , it feels like this will be the way (at some point), also for switches, and that is just great 🙂

Subscribe
In response to thomasthomsen
Aron33
Conversationalist
Monday
Monday

Interesting points you mentioned! Do you have some ressources I can look up? I will definitely look deeper into this 🙂

0 Kudos
Subscribe
In response to Aron33
thomasthomsen
Head in the Cloud
Monday
Monday

I do not think it is , ehhh, well documented, at this point.

 

But Im quite sure all Catalyst devices will utilize the way a 9800 WLC is using at the moment.

 

But that has "just" been released. You could look at how its done on the 9800. 

 

(If you dont know, I can post the commands and a few screenshots here).

Subscribe
In response to thomasthomsen
Jenn_Garrison
Meraki Employee
Meraki Employee
Tuesday
Tuesday

Hey folks - we are looking forward to some action on the switching side this calendar year.  Look for information on EFT (trial) this coming summer.

Subscribe
In response to thomasthomsen
Minjie_Lin
Meraki Employee
Meraki Employee
Tuesday
Tuesday

We hope to launch app-less onboarding for switches by later this calendar year. 

Subscribe
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
© 2024 Cisco Systems, Inc.