#CiscoLive

Migration to the New

Catalyst Wireless Stack
A practical guide!

Simone Arena
Principal TME
DGTL-BRKEWN-2004

#CiscoLive
 Mia Barney
Simone Arena

Principal TME
Intent Based Networking Group

Sagrantino di Montefalco
Caprai 2013
Tube amplifier
 Agenda Chapters

• Introduction to new Cisco Wireless Stack

• Why Migrate?
1

• Build your Migration Strategy

2
• Access Point Migration

• Wireless Controller Migration 3

• Prime and Cisco DNA Center

4
• Key takeaways

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 4
Next-generation Cisco Wireless Stack

Catalyst 9100 Catalyst 9800 DNA Automation & DNA Spaces

Access Points Wireless Controllers Assurance

Resilient, Secure, Intelligent

with Innovations in Performance, Security and Analytics

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 5
Next-gen Wireless Cisco products and solutions
Built for Resiliency, Security and Intelligence

User Defined
Network

Open Roaming

Software Defined
Access …
Best of breed
Integrated
Catalyst
Solutions
Wireless Platforms
Powered by Intelligence

Cisco DNA Center Cisco DNA Spaces Cisco DNA Cloud

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 6
Next-gen Cisco Access
Best Access Experience for IT and IoT

Catalyst Catalyst Catalyst Catalyst

9100 Series 9200/9300/9400 9500/9600 Series 9800 Series
Wi-Fi 6, 802.3bt Ready
Wi-Fi 6

48P 5G + 25G/40G uplinks

Wi-Fi 6

Industry’s only modular

Wi-Fi 6 Campus Optimized WLC with 40G/100G
25G/40G/100G uplinks
Most comprehensive
mGig portfolio
Wi-Fi 6

Fully Integrated End to End

Built for intent- Automation Security Analytics
based networking #CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 7
Why Migrate?
Cisco Innovation at each layer of the stack
Turns data into Business Data
Services Cisco DNA Spaces Verticalization of Services
Cloud First Strategy

Simple & streamlined Network Automation

Network
Cisco DNA Center AI/ML Network Analytics
Management Proactive root cause analysis

ISSU + Rolling AP Upgrade + Patching

Wireless LAN Security (ETA, SDA, etc.)
Controller Programmability

RF ASICs
Access Points Containerized software
IoT radio and Gateway

Clients and Device Vendor Partnership

Samsung and Apple Analytics
Sensors
Cisco Aironet Active Sensor

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 9
Wi-Fi 6 is here!
First Wi-Fi 6 laptops powered
by Intel: HP, Dell Microsoft Surface Pro 7
Surface Laptop
First Wi-Fi 6 device:
Samsung Galaxy S10 Apple iPhone 11

2019 Feb Apr Jun Jul Aug Sep Oct July 2020

C9115AX, C9117AX, Intel AX200 NGV Wi-Fi 6 WFA C9130AX C9105AX

C9120AX Certification

Samsung Galaxy
Note 10

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 10
 What is Wi-Fi 6?

Higher Performance Higher Efficiency

Higher per-device peak speed in high density, Better resource utilization with increased
high throughput environments efficiency and lower latency
Enabled by: OFDMA, MU-MIMO, BSS Enabled by: OFDMA, MU-MIMO, BSS Coloring
Coloring, 1024-QAM

Wi-Fi
6
Higher IoT Scale Higher Security
Significantly improved device battery life Augmented with WPA3
along with enhanced coverage
Enabled by: OFDMA, MU-MIMO, TWT
OFDMA: Orthogonal Frequency Division Multiple Access
MU-MIMO: Multi-User Multiple Input Multiple Output
BSS: Basic Service Set
TWT: Target Wait Time
QAM: Quadrature Amplitude Modulation

Faster Speeds | Optimized Capacity | IoT Ready

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 11
 New Cisco Catalyst 9100 Series Access Points
Purpose built for Wi-Fi 6
Ideal for small to medium deployments Mission critical Best in Class

Powered by
Powered by
Cisco RF ASIC
Cisco RF ASIC
9105AX 9115AX | 9117AX 9120AX 9130AX
• 2x2 + 2x2 • 4x4 + 4x4 | 8x8 + 4x4 • 4x4 + 4x4 • 8x8 + 4x4 or 4x4 + 4x4 + 4x4
• MU-MIMO, OFDMA • MU-MIMO, OFDMA (only DL) • Cisco RF ASIC • Tri-radio (Dual 5GHz + 2.4GHz)
• Spectrum Intelligence • Spectrum intelligence • Dual 5GHz, HDX • Cisco RF ASIC
• IoT ready • 1 x 5 mGig • IoT ready • Decrypted data packet iCAP
• 1 x 2.5 mGig (WP) • Application Hosting • IoT ready
• 1 x 2.5 mGig • Application Hosting
• 8 port Smart Antennas
• 1 x 5 mGig

Cisco DNA Assurance Integrated or external

with iCAP Bluetooth 5 USB antenna SKUs
#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 12
 § Cisco Wireless Innovation
embedded in the Catalyst AP
§ New APs: more CPU, more
memory, new antennas, etc.
Why Wi-Fi 6 APs § Future proofed for Wi-Fi 6
and why now? client evolution
§ Cisco Wi-Fi 6 APs: Better
performance/experience for
Powered by
Cisco RF ASIC
existing clients

DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 13
 Cisco Wireless Innovation in Catalyst APs
IOx Framework Optimize Wi-Fi connectivity
Container APPs Cisco RF ASIC

• Fully automated deployment • RF ASIC offloads off-channel scanning

Cisco & Third-Party APPs
Up to 25% better client performance
•
•
• BLE GW and IoT GW
• Benefits ALL Wi-Fi clients

Going Beyond Wi-Fi Deep network Insights

State of the Art
RF Design
• Cisco “IP” for better scheduler • Dedicated scanning radio
• Device Manufacturers Partnership • Feed data to ML/AI to the Cloud
(Apple, Intel, Samsung)
• Cisco Intelligent Capture (iCAP)

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 14
9120 and 9130 APs powered by Cisco RF ASIC
Superior analytics and security for mission critical deployments

Cisco RF ASIC
Custom ASIC-based Software Defined Radio module
For Full time Wireless Monitoring and Analytics.

FastLocate
Zero-Wait Off-channel w/o aWIPS/ Rogue
Dual Filter DFS Clean Air
DFS* RRM Performance Detection
Impact
• Remove 60s • Concurrent • Interferer • Dedicated • Offload • Dedicate
scan delay Dual DFS Detection and Dual-Band Faster Security
• High Density detection Impact Off-channel location Radio Module
Area, Port using two Analysis scanning update using • Mandatory
Authorities discrete • Interference • Improved RF ASIC feature for
chipset mitigation Low Latency • Beneficial on Enterprise
• Any High- Application any location- Wireless
Density Area performance based service Operation

*Roadmap
#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 15
 Why Catalyst APs now?
High-Density Test- Results Cisco Wi-Fi 6 vs Wave 2 APs

• A real-world mix of 100 clients • 80/20 Mix between 5 GHz and 2.4 GHz
• 5x MacBook Pro 11n (3SS)
• 40x Intel AX200 Chipset 11ax (2SS) • Clients were spread around the AP from
10’ (3m) to 45’ (13.7m)
• 15x MacBook Pro 11ac (3SS)
• 20x MacBook Air 11ac (2SS) • IxChariot tool used to generate traffic
• 20x Dell 6430 w/ Intel 7260 11ac (2SS) from a wired endpoint.

AP is here

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 16
Why Catalyst APs now?
High-Density Test- Results Cisco Wi-Fi 6 vs Wave 2 APs
Multi-Client Performance
700
Cisco 9120AX
overperforms Cisco
600 AP2800 by 25%
500
Throughput (Mbps)

400 Cisco 9115

Cisco 9120
300 Cisco 2800
Cisco 1850
200 Cisco 1840

100

0
10 20 30 40 50 60 70 80 90 100
Clients

Cisco 9100 series APs has clear advantage over

Cisco Wave 2 APs
#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 17
Cisco RF ASIC - Off-Channel RRM
Cisco RF ASIC

Legacy Off-Channel RRM

Off Channel Enabled Powered by Cisco RF ASIC

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 18
Dual Filter DFS*
• CiscoLive and Mobile World Congress:
• Before Dual Filter DFS:
• 2015-2017: DFS triggered 1000 detections per day
Dual Filter DFS
• After Dual-DFS:
• For 2018-2019:Just one area with an issue at MWC
AND
Using both Wi-Fi Radio AND Cisco RF ASIC for detection:
• False Positives have virtually been eliminated
• Cisco owns and maintains the RF ASIC DFS Event?
• Manufacturers chipset DFS detection maintained by Manufacturer

(*) DFS = Dynamic Frequency Selection

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 19
Quiz:
How many Wi-Fi6 APs
Cisco has shipped to date?

310K 720k 950k

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 20
 § Modular, highly available, scalable,
multi-process operating system:
IOS XE
§ Next Gen Resiliency: Stateful
Why Catalyst Switchover, In Service Software,
Rolling AP Upgrade, Patching
9800? § Fully Programmable via CI/CD tools
§ Deploy Anywhere with the model,
the scale and performance of your
choice

DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 21
Cisco Catalyst 9800 – Next Gen Hardware
C9800 embedded
C9800 appliance
in Catalyst 9000

QFP UADP
QuantumFlow Processor Unified Access Data Plane

§ Advanced, Multi-Core, § Flexible, Programmable,

Feature-Rich Powered High-Performance
§ Fully Programmable by IOS-XE § Fully Programmable
§ Scalable § Scalable
§ Advanced on-chip QoS § Advanced on-chip QoS
§ Secure § Secure
§ Extensible Architecture § Extensible Architecture

100% Cisco-developed Flexible Silicon – Flexibility with Investment Prtection

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 22
Cisco Catalyst 9800 – Next Gen Software
Previous software architecture vs. Catalyst Wireless Controller

IOSd DB
WCM managers Config DB Ops DB

WLAN
Thread
Thread WNCd ... WNCd RRM Mobility
AP Ops data Ops data Ops data Ops data
Thread
Thread
...
Client
WNCd
... WNCd RRM Mobility

High level view

High level view

Single process software architecture Multi-process software architecture

§ Wireless Controller Manager (WCM) § Processes are single threaded, non-blocking,
§ 30+ threads § New Wireless Network Controller process (WNCd).
§ Data contention cross threads § Multiple WNCd for horizontal scale
§ Single memory space § No single fault domain (e.g. memory separation)
§ Single fault domain § Data model driven & data externalization
§ Process patchability & restartability
§ Independent boot*
* System capable, roadmap item

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 23
 Cisco Catalyst 9800 – Next Gen Wireless Controller
Benefits

Cisco Catalyst 9800 Series

Wireless Controllers
Powered by Cisco IOS® XE
Open and programmable

Resilient Secure Intelligent

• Zero downtime with software updates and • Automated macro and micro • Programmable network processor and IOx
upgrades segmentation with SD-Access infra support
• WLC SMU
• Detect encrypted threats with Encrypted • Deploy in infrastructure of choice and
• AP Service and Device Pack Traffic Analytics (ETA) cloud of choice
• Intelligent Rolling AP Upgrade
• WPA3, Trustworthy systems, etc. • Enhanced analytics with Cisco DNA
• In Service Software upgrade (ISSU)
• Enables advanced solutions like Cisco
• RF based Rolling AP upgrades User Defined Network (UDN)

Extending Cisco’s Innovation Beyond

Leadership in Wireless networking the Standard
intent-based network
DGTL-BRKEWN-2004 24
 Catalyst 9800 Wireless Controller
Deploy @ any scale
Catalyst 9800-80
6000 APs, 64K clients
80 Gbps

Catalyst 9800-40
2000 Aps, 32K Clients,
40 Gbps

Catalyst 9800-CL***
1000, 3000 or 6000 APs
Catalyst 9800-L 10K, 32K or 64K Clients
250 APs, 5K Clients,
5 Gbps
Catalyst 9800
Embedded Wireless**
Catalyst 9800 200 APs, 4K Clients

Embedded Wireless* Catalyst 9800-CL***

100 APs, 2K Clients 1000 APs, 10K Clients *Supports Local Switching only
**SD-Access only
*** Catalyst 9800 for Public cloud FlexConnect only

Up to 100 APs Up to 250 APs Up to 1000 APs Up to 3000 APs Up to 6000 APs

Distributed Branch & Small Campus Medium Campus Large Campus

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 25
Quiz:
what’s the WiFi6 AP capacity of
the Catalyst 9800 shipped as of
today?
800k 1.5M 15M
#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 26
Why Cisco DNA Why Cisco DNA
Center? Spaces?

DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 27
Cisco DNA Center
Unified Management for Enterprise wireless

Cisco DNA
c Unified experience Center
Policy Automation Assurance

Abstracting network OS and unifying workflows (UX/API) across AireOS and Cisco® Catalyst® WLC

Intent-based network infrastructure

Cisco Catalyst 9800 Series Cisco Catalyst and AireOS wireless

Wireless Controller Aironet® access points controller

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 28
Cisco DNA Center Automation
Automated Lifecycle
Resource Lifecycle Management Configuration Lifecycle Service Lifecycle

Cradle to grave Empowering users with data visibility Orchestration and optimization of network
element management and turnkey compliance remediation services end-to-end

Da
y0
y1
Da

sh

Da
fre

yN
Re

E2E device lifecycle Management Software Image Compliance Network wide QoS
Zero-touch onboarding Configuration Compliance User Private Network
Simplified RMA Security Compliance (PSIRT) Bonjour Service Enablement
Device refresh Regulatory Compliance Application Hosting (Switches and AP)
NFV and Application Orchestration Compliance Reporting ETA and URL Filtering enablement
(Stealthwatch and Umbrella)

Workflow Automation: Simple & Streamlined Network Automation

Pre/Post checks, ITSM Integration, Reports
DGTL-BRKEWN-2004 29
 Cisco DNA Center Assurance Health and Visibility
AI Network Analytics • Wireless Sensor Enhancements
• Customized Network Health Scores
• Dynamic Baselining • Site Comparison
• Executive Summary Report
• AI Driven Issues • Peer
• Network Trends and Comparison
Insights • MRE Workflows
• Network Heatmaps

Proactive Troubleshooting
• Wired Client Event Viewer
Ecosystem Integration • Auto resolve issues
• Samsung Client Analytics • Customized issue settings and triggers
• Enhanced ITSM integration (ServiceNow) • SVL support for 9600s

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 30
#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 31
 Agenda Chapters

• Introduction to new Cisco Wireless Stack

• Why Migrate?
1

• Build your own Migration Strategy

2
• Access Point Migration

• Wireless Controller Migration

• Prime and Cisco DNA Center

• Key takeaways

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 32
Build your own
Migration Strategy
It’s a full stack Migration
MSE ISE Services ISE

Network
Prime Cisco DNA Center
Management

Wireless LAN
AireOS C9800
Controller

Access Points Wi-Fi 6

Clients and
Sensors

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 34
Focus on the “how?”
MSE ISE Services ISE

Network
Prime Cisco DNA Center
How do I bridge
Management

Wireless LAN
AireOS C9800
Controller

the gap??
Access Points Wi-Fi 6

Clients and
Sensors

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 35
 Build a Migration Strategy – three phases

Design Implement
Evaluate • Check the Site Survey & Heat
• Select the C9800 and AP platform
• The advantages of NG stack Map
and chose the deployment mode
• Build the knowledge of NG stack • Replace the legacy APs
• Design for C9800 vs. AireOS WLC
• Verify platform support coexistence • Check switch PoE
• Evaluate feature gaps • Design for AP migration areas • Lab validation
• Evaluate new licensing model • Understand the caveats • Go-Live and Day 2 Support
• Choose a Management Platform

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 36
Where shall I start?

....asking questions!
 Key questions for Migration
What are the Management How to migrate licenses?
requirements?

What are the Have the RF and Mobility

features used? requirements changed?

What are the deployment

What are the HA Need to migrate only
modes? Centralized, What about new security
requirements?
Flex, Mesh, etc, requirements? APs or APs and WLC?
segmentation, ETA, etc.?
Greenfield or
Brownfield?
What hardware and
software used? For APs, Are you familiar with How is Guest
the new config model? Is seamless
WLCs, MSE, Prime, etc.? deployment?
roaming needed?

Have the throughput, Is the switching

scale requisites changed? infra up for refresh?
Are there new APPs?

Existing AireOS based

WLAN deployment

Evaluate Design Implement

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 38
Let’s use a real
customer scenario…
 Customer Migration scenario
5520 Anchor Current deployment:
5508s
§ Campus with multiple buildings

§ Mix of APs: 11n g2 (1600,2600), 802.11ac W1

(2700) and 802.11ac W2 (2800) APs
§ 5508 in SSO as Foreign WLC running AireOS 8.3

§ Guest Anchor deployment (5520 also on 8.3)

Mix of 802.11n, W1 and W2 802.11ac APs

§ Prime for configuration and monitoring

§ RTU licenses
802.11n 802.11ac W2

802.11ac W1 802.11ax

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 40
 Customer Migration scenario
5520 Anchor Customer Migration requirements:
5508s
§ Replace End of Life (EoL), End of Support (EoS) APs
and adopt Wi-Fi 6
§ Seamless Roaming during migration

§ Adopt Cisco DNA Center Assurance for analytics and

troubleshooting
§ Keep Prime for configuration and reporting
Mix of 802.11n, W1 and W2 802.11ac APs

802.11n 802.11ac W2

802.11ac W1 802.11ax

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 41
Check EoS/EoL page
• Check EoS/EoL Cisco policy

• Go to https://www.cisco.com/c/en/us/products/eos-
eol-listing.html – Wireless section
• Go to the AP product page to verify dates

• IMPORTANT: on April 29th, 2020 Cisco announced the

end of software maintenance date for all W1 APs (1700,
2700, 3700)

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 42
 Customer Migration scenario
5520 Anchor Migration considerations:
5508s
§ 5508 do not support 11ax APs
§ 5508 doesn’t support Assurance
§ 802.11n APs are not supported by C9800
§ 802.11ac W1 APs soon to be EoS

Mix of 802.11n, W1 and W2 802.11ac APs

Customer would need to migrate APs

802.11n 802.11ac W2 and adopt C9800 at the same time
802.11ac W1 802.11ax

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 43
Catalyst AP Migration
Access Points Wi-Fi 6

Clients and
Sensors
Wireless Access Point Transitions
Refresh legacy Aironet APs to new Catalyst 9100ax

Aironet 4800 High density Continue positioning

Series deployments (For Hyperlocation)

Aironet 3800 High density Catalyst

Series deployments 9130

Aironet 2800 Mission critical Catalyst

Series deployments 9120

Catalyst
Aironet 1800 Small to medium-
9105/9115/
Series sized deployments
9117

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 45
Catalyst AP Migration – Important questions
• Do I need a new Site Survey?
• Can I replace APs 1:1?
• How do I deal with “border” areas between APs of different type?
• New Wi-Fi 6 APs, do I need new switches?

Access Points Wi-Fi 6

Clients and
Sensors

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 46
Do I need a new Site Survey?
• New Site Survey is not mandatory (assuming current coverage meets requirements)
• 1:1 Replacement assumes the APs were originally installed in optimal place

Legacy AP 802.11ax

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 47
Can I replace APs 1:1 (old model : new model)?
Access Points have been designed with 1 for 1 replacement in mind!
The design goal is to maintain a uniform coverage cell between matching generation of products
but improve the connection experience (faster speeds, lower latency & less retries)

C9120AX

AP3802i

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 48
Do I need a new Site Survey?
• New Site Survey is not mandatory (assuming current coverage meets requirements)
• 1:1 Replacement assumes the APs were originally installed in optimal place
• New APs are designed to have close to the same
coverage area as the previous gen product. Coverage
will be similar but wireless capacity will increase

• “salt and pepper” replacement is not recommended

• Mixing AP type will prevent customers from taking
advantage of the new features being introduced in
Catalyst APs (RF ASIC related and Wi-Fi 6 features)

Legacy AP 802.11ax

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 49
Do I need a new Site Survey?
• New Site Survey is not mandatory (assuming current coverage meets requirements)
• 1:1 Replacement assumes the APs were originally installed in optimal place
• New APs are designed to have close to the same
coverage area as the previous gen product. Coverage
will be similar but wireless capacity will increase

• “salt and pepper” replacement is not recommended

• Mixing AP type will prevent customers from taking
advantage of the new features being introduced in
Catalyst APs (RF ASIC related and Wi-Fi 6 features)
Roaming
domain* • Recommendation: keep APs of the same type together,
replace the APs in a roaming domain

• Roaming domain = e.g. floor/multiple floors /building or

area where people tend to roam
Legacy AP 802.11ax

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 50
 How do I deal with “border” areas?
• As you replace APs per roaming domain, you will have “border areas” between two deployments

• If you have the same RF Group, Cisco RRM takes care of setting power and channel plan for the
border areas.
Same RF Group
5508 9800
Same Mobility Group

a
Same Mobility Group for

Are
fast seamless roaming

der
Bor

Floor 1 Floor 2
Legacy AP 802.11ax

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 51
 Migrate with Infrastructure Investment Protection
Switching
infrastructure

Best Better Good

mGig ports and UPOE 1G ports and POE+ 1G ports and POE
E.g. C9300-48UN, C9300L-48UXG-4X E.g. C9300L-48P-4X E.g. C9200-48P or one power
supply failure on higher end switches

Catalyst 9130 Catalyst 9130 Catalyst 9130

Full performance & features C9130: 8x8 support with just no USB Reduced Performance (1x1 radio)
on all Catalyst APs Full performance & features on other APs but all SSIDs are up!

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 52
 Catalyst 9100 Series Flexible power options: Reference

AP Model Power source Power Type 2.4 GHz Radio 5 GHz Radio Link Speed USB Power Draw
C9130AXI / C9130AXE 802.3at (PoE+) PoE+ 4x4 8x8 5G OFF 25.5W

C9130AXI 802.3at PoE+ 4x4 4x4 5G ON 25.4W

9130

C9130AXI / C9130AXE 802.3bt (UPoE) UPoE 4x4 8x8 5G ON 30.5W

C9130AXI / C9130AXE 802.3af PoE 1x1 1x1 1G OFF 13.4W

C9120AXI / C9120AXE 802.3at PoE+ 4x4 4x4 2.5G ON 25.5W

C9120AXI / C9120AXE 802.3af PoE 1x1 1x1 1G OFF 13.4 W

9120

C9120AXI / C9120AXE 802.3af PoE 2x2 N 1G OFF 13.4 W

C9120AXI / C9120AXE 802.3af PoE N 2x2 1G OFF 13.4 W

C9115AXI / C9115AXE 802.3at PoE+ 4x4 4x4 2.5G ON 20.4W

9115

C9115AXI / C9115AXE 802.3af PoE 2x2 2x2 1G OFF 15.4W

C9117AXI 802.3bt UPoE 4x4 8x8 5G ON 28.9W

9117

C9117AXI 802.3at PoE+ 4x4 8x8 5G OFF* 25.4W

C9117AXI 802.3af PoE 2x2 2x2 2.5G OFF 13.5W

* If USB is enabled 5GHz will be reduced to 4x4

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 53
 Catalyst 9100 Series Flexible power options:
802.3af support for ALL Wi-Fi 6 APs Reference

AP Model Power source Power Type 2.4 GHz Radio 5 GHz Radio Link Speed USB Power Draw
C9130AXI / C9130AXE 802.3at (PoE+) PoE+ 4x4 8x8 5G OFF 25.5W

C9130AXI 802.3at PoE+ 4x4 4x4 5G ON 25.4W

9130

C9130AXI / C9130AXE 802.3bt (UPoE) UPoE 4x4 8x8 5G ON 30.5W

C9130AXI / C9130AXE 802.3af PoE 1x1 1x1 1G OFF 13.4W

C9120AXI / C9120AXE 802.3at PoE+ 4x4 4x4 2.5G ON 25.5W

C9120AXI / C9120AXE 802.3af PoE 1x1 1x1 1G OFF 13.4 W

9120

C9120AXI / C9120AXE 802.3af PoE 2x2 N 1G OFF 13.4 W

C9120AXI / C9120AXE 802.3af PoE N 2x2 1G OFF 13.4 W

C9115AXI / C9115AXE 802.3at PoE+ 4x4 4x4 2.5G ON 20.4W

9115

C9115AXI / C9115AXE 802.3af PoE 2x2 2x2 1G OFF 15.4W

C9117AXI 802.3bt UPoE 4x4 8x8 5G ON 28.9W

9117

C9117AXI 802.3at PoE+ 4x4 8x8 5G OFF* 25.4W

C9117AXI 802.3af PoE 2x2 2x2 2.5G OFF 13.5W

* If USB is enabled 5GHz will be reduced to 4x4

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 54
 Migrate with Infrastructure Investment Protection
Access Point
Mounting infra

§ Same mounting brackets going

back 12 years (!!)
§ Mounting Bracket’s cost included
in the access point price
§ Easy to deploy, save OPEX money
AIR-AP-BRACKET-1 and -2

*Exceptions AP-1130, 1240, 1250 using Bracket-8

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 55
Catalyst 9130AXE Smart 8 Connector Port
DART connector: 8 RF and 16 Digital Lines

Remove Yellow Cap

UGLY YELLOW
Gets your attention
to remove Plug

9130AXE does not have internal antennas or RP-TNC connectors

NOTE: Do not operate unit without first connecting the antennas.

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 56
Catalyst 9130AXE
C-ANT9101=
New Self Identifying Antennas

Three new 8x8 external antennas

• C-ANT9101= Ceiling Mount omni, similar to AIR-ANT2524V4C-R=
C-ANT9102=
• C-ANT9102= Wall/pole mount omni, similar to AIR-ANT2544V4M-R=
• C-ANT9103= Wall/pole mount patch, similar to AIR-ANT2566D4M-R=
• Include a new industrial design to match new 11ax APs
Why a new DART connector?
• simplify installation - Single insertion cable (eliminates multiple RP-TNC cables) C-ANT9103=
• Self Identifying Antenna (SIA) circuitry to automate provisioning and detection
• Includes LED to mimic AP LED status

NOTE: C-ANT9101, C-ANT9102, C-ANT9103 support 8x8 mode operations only. Tri-Radio requires dual 4x4 Array antennas

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 57
 C9130AXE: can I use legacy antennas?
• 9130AXE does not have RP-TNC or N type connector
• You have to use an adapter:

AIR-CAB-002-D8-R= AIR-CAB-002-D8-N= AIR-CAB-002-DART-R=

• Use this adapter for the RP-TNC • Use this adapter for the N antennas • Do not use with AP 9130
antennas • Use of an 8 port DART ADAPTER will • This can be used with Access Point
• Use of an 8 port DART ADAPTER will put the AP in legacy antenna mode 2800/3800 and 9120
put the AP in legacy antenna mode and “P” mode
• Antennas up to 6 dBi can be used • Antennas up to 13 dBi can be used

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 58
C9130AXE - Approved Antennas Reference

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 59
 Agenda Chapters

• Introduction to new Cisco Wireless Stack

• Why Migrate?
1

• Build your Migration Strategy

2
• Access Point Migration

• Wireless Controller Migration 3

• Prime and Cisco DNA Center

• Key takeaways

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 60
 Wireless Controller Positioning and Transition
Refresh old 2504, 5508, 8510 to 9800 and position 9800 in new
opportunities
Up to
100 APs

SMB, Small Campus Mobility 2504

Embedded Wireless in Catalyst APs
and branch Express Wireless Controller

100-
150 APs

Distributed Branch, 3504 C9800-CL

Wireless Controller C9800-L C9800 for cloud
Small Campus

150 to
1500 APs

5508, 5520 C9800-40 C9800-CL

Medium Campus Wireless Controller C9800 for cloud

1500 to
6000 APs
7510, 8510, 8540
Wireless Controller
C9800-CL
Large Campus C9800-80 C9800 for cloud
DGTL-BRKEWN-2004 61
 IOS XE Release Schedule
Maintenance Release
16.12.3 Standard Release
Extended Release
16.12.2s
16.10.1e 16.11.1c Recommended
16.12.1t

16.12.1s

16.10.1 16.11.1 16.12.1 17.1.1 17.2.1 17.3.1

<Name> 16.12.2s
Major release
Minor release
Maintenance #

Jan 19 April 19 July 19 Jan 20 July 20

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 62
 Cisco Recommended Releases Reference

Access Points IOS-XE AireOS DNA-C Prime CMX ISE

C9115AX, C9117AX, 2.4

16.12.3 8.10.121 1.3.3 3.8 10.6.2
C9120AX, 9130AX 2.6

2.4
C9130AX-E 17.2 8.10.121 1.3.3.x* 3.8 10.6.2.x*
2.6

3.7 + 2.4
Wave 2 16.12.3 8.5.164.0 1.3.3 10.6.2
device pack 1 2.6

Wave 2 3.7 + 2.4

16.12.3 8.8.130.0 1.3.3 10.6.2
4800 APs device pack 1 2.6

* To be posted soon
Please check these links for the latest info
https://www.cisco.com/c/en/us/support/docs/wireless/catalyst-9800-series-wireless-controllers/214749-tac-recommended-ios-xe-builds-for-wirele.html
https://www.cisco.com/c/en/us/support/docs/wireless/wireless-lan-controller-software/200046-tac-recommended-aireos.html
#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 63
Evaluate feature
gaps
C9800 Configuration Migration Tool
• Import AireOS configuration to verify if there are any feature gap
• Migration tool managed by TAC: https://cway.cisco.com/wlc-config-converter/

Drop the AireOS config file:

• Upload it from directly from GUI:

or
• use the “show run-config command”
output and put it in a .txt file

Choose the AireOS to C9800

converter and hit run

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 65
C9800 Configuration Migration Tool
• Analyze tool output
Tool provides following config:
• Translated (translated in IOS-XE)
• Unmapped (supported but not
translated)
• Unsupported (not supported in C9800)
• Not Applicable (deprecated)

• AireOS CLIs and the correspondent

translated IOS-XE commands

• Always recommended to analyze the

translated config before paste it

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 66
Profiles, Tags…
Subtitle: How to do the old things in a new and better way
 Catalyst 9800 vs. AireOS Configuration Model
Modularized model with logical decoupling of configuration entities
Policy Tag
WLAN AP Group Flex Group RF Profile Basic
Wireless
Switching
Basic Policy

`
Advanced
Wireless Wireless
Network
Network Policy Network Policy
Policies
Advanced
RRM Wireless
Wireless
Security
Wireless
RF Profiles
Wireless
security Policy Profile
Security Data Rates WLAN Profile
Broadcast Remote (Flex)
Domain site settings
Switching
Policy Advanced Site Tag
Site specific Switching
settings Policy
Network Policy Decouple
Site specific Remote (Flex)
settings site settings
New C9800
Configuration
Global AP Join Profile Flex Profile Model
Modularize

Site specific settings (including Flex configurations)

RF Tag

RRM RRM
RF policy

Data Rates Data Rates

AireOS configuration Model: same type of information is Advanced Advanced

spread across multiple configuration constructs

5GHz RF Profile 2.4Ghz RF Profile

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 68
Catalyst 9800 Config Model
Access Points

Policy Tag RF Tag

RF
WLAN
Profile
Profile
2.4 GHz

RF
Policy
Profile
Profile
5 GHz

• Defines the Broadcast domain (list of • Defines the RF properties of the

WLANs to be broadcasted) with the group of APs
policies of the respective SSIDs
• “Equivalent” to AP Group in AireOS
SiteTag
AP • Defines the properties of the central/remote sites
Profile • Defines the roaming domain for Flex APs
• “Equivalent” to Flex Groups in AireOS but only for Flex APs
• Max Flex APs per site tag is 100 for seamless roaming
Flex
Profile

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 69
Catalyst 9800 Config Model - Benefits
Access Points
Profiles and Tags benefits:
§ Modular and reusable config constructs
§ Flexible in assigning configuration just a
group of APs
§ Easy to manage site specific configuration
RF Tag across geo-distributed locations
Policy Pag § No reboot needed when applying config
changes via tags (remember AP groups?)
Site Tag

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 70
AP to Tags binding
• Without previous configuration, when the AP joins the C9800 it gets assigned the
default tags: namely the default-policy-tag, default-site-tag and default-rf-tag
• The AP can have multiple tag sources:
§ Static: user configuration
§ Location*: Basic Setup flow
§ Filter: regular expression
§ AP: the tag is saved on AP

These are in order of priority

(*) Location here is not the AP Location but a

config construct internal to C9800

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 71
AP to Tags binding
• The static Tag <> AP binding is based on AP’s MAC and it’s a configuration on the
Controller: upon joining the C9800, the configuration gets applied and AP gets
assigned to the selected tags
• Note: when the AP joins another controller that doesn’t have the static mapping configured, it
will get assigned to the default tags

• To statically assign Tags to multiple APs, you can use the Advanced Wireless Setup

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 72
AP to Tags binding
• As of today, to push the Tags information to the AP so that the AP can save and
remember this information, you need to use a CLI command in exec mode:
c9800-1#ap name <APname> write tag-config
• The AP will retain its tags assignments when moved between two controllers if the
tags are saved to the AP (with the write tag-config command) and the tags are
defined on both controllers. If not defined, the AP is assigned default tags
Site tag Site tag
Policy tag Policy tag
RF tag RF tag
capwap
write tag-config

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 73
AP to Tags binding – GUI verification
• Available in 16.12.2s and later

• Configuration > Wireless > Access Points

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 74
CAP to Tags binding – CLI verification Reference

c9800-1#sh ap tag summary

Number of APs: 1

AP Name AP Mac Site Tag Name Policy Tag Name RF Tag Name Misconfigured Tag Source
-------------------------------------------------------------------------------------------------
-AP3800E 006b.f126.0570 lab-tag lab-policy default-rf-tag No Default

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 75
E.g. what does my AP
Group migrate to?
AP Group translates to Policy, Site and RF Tags
RF Tag
General Settings
2.4 GHz RF Profile

List of WLANs and 5 GHz RF Profile

Interface (group)/VLAN mapping

802.11a and 802.11b RF Profile

Policy Tag
General settings
WLAN to VLAN/VLAN Group
RLAN Settings
RLAN settings
Tags assigned to
the group of APs
Hyperlocation, Location
Site Tag
Intelligent Capture HyperLocation

Intelligent Capture
AireOS AP Group

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 77
E.g. how do I configure
an AP in Flex mode?
Site Tag for FlexConnect Deployments
Important facts:

§ For a site with FlexConnect APs, configure the Site Tag to

Catalyst 9800 be a non-Local Site (disable Local site)

WAN

§ In this case the Site Tag is equivalent to the FlexConnect

Group in AireOS
... ... ...
... § As with AireOS, there is a limit of 100 APs per Flex Site Tag
... ... ... for supporting seamless roaming

Branch 1 Branch 2 Branch N § Roaming across Site Tags for Flex APs will result in a client
Site tag 1 Site tag 1 Site tag 1
full re-authentication
FlexConnect APs

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 79
Site Tag vs. Site in Cisco DNA Center

§ Site Tag and Site in Cisco DNA Center are different

entities
Catalyst 9800
§ Site Tag (as any other AP tag) is a C9800
configuration model construct to apply settings to
an Access Point in a modular way
Campus
§ Site in Cisco DNA Center is a Design Construct
that helps creating a network hierarchy to then
... apply Network Settings and show Assurance data
... § As of today Cisco DNA Center sets the site tag =
default-site-tag for all locations unless there is the
Site tag 1 vs. need to change some default settings

§ In release 2.1.1 Cisco DNA Center will set the site

tag = building, unless there is the need to apply
more granular configuration

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 80
Catalyst 9800
Best Practices
Best Practice Guide on CCO
Direct url: http://cs.co/c9800-BP

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 82
Best Practice - Dashboard
• C9800 (in 16.12.1s and later) introduces the same Best Practice dashboard

• But there are some differences that you should be aware…

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 83
Best Practice – what’s different?
DHCP proxy/relay

• DHCP Proxy mode:

o In AireOS, enabling DHCP Proxy for wireless clients is a best practice
o In C9800 DHCP proxy is not needed as IOS-XE has embedded security features like DHCP
snooping, ARP inspection, etc. that don’t require a L3 interface

• DHCP relay or bridging mode?

o DHCP bridging is the recommended mode and should be used if DHCP relay can be
configured on the upstream switch or if the DHCP server is on the client VLAN
o On box DHCP relay can be configured on the client interface VLAN (SVI) or the WLAN basis
o In both cases you still need the SVI to be configured with an IP address
o The outgoing interface for DHCP traffic will be determined by routing table lookup for DHCP server’s IP
o DHCP relay on C9800 should be configured if customer wants to add option 82 info

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 84
Best Practice – what’s different?
Fast SSID change
• In AireOS, Fast SSID change is a best practice to allow clients to roam faster
between different SSIDs

• In C9800 there no setting called Fast SSID change and is not required as C9800
allows this behavior by default

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 85
Catalyst 9800
Design Considerations
 Design: Port, vlan, SVI and network connectivity
Facts:
OOB Management § It’s mandatory to have a L3 interface configured as wireless management interface
Network
§ AP CAPWAP traffic is terminated to the wireless management interface. There is
only one wireless management interface
Wireless
Management
interface § Service port on the appliance belongs to the Management VRF. On the C9800-CL
Service port this can be created as a L3 interface and this the only VRF supported
L3 interfaces
C9800 § For centrally switched traffic, is mandatory to configure a L2 VLAN mapped to the
L2
VLANs
SSID; but the corresponding L3 interface (SVI) is optional, unless you need mDNS
feature – this is different from AireOS where Dynamic interface is required.
... Data ports

Trunk - LAG Design best practices:

§ Connect the uplink ports as per AireOS best practice (trunk with port-channel to
E.g. VSS switch pair of VSS switches or to a multi switch stack). Multi-lag is supported from 17.2

§ Use an SVI for wireless management interface. For the appliance and C9800-CL in
Enterprise network private cloud, using a L3 port is not recommended

§ C9800-CL in public Cloud must use a L3 port and hence has the following feature
limitation: no support for sniffer mode AP and Hyperlocation

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public
Policy Tags – Default Policy Tag
§ Policy Tag defines which SSID is broadcasted by the AP or
Catalyst 9800
group of APs and the associated policy (VLAN, QoS, AVC,
etc). In this, it’s equivalent to the AP Group in AireOS

§ Like any other tags, policy tag has a default-policy-tag that

gets assigned by default when the AP first join the C9800

Enterprise network § In release 16.12.1s and below all the WLANs defined with ID
< 16 are automatically mapped to the default-policy-profile,
added to the default-policy-tag and hence broadcasted
automatically (same as the default AP Group)

... ... ... § Starting release 16.12.2s and above, the behavior changes:
... user must explicitly map any WLAN (no matter the WLAN ID)
... ... ... to the default-policy-profile (or a custom profile) via the
default policy tag for the SSID to be broadcasted. In other
Default
Policy tag
Policy tag 2 Policy tag 3 words, no SSID will be broadcasted by default

§ If you are upgrading from 16.12.1s (or prior) to 16.12.2s and

above, you have to make this change

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 88
 Policy Tags – Roaming across Policy Profiles
Catalyst 9800 § Policy Tags can be used to assign different policies to the same
Vlan 20 SSID in different locations or group of APs via policy profiles.

§ Use case: IT wants to assign a different VLAN to the campus

wide SSID according to client joining location. For example: if
Vlan 10 client joins from bldg. 1-3 assign it to VLAN 10, if it joins from
bldg. 4-5, assign VLAN 20 and so on…
Enterprise network
§ This can be easily achieved by using a different policy tag per
group of APs in those buildings and mapping the same SSID to
a different policy profile (where the different VLAN is defined).

§ Important: as of 17.2, C9800 doesn’t support seamless

Bldgs. 4-5
Bldgs. 1-3

... ... ...

... roaming across same SSID but different policy profiles. In this
... ... ... case the client, roaming from building 3 to building 5, will have
to go through a full reauthentication.
Policy tag 1 Policy tag 2 Policy tag 3

§ This is being fixed in an upcoming release and behavior will be

same as AireOS where roaming across AP Groups is seamless.

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 89
Site Tags – Campus design recommendations
DB
IOSd Manager Config DB Ops DB

§ Use custom site tag and not the default site tag
WNCd WNCd ... WNCd
Ops data Ops data Ops data
§ For best performance group APs at a roaming domain
level > Site Tag = Roaming Domain. Example: if most of
WNCd(1) WNCd(2) ... WNCd(n)
the movement is within a building, assign all the APs in the
building to the same site tag
§ Fast Seamless Roaming (802.11r, CCKM, OKC) is fully
Catalyst 9800 supported across site tags for Local mode APs. 802.11k/v
is not handled when roaming across site tags

Enterprise network
§ For Local mode APs, the recommended # is 500 APs per
Site Tag. But it should not exceed the following limit:
Platform Max APs per site tag
... ... ... 9800-80, 9800-CL (Medium and Large) 1600
...
... ... ... 9800-40 800
Any other 9800 form factor Max AP supported
Bldg. 1 Bldg. 2 Bldg. N
Site tag Site tag Site tag

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 90
Site Tags – Campus design recommendations
Site tag Customer has a 9800-40 with 700 APs in one building
Recommendation: you can use one site tag, especially if voice
(802.11k/v) is a requirement. Or you can split the building in two
site tags for upper and lower floors.
BLDG2
Site tag BLDG1
Site tag

Customer has a 9800-40 with 1600 APs across two buildings

Recommendation: configure a site tag per building. Roaming
anyway works across site tags
CAMPUS
Site tag

Customer has a 9800-40 with 400 APs across two buildings

Recommendation: configure just one name site tag and don’t
use the default site tag

Remember: Fast and seamless roaming

#CiscoLive
is fully supported across site tags
DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 91
AireOS – C9800
migration steps
AireOS to C9800 migration

Customer requirements:
• Seamless roaming during
migration
Catalyst AireOS
9800 WLC
• Common Channel and Power
plan needed across Controllers
(Cisco RRM*)?
• Leverage existing Guest Anchor
AireOS
Catalyst 9800
Deployment
deployment
Deployment

*Radio Resource Management

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 93
AireOS to C9800 migration - Roaming
Secure Mobility
(CAPWAP)

• Mobility Group provides seamless

roaming between wireless WLC
• Mobility Group between AireOS and
Catalyst
9800
AireOS
AireOS
WLC
IOS-XE WLCs is only supported on:
8.8.111
8.5.164 S • 3504/5520/8540 with 8.8.111 and higher
• 5508 and 8510 with 8.5.164 on CCO

• This is because C9800 only support

AireOS CAPWAP based mobility tunnels
Catalyst 9800
Deployment Deployment (Secure Mobility)
• Note: Secure Mobility is NOT
supported on WISM2, 7510, 2500

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 94
 C9800 migration steps
5520 Anchor

5508

Mix of 802.11n, W1 and W2 802.11ac APs

§ 5508 do not support 11ax APs

§ User need to add the C9800 first
§ 802.11n APs are not supported with C9800
and will need to be replaced
§ W1 802.11ac APs are EoS and need to be
replaced as well

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 95
 C9800 migration steps 5520 Anchor

First step
5520 Anchor

Secure Mobility tunnel

5508 5508 C9800

CAPWAP Mobility Group

• What do I need to know about

seamless roaming and IRCM?
• When ready, how to add new APs or
move existing APs to C9800?
Mix of 802.11n, W1 and W2 802.11ac APs Add new C9800 first

§ 5508 do not support 11ax APs § Upgrade 5508 to 8.5.164 IRCM image
§ User need to add the C9800 first § Upgrade 5520 to 8.5.164 IRCM image
§ 802.11n APs are not supported with C9800 § Add C9800 to the network
and will need to be replaced § Create CAPWAP Mobility Group with 5508
§ W1 802.11ac APs are EoS and need to be § Configure Secure Mobility with 5520
replaced as well § Migrate configuration to C9800

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 96
AireOS to C9800 migration - Roaming
Secure Mobility
(CAPWAP)

• All client roaming between AireOS WLC

and C9800 are L3 roaming

• The client session will be anchored to the

first WLC that the client has joined
Catalyst AireOS
AireOS
9800 WLC
8.8.130
8.5.164

Catalyst 9800 AireOS

Deployment Deployment

Seamless
roaming*

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 97
 AireOS to C9800 migration - Roaming
int vlan 10
ip address 10.10.10.1

Trunk: vlan 10 Trunk: vlan 10 • All client roaming between AireOS WLC
AireOS
and C9800 are L3 roaming
Catalyst
9800 8.8.130
8.5.164 • The client session will be anchored to the
CAPWAP Secure CAPWAP tunnel first WLC that the client has joined
• The point of attachment to the wired
CAPWAP
network doesn’t change when roaming
between C9800 and AireOS and vice
versa

AireOS • This is independent of the VLAN mapped

Catalyst 9800
Deployment Deployment to the SSID on the wired side

Seamless
roaming 10.10.10.122
10.10.10.122

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 98
 AireOS to C9800 migration - Roaming
int vlan 10
ip address 10.10.10.1

Trunk: vlan 10 100

Trunk: vlan 10 • Before 16.12.3 and in 17.1: it is
recommended to have different VLANs
Catalyst AireOS
9800 8.8.130 mapped to the SSID on the two WLCs
8.5.164 (e.g. VLAN 10 and 100)
CAPWAP Secure CAPWAP tunnel
• In 16.12.3, 17.2 and above, customer can
have the same VLAN on both SSID so
CAPWAP
client will get the same IP no matter
where it joins first.
• In AireOS terminology this is a L3 roam (auto-
anchored), but same VLAN/subnet is allowed
Catalyst 9800 AireOS
Deployment Deployment • IMPORTANT: there is a dependency on
AireOS code as well and latest 8.5.164
IRCM image is needed (8.8.130.0 or
Seamless 8.10.121 have the fix to allow same
roaming VLAN)
10.10.10.122

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 99
Moving APs between
Controllers
AireOS to C9800 migration – moving APs
• Recommendation: set the primary WLC on all APs to existing WLC (in
this customer case to 5508)
common • Move APs setting Primary WLC to C9800
RF Group
name From GUI:
Catalyst 5508
9800 WLC

CAPWAP tunnel

From AP CLI: “capwap ap primary-base <name> <IP address>”

• AP will download the new c9800 image and reboot

On ALL APs
Primary > 5508
On ALL APs
Primary > 5508
OntoALL
AP APs
be moved
Primary > 9800
5508

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 101
AireOS to C9800 migration – moving APs
• Recommendation: set the primary WLC on all APs to existing WLC (in
this customer case to 5508)
common • Move APs setting Primary WLC to C9800
RF Group
name From GUI:
Catalyst 5508
9800 WLC

CAPWAP tunnel

From AP CLI: “capwap ap primary-base <name> <IP address>”

• AP will download the new c9800 image and reboot

• Move all the other APs in the area

• Once the AP is moved, the AireOS AP image is kept as a back, so no

download is needed if moving back to AireOS. AP Group settings are
also maintained in AP memory

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 102
Moving APs with Prime
Leveraging Prime
1. Go to Configuration > Templates> Lightweight AP
2. Create a new Template

3. In the AP Parameter tab, scroll down and select

”Controller Configuration”
4. Fill in the Primary Controller name and IP address
with the C9800’s details and save

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 103
Moving APs with Prime
Leveraging Prime
5. Select the APs you want to move
6. Schedule when applying the Template and click
“Deploy”

7. Verify the Deploy status as Success on Prime

• Make sure Prime has SNMP write credentials to AireOS
WLC to apply the Template

8. Verify that the AP joins the 9800 controller

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 104
AireOS to C9800 migration – adding new APs
• Recommendation: set the primary WLC on all APs to existing WLC (in
this customer case to 5508)
common • For new APs to discover the Catalyst 9800:
RF Group
name • If using a different subnet for the new APs: just set the DHCP/DNS options
to point to the new 9800 IP address.
Catalyst 5508
9800 WLC

DHCP option 43 >

c9800’s IP
CAPWAP tunnel

On ALL APs
Primary > 5508
On ALL APs
Primary > 5508
On ALL APs
Primary > 5508

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 105
AireOS to C9800 migration – adding new APs
• Recommendation: set the primary WLC on all APs to existing WLC (in
this customer case to 5508)
common • For new APs to discover the Catalyst 9800:
RF Group
name • If using a different subnets for the new APs: just set the DHCP/DNS
options to point to the new 9800.
Catalyst 5508
9800 WLC • If using a common subnet for old and new APs:
DHCP option 43 >
First make sure all legacy APs have primary WLC set to AireOS
c9800’s IP
CAPWAP tunnel
Then make the change to advertise new C9800 in DHCP/DNS

On ALL APs
Primary > 5508
On ALL APs
Primary > 5508
On ALL APs
Primary > 5508

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 106
 C9800 migration steps
5520 Anchor

First step

Secure Mobility tunnel

5508 C9800

CAPWAP Mobility Group

Add new C9800 first

§ Upgrade 5508 to 8.5.164 IRCM image

§ Upgrade 5520 to 8.5.164 IRCM image
§ Add C9800 to the network
§ Create CAPWAP Mobility Group with 5508
§ Configure Secure Mobility with 5520
§ Migrate configuration to C9800

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 107
 C9800 migration steps
5520 Anchor 5520 Anchor

First step Second step

First step
Secure Mobility tunnel Secure Mobility tunnel

5508 C9800 5508 C9800

CAPWAP Mobility Group CAPWAP Mobility Group

Add new C9800 first § Replace 802.11n and W1 802.11ac APs with 11ax APs
1:1 AP replacement if coverage is correct
§ Upgrade 5508 to 8.5.164 IRCM image Don’t “Salt & Pepper” old with new AP model
§ Upgrade 5520 to 8.5.164 IRCM image Connect new 802.11ax APs to 9800
§ Add C9800 to the network § Move W2 11ac APs to 9800
§ Create CAPWAP Mobility Group with 5508 § Replace or move APs per roaming domain area
§ Configure Secure Mobility with 5520 § Decommission 5508
§ Migrate configuration to C9800 § Replace W2 11ac APs with new 11ax APs for full stack

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 108
 Agenda Chapters

• Introduction to new Cisco Wireless Stack

• Why Migrate?
1

• Build your Migration Strategy

2
• Access Point Migration

• Wireless Controller Migration 3

• Prime and Cisco DNA Center

4
• Key takeaways

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 109
Prime Infrastructure &
Cisco DNA Center
Network
Prime Cisco DNA Center
Management
 Cisco DNA-C / Prime for Wireless customers
Customer

Greenfield Users Network refresh Brownfield Users

Type

New Cisco Customers Existing Cisco customers Existing Cisco customers

Cisco DNA Center

for new sites

Co-Existence
Management

Cisco Prime for Config

Co-Existence
Cisco DNA Center
Cisco Prime for Config Cisco DNA Center
for Assurance
Cisco DNA Center
for Assurance
Recommendations

• Cisco DNA Center for Assurance

• Cisco DNA Center for Automation and • Cisco DNA Center for
• Prime and Cisco DNA Center co-
Assurance Automation/Assurance for newer sites
existence for network management
• [PnP] Cisco DNA Center for simplified • Prime-Cisco DNA Center Co-Existence
(Prime for Reporting, Compliance and
802.11ax onboarding for existing sites:
Config/ DNA Center for Assurance
• Cisco DNA Center CLI templates for Cisco Prime for advanced configuration
only)
advanced configuration Cisco DNA-C for Assurance only
• Prime for managing legacy devices
DGTL-BRKEWN-2004 111
Gradual Migration from Cisco PI to DNA Center

DNA Center DNA Center DNA Center

Assurance only Automation and Assurance Automation and

for compatible part of Assurance for full
network network

Prime for Prime Co-

No Prime
Automation existence

Getting Started Older hardware/software

with DNAC and DNAC compatible
software and hardware for
missing functionalities

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 112
Cisco Prime/DNA Center coexistence
Scenarios

Prime and Cisco DNAC Co-existence

1 Cisco DNAC in Assurance Mode PI = R/W, DNAC = RO

2 Cisco DNAC in Automation + Assurance Mode PI = RO, DNAC = R/W

3 Cisco DNAC in Automation Mode PI = RO, DNAC = R/W

There is only one system that will make changes to the network

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 113
 Cisco Prime/DNA Center coexistence

Using Prime Using DNAC

• Template configuration • Assurance

• Running network wide • Adv. troubleshooting
reports • Packet Capture and
Sensor enabled network
• ML/AI integration
• CMX integration

New Prime / DNA Center coexistence guide on CCO:

https://www.cisco.com/c/en/us/td/docs/net_mgmt/prime/infrastructure/3-8/migration/guide/bk_Cisco_Prime_Infrastructure_to_CiscoDNAC_Co-existence_Guide.html

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 114
 Cisco Prime/DNA Center coexistence - Overview
• Sites
• Buildings
• Floors with floor plan
• Floor elements – Site
Inclusion/Exclusion Hierarchy
Areas, Obstacles, etc.

• WLCs
• APs
• Routers Devices
• Switches

Prime Infrastructure
• CMX Servers 3.5.1 Update 1 Cisco DNA Center –1.3.1.0
CMX

Jump start with DNA Center with a readily

available site layout
#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 115
DNA Center coexistence tool
Migrate Data, Site and Services from Prime to Cisco DNA Center

Prime to DNA Co-Existence tool

DNA Center

Policy Automation Analytics

Prime Infra

Migrate Maps, Locations,

Devices and CMX

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 116
DNA Center coexistence tool - Workflow
Launch
workflow Select Sync Add CMX
Settings Select Credentials Summary
from Prime Add DNAC
Location
Credentials Groups

Enabling auto sync will move modifications of Soft Limits

already migrated
data from Prime Infrastructure to DNA Center automatically right
after modification
Currently available
Currently available in DNA Center
data in Prime
Newly selected Site
All CMX Servers associated SSH Credentials are Hierarchy
with this Site are listed mandatory and need to be
provided
• Validity Status check is made before
DNA Center
Summary
Scale of the different types of data that have been added,
adding
updated or deleted
• User can integrate only one DNA Center
server at a time
Sandbox
Current view to
DNA Center visualize
Scale the location of insertion in
calculated
the the
during Sitepage
Hierarchy
reload
Status of the last sync

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 117
DNA Center coexistence tool - Prerequisites Reference

• Migration workflow resides on

Prime Infrastructure
• Cisco Prime and DNA Center
require IP reachability from each
other
• Recommended release: DNA
Center 1.3.1 and Prime 3.5.1
Update 1

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 118
C9800 and Cisco DNA
Center
C9800 and Cisco DNA Center - Prerequisites
§ Required settings on C9800 (1/2):
Cisco DNA Center
• Local user with privilege 15:
username <name> privilege 15 password <password>
• Configure an SVI (L3 interface) and a route to reach DNA Center
• Enable wireless management on the SVI interface. Use the command:
wireless management interface <interface>
• Enable SSH on the box, the minimum commands:
hostname <name>
ip domain-name <domain-name>
crypto key generate rsa
line vty 0 4
transport input ssh
login local
(If using aaa, please make sure you have “aaa authorization exec default local”) Catalyst 9800
Wireless Controller

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 120
C9800 and Cisco DNA Center - Prerequisites
§ Required settings on C9800 (1/2)::
Cisco DNA Center
• For Discovery and Inventory Cisco DNA Center utilizes NETCONF
• The required configuration for NETCONF and AAA authorization:
netconf-yang
aaa new-model
aaa authorization exec default local
• If using AAA server to authenticate the user credentials, then make sure
that the netconf user returned from AAA is defined with privilege 15

§ All these settings are pushed via VM bootstrap templates (c9800-

CL) and DAY 0 GUI (all form factors)
§ If you don’t use the DAY 0 GUI for the initial configuration, then
you would have to enter the settings manually Catalyst 9800
Wireless Controller

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 121
C9800 and Cisco DNA Center - Discovery
§ Use the Wireless Management Interface (WMI) to discover
the C9800:
§ Recommended to use IP range with just one IP address
§ Make sure you don’t use the Redundancy Manager Interface
§ Don’t use the Service Port (SP) port otherwise Assurance will not
be available

§ Remember to Enable NETCONF on the Cisco DNA Center

Discovery
§ Cisco DNAC will push SNMP setting during discovery. If
using 9800-CL, Cisco DNA Center auto-generates the
trustpoint for AP to join during discovery.
§ As with AireOS WLC, Discovery will automatically configure
Assurance (unless disabled in Device Controllability)

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 122
 C9800 and Cisco DNA Center - Provision
• Cisco DNA Center abstracts all the device level details, so you have the same
automation flows as with AireOS controller
• There are few things to keep in mind though:
• In C9800 SVIs are not mandatory, so
Discover WLC during Provision you can just enter the
VLAN number and skip the IP settings

• Before DNA Center 2.1.1, it doesn’t

Provision WLC configure specific site tags a (default site
to Site
tag is used)

APs Discover
• With version 2.1.1, DNA Center
DNA-C via PnP automatically configures a site tag per
building with a max of 500 APs

Provision APs
to Site

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 123
C9800 and Cisco Prime
C9800 on Cisco DNA Center - Discovery
• Prime Infrastructure needs to be able to access C9800 via CLI/SSH, Cisco Prime
SNMP and Netconf in order to to configure and monitor the device
• What ports need to be open?
• All config and templates available in Prime Infra will be pushed via SNMP
UDP port 161 and CLI
• Operational data is obtained over SNMP. This uses UDP Port 162
• AP and client operational data are sent to Prime via streaming telemetry
• TCP port 830 is used by Prime Infra to push the telemetry configuration to 9800
devices (using netconf)
• TCP port 20828 (for IOS-XE 16.10 and 16.11) or 20830 (for IOS-XE 16.12 and later)
is used by C9800 to send data to Prime
Catalyst 9800
Wireless Controller
• Make sure you have netconf turned on and SNMP users configured

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 125
Maps migration
What you need to know about Maps…
Maps and Prime
• Prime can sync maps / floorplans with MSE…but
• Prime requires a manual process of export / import maps with CMX
• PI supports 3 level hierarchies:
• Campus à building à Floor
• There are also coverage zones, but these are for CMX and don’t represent a site
hierarchy in Prime

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 127
What you need to know about Maps…
Maps and DNA Center
• DNA Center has the site hierarchy: Global > Area > Building > Floor
• DNA Center does not allow the use of the character "/" in the name of the Area,
Building or Floor. If Prime Infrastructure has any group with that character in the
name, please change it before exporting
• DNA Center has a limit of 200 APs per floor map, consider this when migrating
• DNA Center can synch maps with CMX in the Design section
• Tethering will push maps from CMX to DNA Spaces Cloud
• Map Export can also be used for manual upload to DNA Spaces

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 128
Migrating maps in DNA Center
Option 1 = manual
• User creates the needed hierarchy in
DNA center and load maps there
directly
• Recommended only if need to start
from scratch
• No real migration, time consuming

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 129
Migrating maps in DNA Center
Option 2 = Export/import from Prime (1/4)
• Export the site Hierarchy. Go to
Inventory / Group Management / Network
Device Groups and click on ”Export Groups”
• Click on Export for APIC-EM and OK
• The generated CSV file needs to be edited to
add the country info for each Building (info
required by DNA Center)

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 130
Migrating maps in DNA Center
Option 2 = Export/import from Prime (2/4)
• Export the maps from Prime by clicking on
Map Archive
• Select the sites you want to export and click
on Generate Map Archive
• This will generate a tar.gz file

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 131
Migrating maps in DNA Center
Option 2 = Export/import from Prime (3/4)
• Prepare DNA Center: add the WLC to DNA Center
Inventory (Access Points need to be in the DNA
Center database)
• Import the site hierarchy from Prime by going to
Design / Network Hierarchy and import the CSV file
generated earlier
• Now you can import the maps by clicking on Import
Prime Maps and loading the tar.gz file
• NOTE: In DNA Center geo coordinates are
mandatory, in Prime these are optional. If you don’t
have geo coordinates, you will have issues in the
migration…

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 132
Migrating maps in DNA Center
Option 2 = Export/import from Prime (4/4)
• To add the geo coordinates in Prime before exporting by editing the map at Campus
or Building level

Enter the civic address

or coordinates

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 133
Migrating maps in DNA Center
Option 3 = Use the Prime DNA Center coexistence tool
• Same requirements as option 2
• Prime co-existence tool will prompt to push the CMX details to Cisco DNA Center;
there is not a way to uncheck this during the migration flow.
• It is possible to remove the sync between CMX & Site Maps getting migrated for the
brief period and enable the sync back once the building/floor maps are migrated

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 134
Cisco DNA Center
AP Refresh/Migration tool
Demo
Key takeaways
Key takeaways

Services Cisco DNA Spaces • Migration to Catalyst Wireless is now!

• An effective Migration needs:
Network
Management
Cisco DNA Center • Clear requirements from the customer
• A Migration strategy: use Evaluate, Design,
Implement steps
Wireless LAN
Controller • Spend time learning the new Cisco Wireless
Stack

Access Points • Check out the new Best Practice guide for
Catalyst 9800
Clients and
Sensors

#CiscoLive DGTL-BRKEWN-2004 © 2020 Cisco and/or its affiliates. All rights reserved. Cisco Public 137
Thank you

#CiscoLive
#CiscoLive