Cisco intersight€¦ · Recommendation engine Compliance Proactive tech support Baselining and notifications Firmware upgrades ... • Embedded Product Feature ... Cisco Intersight+

© 2018 Cisco and/or its affiliates. All rights reserved. Cisco Public

Cisco Intersight

Radenko Čitaković, Cisco SE

Cisco Connect Slovenija | Portorož 9-10. April 2019.



Agenda

Your IT challenges

Cisco Intersightstrategy

Intersightoverview

Customer benefits


Modern IT infrastructure must be constantly:

Continuous infrastructure optimization driven by analytics

LearningSafeguards applications in multi-tenant environments with policy-

based endpoint configuration

ProtectingInfrastructure as code: capable of

optimization in real time as the environment or the app requires

Adapting


Challenges we’re addressing

Distributedapps and IT

Physical and virtual sprawl, IoT, microservices

Traditional management“Building a monster

to manage the monster”

Human limitations

Scale, speed, complexity that make modern data centers

unmanageable


Strategy for next-generation systems management

Connect everything Have machines manage machines

Create actionable insight

Use the cloud Combine insightwith automation

Analyze the telemetry


Systems management evolution

Simplicity

Agility

Efficiency

Scale

Intuitive

Adaptive

Automated

Semi-automatedManual

Traditionaltools

Cisco UCS®

Cisco UCSDirector

Inflection point• Cloud-managed infrastructure• ML/AI for ITOps

Past Future

CiscoIntersight™


Opportunity: Cloud-managed infrastructure

Cisco Meraki™Cloud-controlled networking

Cisco Intersight™Cloud-controlled computing


Cisco Intersight

SaaS simplicity

Actionableintelligence

SaaS or connected appliance

Intuitive experience

Enhanced support Proactive guidance

Secure and extensible


Intuitive experience

Proactive guidance

SaaS or connected appliance

Enhanced support

Cisco Intersight pillars

Secure and extensible


Cisco Intersight: enhanced supportConnected TAC

Automated transmission of technical support files to the Cisco® Technical Assistance Center (TAC) for accelerated troubleshooting

Future: Telemetry collection, issue fingerprinting, proactive alerting and remediation


Cisco Intersight: proactive guidanceRecommendation engine

Compliance

Proactive tech support

Baselining andnotifications

Firmwareupgrades

Alerts


Key features in Cisco Intersightsecurity architecture

Use of industry-standard security protocols

Compliance with stringent Cisco® InfoSec

security and data handling standards

Encryption of all data


Cisco UCS® capabilities today

Transition to SaaS

SaaS modelCisco-hosted cloudCustomer-hosted connected appliancePartner-hosted cloud

Traditional delivery modelOn-premises software and hardware-embedded tools

Infrastructure-as-a-service and orchestration

Third-party integrations: infrastructure and toolchains

Global resource pooling and policy management

Policy-based automation

Unified element management

SaaS-consumption modelFrees customers from care and feeding of management tools and eliminates upgrade dependencies

Seamless extensibilitySimplifies management across technologies and geography

Continuous feature integrationRapid development, delivery, and customer feedback


JulyJuly 20SD Card PolicySyslog PolicyJuly 30Single Sign On/SAML SupportMulti-account supportOS Discovery Tool for HCL

August/SeptemberAug 2Hyperflex 3.0(1c) and 2.6(1e)August 14C125 M5 (Base), HCL RecommendationsAugust 30Intersight Essentials for C125 M5, additional server images and server actionsSeptember 10Hyperflex 3.0(1e) Support

JuneJune 8TAC generated Tech Support FilesJune 16Enhancements to device details, widgets, Hyperflex policiesJune 28FI-attached server images

OctoberOct 9Account/role switchingServer Profile enhancementsConnected TAC for HyperFlex ESXiOct 16HyperFlex Data Platform 3.5(1a) supportConnected TAC for HyperFlex Hyper-VOct 18UCS C125 M5 server images

DecemberDec 6Enhanced Health Status

NovemberNov 1Hardware Compatibility List for C-Series Standalone server Nov 112 Step Authentication for Cisco IDNov 15HyperFlex Data Platform 3.0(1i) support

https://intersight.com/help/whats_new/2018

Cisco Intersight: CI/CD Model in ActionCY2018 Features Delivered




JanuaryJanuary 17Added HyperFlex Data Platform 3.5(2a) support to HyperFlex Cluster Profiles for HyperFlex Installation. Intersight Essentials is available for Cisco UCS C480 M5 ML Servers. January 10Ability to open a Cisco TAC case directly from Intersight. OS Discovery tool has been updated to include support for Windows systems.

MarchMarch 28Ability to import configuration details of a Cisco UCS C-Series Standalone server directly from Cisco IMC into Intersight. Ability to open a TAC case directly from the Fabric Interconnects table view. March 14OS Discovery Tool has been updated to include support for Linux platforms. Ability to unclaim devices from the device connector on the endpoints. March 7Additional roles for improved role-based access control.

FebruaryFebruary 28Ability to access the Intersight UI and invoke the APIs through IPv6 addresses. February 21 Updates to status.intersight.com include Email, SMS, Atom, and RSS notifications.February 14Ability to construct widgets that display real-time status of customizable metrics for Cisco UCS Domains. February 7Cisco Intersight Virtual Appliance. New Network Policies to configure LAN, SAN, and Adapter settings on Cisco Virtual Interface Cards (VIC).

AprilApril 4Ability to perform a free text search across columns in the Table views.

Cisco Intersight: CI/CD Model in ActionCY2019 Features Delivered


Intersight: How does it work ?

UCS Manager IMC Software HyperFlex Connect UCS Director

Device ConnectorBRKINI-2534 16


HX Cluster Device Connector

Intersight

Analytics

Policy Management

Device Connector

C-series standalone

Automation

Monitoring

Device Connector

IAM, RBAC

SN2INFO

SSO

ASD

Web Sockets

over HTTPs

Cisco TAC

SCH

UCS FI and UCS servers

Licensing

Licensing

CustomerDevOps

team

Recommendation Engine

Entitlements

Intersight Service Architecture

Device Connector: Overview

A very light and autonomous piece of software allowing:• Communication with the

Intersight portal, wherever the portal is.

• Capability of inserting tasks / calls against the infrastructure (UCS Manager, Cisco IMC Software, HyperFlex, UCS Director) via the pluggable / extensible framework

Key Features• Bundled with Firmware• Embedded Product

Feature• Secure Communications• Self Updated• Autonomous Check-In

BRKINI-2534 ‹#›



• Cisco HyperFlex: • HyperFlex v2.5.1 (or later)

• Cisco UCS Manager: • UCSM v3.2 (or later)

• Standalone C-Series:• IMC Software v3.1 (or later)• IMC 3.0(4) (or later for M4)

• Cisco UCS Director:• Version 6.6 or later

Device Connector Availability

Device Connectors are self updating, so there is not a need to manage the Device Connector after it connects to Intersight.

BRKINI-2534

19


Cisco Intersight:Current features


Cisco Intersight: Initial release

SaaS subscription

UI launchCisco® IMCCisco UCS® Manager and HXDP

Deployment IMC policy frameworkCisco HyperFlex™ Cloud Installer

Dashboard Fault alerting Platform inventory

Telemetry data collection Cloud connectors

Supportability

Platform compliance HF/FW compatibility

Upgrade checks


Cisco Intersight Server Profiles overview

• Individual Server Profiles are created within the Profiles tab.

• Users select desired policies to include in profile.

• Users can also create new policies within profile setup.

• Profiles can be exported to CSV file and tagged for better organization.

• Profile summary page will show list of profiles, status, and the endpoint they are associated with.

• A profile can only be assigned to a single server.

• Profiles can be cloned and assigned to additional endpoints.


Cisco Intersight Server Policies Overview• Individual Server policies are created within the policies tab• Policies can also be created on the fly when creating a Server Profile• Available server policies

• LDAP policy• Serial Over LAN Policy• NTP Policy• BIOS Policy • Disk Group Policy (coming soon)• Storage Policy (coming soon)• Network Connectivity Policy• Virtual KVM Policy• SMTP Policy• SNMP Policy (coming soon)• IPMI Over LAN Policy• SSH Policy• Local User Policy• Precision Boot Order Policy

• Server Policies must be assigned to Server Profile before they can be associated with a server and deployed


Cisco HyperFlex Installer user experience

• Deploy from anywhere!

• No need for existing infrastructure or OVA setup

• Latest version always available

• Reusable policy for rapid and consistent deployment

• Simple ramp-up of large HX projects with simultaneous background deployment

• Services of SaaS version wrapped up in a virtual machine

• Software Appliance (OVA) initially supporting VMware

• Same look and feel, same API, and same initial features

• Requires connection to Cisco, done via Device Connector in Software Appliance

Cisco HyperFlex Cisco HyperFlex


Cisco Intersight: Licensing Tiers

Supports Cisco UCS® and Cisco HyperFlex™ Systems

Global inventory and health statusCustomizable dashboard

Tagging and basic global searchContext-launch of element managers

Cisco HyperFlex installationConnected TAC

SaaS Only

Server HCL compliance checkVirtual Keyboard-Video-Mouse (vKVM) launch

Cisco UCS C-Series policy-based configuration with Server Profiles (M4 and

M5)Detailed server inventory

Cisco® C-Series and HX Edge firmware management

Full API accessCisco Intersight Virtual Appliance Option

Base Essentials(Base edition plus)


Cisco Intersight Deployment Options

Cisco Intersight (SaaS) Cisco Intersight Virtual Appliance

Form factor Cisco-hosted @ Intersight.com VMware Virtual Appliance (OVA)

Management resources N/A 16 vCPUs, 32GB Memory, 500GB Disk

License options Base & Essentials (DC-MGT-SAAS-EST-C) Essentials Only (DC-MGT-ONPREM-EST)

User authentication Cisco ID (CCO) and SSO (SAML 2.0) LDAP/AD and SSO (SAML 2.0)

Scale Unlimited Up to 2,000 Servers

Upgrades Automatic Automatic within specified window

Full UCS/HX features Yes Yes

Intersight OpenAPI Yes Yes

Connection to Cisco Yes - for all managed devices Yes – for appliance only

Option to control Data collection No Yes


Cisco Intersight Virtual Appliance

What is it?• Services of SaaS version wrapped up in a virtual machine

• Software Appliance (OVA) initially supporting VMware

• Same look and feel, same API, and same initial features

• Requires connection to Cisco, done via Device Connector in Software Appliance

Who is it for?• Sales teams should push SaaS version first when possible

• Customers with data locality or security requirements not met by SaaS

• Not for customers that cannot connect to public networks (Internet)

Cisco.comServices

HyperFlex Cluster

Device Connector

Intersight Appliance

Policy Management

Device Connector

C-series standalone

Automation

Monitoring

Device Connector

IAM, RBAC

ASD

Web Sockets

over HTTPs

UCS FI and UCS servers

Licensing

Intersight Cloud

Recommendation Engine

Cisco Intersight Appliance Architecture

‹#›


Cisco Intersight Virtual Appliance

How is it different from SaaS?• No Base version, only in Essentials• Will have different PID and a higher price point than SaaS• In future will have features that are restricted to SaaS

• Includes some Appliance-only features: traditional LDAP/AD, backup

• Upgrades will be automatic, with a configurable weekly update window

System requirements:VMware 6.0+ 16 vCPUs 32GB memory 500GB disk


Cisco Intersight + Cisco TAC + Smart Call Home = Proactive resolution

Case opened automatically with Smart Call Homeor manually by

customer

Diagnostic dataautomatically

collected

CSE contacts customer with

actionableinformation

Diagnostic resultsautomatically

gathered

Issue detected on device


Cisco Intersight + TAC real-world example

2018-12-DD 01:25 +12 Minutes

Case opened:XXXXXX244

Diagnostic dataautomatically collected

Firmware upgrade identified to resolve

known issue

Diagnostic resultsautomatically gathered

+16 MinutesTotal: 28 minutes to diagnose issue


Customer Benefits


Cisco Intersight: Day 0 and ongoing benefits

Benefits

Faster Problem Resolution

Lower configuration risk

Lower admininstration costs

Fewer tools

Quicker deployment times

Monitor andoperate centrally

Day 1Configure

Deploy/install

Maintainsystem

Day 2Monitor and alert

Day 60+Troubleshoot/fix

Optimizeresources


Cisco Intersight customer outcomes

Pervasive simplicity

Easy for developmentand operations

Agile delivery

Respond quickly to new requests

Actionableintelligence

Best practices to enableproactive operations


Cisco Intersight delivers simplified management

SaaS/subscriptionHosted management or connected appliance will free customers from care/feeding of management tools and eliminate upgrade dependencies.

ProgrammabilityEnd-to-end programmability with native API, SDKs, and popular DevOps toolsets will enable customers to consume natively.

Recommendation engineEmbedded recommendation platform with insights sourced from across the Cisco-installed base and tailored to each customer.

Unified managementSingle pane of glass, consistent operations model, and experience in managing all systems and solutions.

Enhanced support experienceHosted platform allows Cisco to address issues platform-wide; support extends to all TAC-supported platforms.

No-impact transitionIMC/UCSM/HX embedded connector will allow customers to start consuming benefits without forklift upgrade.


Cisco Intersight Dashboard

• Customizable dashboard to show overall faults / health / inventory for all managed infrastructure• Can create unique dashboards for individual Intersight users• Can add / remove widgets as desired• Can click on various widgets for more detailed information


Cisco Intersight Fault List

• All device faults can be accessed from any Intersight page (image to the right shows access from dashboard)

• Clicking on a particular fault provides additional fault details, remediation steps if available

• Tabs available for All / Critical / Warning fault levels• Fault tab shows UCS fault code, timestamp, and fault details


Cisco Intersight Servers Tab

• Main server tab shows all servers managed by Cisco Intersight, and provides basic Health/Model/IP info• Desired column details can be added/removed as user sees fit

• Clicking on any server name dials in to that server – detailed server overview / inventory information (details on next few slides)


Cisco Intersight Server Overview

• Server name, model, serial number, and other basic properties are displayed• Health overlay for front/back/top views can be turned on/off as needed• Alarms/Faults visible on right hand side• Server Actions available as well – IMC cross launch, vKVM (coming soon), power operations, tagging


Cisco Intersight Server Inventory

• Detailed information for all server peripherals – CPUs, memory, adapters, storage, etc• Can dial in to specific peripheral for additional component information• Server Actions tab available here as well


Cisco Intersight - Server Actions• Available Server Actions

• Launch IMC

• Launch KVM (coming soon)

• Power ON/OFF

• Shutdown

• Reboot

• Power Cycle

• Hard Reset Server

• Server actions can be accessed from main servers page by clicking the icon

• Server actions can also be access on server properties page for any given endpoint

Documents

Cisco intersight€¦ · Recommendation engine Compliance Proactive tech support Baselining and notifications Firmware upgrades ... • Embedded Product Feature ... Cisco Intersight+