Scribd Logo
Upload

Welcome to Scribd!

  • LAB-TOPOLOGY-1-STEPS (For Control Plane)

    Uploaded by

    Engr Raheel Bahadar
    6 views4 pages
    1. Generate an enterprise root certificate using XCA with specified details and export it to the desktop. 2. Configure vManage, vBond and vSmart with matching hostnames, IPs, organization details. 3. On vManage, configure the organization name, vBond IP, and select the enterprise root certificate for authorization. Then generate and sign CSRs for the devices and install the certificates.

    Original Description:

    Original Title

    LAB-TOPOLOGY-1-STEPS (for Control Plane)

    Copyright

    © © All Rights Reserved

    Available Formats

    PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    1. Generate an enterprise root certificate using XCA with specified details and export it to the desktop. 2. Configure vManage, vBond and vSmart with matching hostnames, IPs, organization details. 3. On vManage, configure the organization name, vBond IP, and select the enterprise root certificate for authorization. Then generate and sign CSRs for the devices and install the certificates.

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    6 views4 pages

    LAB-TOPOLOGY-1-STEPS (For Control Plane)

    Uploaded by

    Engr Raheel Bahadar
    1. Generate an enterprise root certificate using XCA with specified details and export it to the desktop. 2. Configure vManage, vBond and vSmart with matching hostnames, IPs, organization details. 3. On vManage, configure the organization name, vBond IP, and select the enterprise root certificate for authorization. Then generate and sign CSRs for the devices and install the certificates.

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 4

    Creation and Installation of Enterprise Root Certificates

    for vManage, Vbond, Vsmart


    (LAB 1)

    1. XCA (As CA Server)


    a. Generate a root certificate with following details
    countryName US
    StateorProvinceName US
    LocalityName US
    orginationName "NESECO Training Lab 1"
    organizationUnitName "NESECO Training Lab 1"
    commonName ROOTCA

    b. Export rootca certificate to your desktop

    2. Configure on vManage following information

    Conf t
    system
    host-name vManage
    system-ip 10.255.255.2
    site-id 2
    sp-organization-name "NESECO Training Lab 1"
    organization-name "NESECO Training Lab 1"
    vbond 10.0.0.3

    Note: Make sure there is no additional configuration under following VPNs other below

    vpn 0
    interface eth1
    ip address 10.0.0.2/24
    no shutdown
    ip route 0.0.0.0/0 10.0.0.10

    vpn 512
    interface eth0
    ip address 192.168.66.2/24
    no shutdown
    ip route 0.0.0.0/0 192.168.66.101
    3. Configure on vBond following information

    host-name vBond
    system-ip 10.255.255.3
    site-id 3
    sp-organization-name "NESECO Training Lab 1"
    organization-name "NESECO Training Lab 1"
    vbond 10.0.0.3 local

    Note: Make sure there is no additional configuration under following VPNs other below

    vpn 0
    interface ge0/0
    ip address 10.0.0.3/24
    ipv6 dhcp-client
    no shutdown

    ip route 0.0.0.0/0 10.0.0.10

    vpn 512
    interface eth0
    ip address 192.168.66.3/24
    ipv6 dhcp-client
    no shutdown

    ip route 0.0.0.0/0 192.168.66.101

    4. Configure on vSmart following information


    host-name vSmart
    system-ip 10.255.255.1
    site-id 1
    sp-organization-name "NESECO Training Lab 1"
    organization-name "NESECO Training Lab 1"
    vbond 10.0.0.3 local

    Note: Make sure there is no additional configuration under following VPNs other below

    vpn 0
    interface eth1
    ip address 10.0.0.1/24
    no shutdown
    ip route 0.0.0.0/0 10.0.0.10

    vpn 512
    interface eth0
    ip address 192.168.66.1/24
    no shutdown
    ip route 0.0.0.0/0 192.168.66.101

    5. On vManage Configure following


    Administrator→ Settings→
    Organization Name NESECO Training Lab 1
    vBond 10.0.0.3
    Controller Certificate Authorization select (Enterprise Root Certificate)
    6. On vManage Configure following
    a. Generate CSR for vSmart, vBond and v Manage
    b. Signe by CA Server (XCA)
    c. Install signed certificate using install certificate button

    You might also like