Add other devices and routing elements
Relevant for: AFA Administrators
This topic describes how to add monitoring and routing devices and routing elements.
Note: For details about adding devices of specific vendor types to AFA, or importing device data from CSV files, see Add devices to AFA and CSV import file format.
Tip: Alternatively, you can add and edit devices via API. See Add/Edit a device.
Add monitoring and routing devices
This procedure describes how to add the following types of monitoring and routing devices to AFA:
|
|
Note: These devices support change monitoring, routing analysis, and baseline configuration compliance only.
Do the following:
- Access the Devices Setup page. For details, see Access the DEVICES SETUP page.
- In the vendor and device selection page, select your device type.
-
Complete the following fields as needed, and then click Finish.
The fields displayed may differ depending on your device brand and selections.
Access Information fieldsSupported Capabilities
Displays a list of device capabilities.
This field is read-only and only appears for some devices.
Host
Type the host name or IP address of the device.
User Name
Type the username to use for SSH access to the device.
Password
Type the password to use for SSH access to the device.
Geographic Distribution fieldsDevice managed by
Select the remote agent that should perform data collection for the device.
To specify that the device is managed locally, select Central Manager.
This field is relevant when a Geographic Distribution architecture is configured.
For more details, see Configure a distributed architecture.
Baseline Configuration ComplianceBaseline Configuration Profile
To enable generation of Baseline Compliance Reports for this device, select the baseline compliance profile to use.
The drop-down list includes all baseline compliance profiles in the system.
To disable Baseline Compliance Report generation for this device, select None.
For more details, see Customize baseline configuration profiles.
Route CollectionSpecify how AFA should acquire the device's routing information:
- Automatic. AFA will automatically generate the device's routing information upon analysis or monitoring.
- Static Routing Table (URT). AFA will take the device's routing information from a static file you provide. For more information, see Specify routing data manually.
SNMP PollingUse the following fields to define SNMP polling values. These fields only appear for selected device brands.
SNMP version
Select the SNMP version in the drop-down menu.
SNMP community
Type the SNMP community string.
This field is only relevant for SNMP v2c.
Security Name (username)
Type the security name.
This field is only relevant for SNMP v3.
Authentication Protocol
If desired, select the authentication protocol in the drop-down menu.
This field is only relevant for SNMP v3.
Authentication Password
If you selected an authentication protocol, type the password.
This field is only relevant for SNMP v3.
Privacy Protocol
If desired, select a privacy protocol in the drop-down menu.
This field is only relevant for SNMP v3.
Privacy Password
If you selected a privacy protocol, type the password.
This field is only relevant for SNMP v3.
Remote Management CapabilitiesSelect SSH or Telnet to determine how data is transmitted to AFA.
Note: SSH is more secure than Telnet, however some device brands support only one method.
Then define the following details:
Custom Port
To specify a custom port, select this option and type the port.
This option is only relevant when SSH is selected.
Number of allowed encryption keys
Enter the permitted number of different RSA keys received from this device's IP address.
Different RSA keys may be sent from the same IP address in cases of cluster fail-over, device operating system upgrades, etc.
For example, if a cluster fail-over occurs, the secondary node will send a new RSA key from the same IP address to AFA. If this number is set to 1, the connection to the node will fail, resulting in a failed analysis.
OptionsReal-time change monitoring
Select this option to enable real-time change monitoring.
For more details, see Configure real-time monitoring.
Set user permissions
Select this option to set user permissions for this device.
The new device is added to the device tree.
-
If you selected Set user permissions, the Edit users dialog box appears.
In the list of users displayed, select one or more users to provide access to reports for this account.
-
To select multiple users, press the CTRL button while selecting.
-
Click OK to close the dialog.
-
A success message appears to confirm that the device is added.
Add routing elements
This procedure describes how to add routing elements to AFA.
Routing elements are generic devices that perform SNMP connections for retrieving routing tables, without collecting configurations.
Note: AFA supports routing elements using SNMPv2c and SNMPv3. The supported MIB is RFC-1213, and the OID fetched from the device is ipRouteEntry (object identifier: 1.3.6.1.2.1.4.21.1).
We do not recommend adding devices as routing elements if they have a non-standard routing deployment in addition to the standard RFC1213, such as Cisco Routers. For these devices, the SNMP response does not include crucial information, mainly concerning VRF instances.
Do the following:
- Access the Devices Setup page. For details, see Access the DEVICES SETUP page.
- In the vendor and device selection page, click Routing Element on the right.
-
Complete the following fields as needed and click Finish.
Access Information fieldsSupported Capabilities
Displays a list of device capabilities.
This field is read-only.
Host
Type the host name or IP address of the device.
Geographic Distribution fieldsDevice managed by
Select the remote agent that should perform data collection for the device.
To specify that the device is managed locally, select Central Manager.
This field is relevant when a Geographic Distribution architecture is configured.
For more details, see Configure a distributed architecture.
SNMP Polling fieldsUse the following fields to define SNMP polling values.
SNMP version
Select the SNMP version in the drop-down menu.
SNMP community
Type the SNMP community string.
This field is only relevant for SNMP v2c.
Security Name (username)
Type the security name.
This field is only relevant for SNMP v3.
Authentication Protocol
If desired, select the authentication protocol in the drop-down menu.
This field is only relevant for SNMP v3.
Authentication Password
If you selected an authentication protocol, type the password.
This field is only relevant for SNMP v3.
Privacy Protocol
If desired, select a privacy protocol in the drop-down menu.
This field is only relevant for SNMP v3.
Privacy Password
If you selected a privacy protocol, type the password.
This field is only relevant for SNMP v3.
Route CollectionSpecify how AFA should acquire the device's routing information:
- Automatic. AFA will automatically generate the device's routing information upon analysis or monitoring.
- Static Routing Table (URT). AFA will take the device's routing information from a static file you provide. For details, see Specify routing data manually.
OptionsUpdate Network Map upon routing change
Select this option to enable automatically updating the graphic network map upon routing changes.
Set user permissions
Select this option to set user permissions for this device.
The new device is added to the device tree.
-
If you selected Set user permissions, the Edit users dialog box appears.
In the list of users displayed, select one or more users to provide access to reports for this account.
-
To select multiple users, press the CTRL button while selecting.
-
Click OK to close the dialog.
-
A success message appears to confirm that the device is added.