📘CCNP Encore (350-401-ENCORE-v1.1)
1. What is an API? (Quick Refresher)
An API (Application Programming Interface) is a way for software systems to communicate with each other automatically.
Instead of a network engineer clicking buttons in a GUI:
- A program sends a request to the system
- The system responds with data or performs an action
Most modern Cisco controllers use REST APIs, which:
- Use HTTP/HTTPS
- Exchange data using JSON
- Support standard methods like GET, POST, PUT, DELETE
2. Why Cisco Uses APIs in DNA Center and vManage
Cisco DNA Center and vManage are centralized network controllers.
Their APIs allow:
- Network automation
- Integration with external tools
- Faster configuration changes
- Monitoring and reporting
- Zero-touch and large-scale deployments
Key exam idea:
👉 APIs allow network programmability and automation instead of manual configuration.
3. Cisco DNA Center APIs
3.1 What is Cisco DNA Center?
Cisco DNA Center (DNAC) is a centralized controller used mainly for:
- Enterprise campus networks
- LAN and wireless environments
It manages:
- Switches
- Wireless controllers
- Access points
- Network policies
- Assurance and monitoring
3.2 Purpose of Cisco DNA Center APIs
Cisco DNA Center APIs allow external systems or scripts to:
- Discover network devices
- Configure devices
- Apply network policies
- Monitor network health
- Collect statistics and assurance data
These APIs make intent-based networking possible.
3.3 Type of APIs Used by Cisco DNA Center
Cisco DNA Center uses:
- RESTful APIs
- HTTPS
- JSON format
Key characteristics:
- Stateless
- Secure
- Easy to integrate with scripts and tools
3.4 Authentication in Cisco DNA Center APIs
Before using DNAC APIs, authentication is required.
How authentication works:
- A client sends username and password
- DNA Center returns an authentication token
- This token is included in future API requests
Important exam point:
👉 DNAC APIs use token-based authentication.
3.5 Common Cisco DNA Center API Functions
1. Network Discovery
- Discover switches, routers, and access points
- Automatically add devices to inventory
2. Device Inventory
- Retrieve device lists
- Get software versions
- Check device roles and status
3. Configuration Management
- Push configurations
- Assign templates
- Modify device settings programmatically
4. Policy Automation
- Apply access policies
- Integrate with Software-Defined Access (SDA)
5. Assurance and Monitoring
- Get network health scores
- Retrieve client statistics
- Monitor issues and events
3.6 Typical DNAC API Workflow (Exam Friendly)
- Authenticate and get a token
- Send an API request (GET/POST/etc.)
- DNA Center processes the request
- JSON response is returned
- Script or tool acts on the response
4. Cisco vManage APIs
4.1 What is Cisco vManage?
Cisco vManage is the management controller for Cisco SD-WAN.
It manages:
- WAN routers (vEdge / cEdge)
- SD-WAN policies
- Tunnels and overlays
- Monitoring and analytics
4.2 Purpose of vManage APIs
vManage APIs allow automation of:
- SD-WAN device onboarding
- Policy deployment
- Configuration changes
- Monitoring WAN performance
- Retrieving analytics data
Key exam idea:
👉 vManage APIs are essential for SD-WAN automation.
4.3 Type of APIs Used by vManage
Cisco vManage also uses:
- REST APIs
- HTTPS
- JSON
These APIs are used to interact directly with the SD-WAN control plane.
4.4 Authentication in vManage APIs
Authentication is session-based.
How it works:
- User logs in via API
- vManage creates a session
- A session cookie or token is used
- All future API calls use that session
Exam comparison tip:
| Controller | Authentication Type |
|---|---|
| DNA Center | Token-based |
| vManage | Session-based |
4.5 Common vManage API Functions
1. Device Management
- Onboard SD-WAN routers
- Check device status
- Manage certificates
2. Configuration Templates
- Create templates
- Attach templates to devices
- Update configurations in bulk
3. Policy Management
- Centralized policies
- Traffic steering rules
- Security policies
4. Monitoring and Analytics
- WAN performance metrics
- Tunnel health
- Application statistics
5. Troubleshooting
- Retrieve logs
- View alarms
- Analyze path quality
4.6 Typical vManage API Workflow
- Authenticate and create a session
- Send API requests to vManage
- vManage applies changes or retrieves data
- JSON response is returned
- Automation tool processes the result
5. Cisco DNA Center APIs vs vManage APIs (Exam Comparison)
| Feature | Cisco DNA Center | Cisco vManage |
|---|---|---|
| Network Type | Campus / Enterprise LAN | SD-WAN |
| Primary Focus | Intent-based networking | WAN orchestration |
| API Type | REST | REST |
| Data Format | JSON | JSON |
| Authentication | Token-based | Session-based |
| Managed Devices | Switches, APs, WLCs | WAN routers |
| Key Use Case | Automation and assurance | SD-WAN policy and control |
6. Why APIs Matter for the CCNP ENCOR Exam
You are not expected to memorize API URLs, but you must understand:
- What APIs are used for
- Which controller uses which API model
- How APIs enable automation
- The difference between DNAC and vManage APIs
Common exam focus areas:
- REST API concepts
- JSON usage
- Authentication methods
- Automation benefits
- Controller roles
7. Key Exam Takeaways (Must Remember)
- APIs enable network automation and programmability
- Cisco DNA Center APIs manage enterprise campus networks
- vManage APIs manage Cisco SD-WAN
- Both use REST, HTTPS, and JSON
- DNAC uses token-based authentication
- vManage uses session-based authentication
- APIs reduce manual configuration and errors
- APIs are a core part of modern Cisco networking
8. Simple Summary (For Non-IT Learners)
- Cisco controllers can be controlled by software
- APIs are the communication method
- DNA Center APIs control campus networks
- vManage APIs control SD-WAN
- Automation makes networks faster and more reliable
- Understanding APIs is essential for modern networking
