📘CCNP Encore (350-401-ENCORE-v1.1)
1. What is Cisco DNA Center?
Cisco DNA Center (DNAC) is a centralized network management and automation platform.
It is used to:
- Design networks
- Configure devices
- Monitor network health
- Manage users, devices, and policies
- Automate daily network tasks
Cisco DNA Center is:
- Controller-based
- GUI-driven (web interface)
- API-enabled
- Designed for enterprise networks
It works mainly with:
- Cisco switches
- Cisco routers
- Cisco wireless controllers and access points
2. Why Cisco DNA Center Is Important for the Exam
For the CCNP ENCORE exam, you must understand:
- The DNA Center workflow model
- How configuration, monitoring, and management are done
- The role of automation and assurance
- High-level features (not deep configuration commands)
Cisco DNA Center uses a structured workflow, which makes network operations predictable and scalable.
3. Cisco DNA Center High-Level Architecture (Exam View)
Cisco DNA Center is built around three main workflow areas:
- Design
- Provision
- Assurance
These workflows work together in a logical order.
Design → Provision → Assurance
Supporting services include:
- Policy
- Automation
- Inventory
- Image management
- User and device visibility
4. Cisco DNA Center Configuration Workflows
Configuration in Cisco DNA Center is template-based and policy-driven, not manual CLI.
4.1 Design Workflow
The Design phase is where the network is planned.
Key Design Components
Network Hierarchy
- Area
- Building
- Floor
This structure:
- Matches physical locations
- Helps apply policies easily
- Is required before provisioning devices
Network Settings
- IP address pools
- VLANs
- Wireless SSIDs
- DNS, NTP, DHCP settings
Device Credentials
- CLI credentials
- SNMP credentials
- HTTPS/NETCONF credentials
These are used to securely communicate with devices.
Network Profiles
- Define how devices should behave
- Applied later during provisioning
4.2 Provision Workflow
The Provision phase is where configuration is pushed to devices.
Main Tasks in Provisioning
Device Discovery
- Devices are discovered using:
- IP range
- Credentials
- Discovered devices are added to inventory
Device Assignment
- Devices are assigned to:
- Site (area/building/floor)
- Network profile
Automated Configuration
- VLANs
- Interfaces
- Routing
- Wireless settings
This configuration is:
- Consistent
- Automated
- Repeatable
No manual CLI is required.
4.3 Template-Based Configuration
Cisco DNA Center uses configuration templates.
Types of Templates
- Day-0 templates (initial setup)
- Day-N templates (changes after deployment)
Templates:
- Use variables
- Are reusable
- Reduce human errors
5. Cisco DNA Center Monitoring (Assurance) Workflows
Monitoring is handled by Cisco DNA Assurance.
5.1 What Is Assurance?
Assurance provides:
- Network visibility
- Performance monitoring
- Issue detection
- Root cause analysis
It uses:
- Telemetry
- Streaming data
- Analytics
5.2 Network Health Monitoring
Cisco DNA Center shows a Network Health Score.
Health is measured for:
- Network devices
- Clients
- Applications
Health indicators include:
- Latency
- Packet loss
- Jitter
- Device availability
Scores are color-coded:
- Green (healthy)
- Yellow (warning)
- Red (problem)
5.3 Client Health Monitoring
Cisco DNA Center monitors:
- Wired clients
- Wireless clients
It tracks:
- Authentication success/failure
- IP address assignment
- Connectivity issues
- Roaming problems
This helps identify:
- User experience problems
- Access issues
5.4 Application Visibility
Cisco DNA Center can identify:
- Applications running on the network
- Application performance issues
It integrates with:
- NBAR
- Application telemetry
This allows:
- Application-level troubleshooting
- Policy enforcement based on applications
6. Cisco DNA Center Management Workflows
Management workflows focus on ongoing operations.
6.1 Inventory Management
Cisco DNA Center maintains a device inventory.
Inventory includes:
- Device model
- Software version
- Serial number
- Role (access, distribution, core)
Devices can be:
- Added
- Removed
- Updated centrally
6.2 Software Image Management (SWIM)
Cisco DNA Center provides centralized image management.
Key features:
- Image repository
- Image compliance checks
- Automated upgrades
Benefits:
- Consistent software versions
- Reduced downtime
- Scheduled upgrades
6.3 Policy Management
Policies are managed using Cisco SD-Access concepts.
Policies define:
- Who can access what
- How traffic flows
- Security segmentation
Policy elements include:
- Virtual Networks (VN)
- Scalable Group Tags (SGT)
- Access control policies
6.4 Automation and APIs
Cisco DNA Center supports:
- REST APIs
- External automation tools
- Integration with third-party systems
This allows:
- Programmatic configuration
- Monitoring automation
- Integration with ITSM tools
7. Cisco DNA Center Security and Access Control
Cisco DNA Center uses:
- Role-Based Access Control (RBAC)
Roles define:
- Who can view
- Who can configure
- Who can manage devices
This improves:
- Security
- Operational control
8. Benefits of Cisco DNA Center (Exam Summary)
Cisco DNA Center provides:
- Centralized management
- Network automation
- Consistent configuration
- Real-time monitoring
- Faster troubleshooting
- Reduced operational errors
9. Key Exam Points to Remember
✔ Cisco DNA Center uses Design → Provision → Assurance
✔ Configuration is template-based, not CLI-based
✔ Assurance provides network, client, and application health
✔ Inventory and image management are centralized
✔ Policies are software-defined and scalable
✔ Focus is on workflows, not command syntax
10. Final Exam Tip
For CCNP ENCORE, you are not expected to configure DNA Center in detail.
You must:
- Understand what each workflow does
- Know how configuration, monitoring, and management are handled
- Recognize DNA Center benefits and use cases
