- Written by Manish
- Posted on 5月 17, 2022
- Updated on 9月 13, 2022
- 5949 Views
CVP uses nginx to terminate all the HTTPS connections for which the nginx needs to be configured with a certificate. This certificate could either be self-signed or signed by the CA. Figure 1 shows the generation and installation of self-signed certificates.
- Written by Lavanya Conjeevaram
- Posted on 9月 4, 2022
- Updated on 2月 1, 2023
- 5875 Views
It is possible to have MSS-G configuration pushed automatically to CloudVision from an external system. This document covers the use of Forescout eyeSegment for policy definition and eyeSight for segment assignment.
- Written by Quang-Minh Pham
- Posted on 11月 15, 2023
- Updated on 11月 15, 2023
- 3221 Views
This feature adds additional functionality to the Devices > Endpoint Search page.The “Endpoint Authentication” tab has been added to the search results.
- Written by Albert Seo
- Posted on 1月 12, 2023
- Updated on 1月 12, 2023
- 5064 Views
802.1X information shows which endpoints have authenticated, are undergoing authentication, or have failed to authenticate to the network. This information is available to view in two locations from CloudVision: the 802.1X page in the Devices application, and the Dashboards application.
- Written by Pranjit Bharali
- Posted on 9月 16, 2021
- Updated on 9月 22, 2022
- 10886 Views
AAA Providers OAUTH and SAML Support AAA Providers allow users to create and log in to CloudVision with a provider of
- Written by Julie Powell
- Posted on 12月 21, 2023
- Updated on 12月 21, 2023
- 3071 Views
Server ordering allows you to prioritize RADIUS and TACACS+ servers and specify the order that CloudVision should follow when attempting login authentication.
- Written by Julie Powell
- Posted on 7月 25, 2024
- Updated on 7月 25, 2024
- 1181 Views
You can now enable CloudVision to combine the authentication and authorization requests that it sends to a RADIUS server into a single request. When RADIUS is configured as the AAA provider, CloudVision will send separate authentication and authorization requests by default. This can cause issues with One-Time Password (OTP) users, as issued passwords are only valid for one request. Note: Non-OTP RADIUS systems will be unaffected by the change. To combine authentication and authorization requests, navigate to Settings > Access Control and enable the Combine Login Auth Requests checkbox.
- Written by Joseph Walsh
- Posted on 10月 30, 2024
- Updated on 10月 30, 2024
- 271 Views
This studio enables you to quickly configure access interfaces towards endpoint devices in your campus network. This configuration relates to the devices in Access Pods deployed using the Campus Fabric (L2/L3/EVPN) Studio.
- Written by Joseph Walsh
- Posted on 7月 25, 2024
- Updated on 7月 25, 2024
- 1143 Views
This studio enables you to quickly configure access interfaces towards endpoint devices in your campus network. This configuration relates to the devices in Access Pods deployed using the Campus Fabric (L2/L3/EVPN) Studio. The studio consists of port profiles and campus networks. You can create port profiles, which contain configuration for attributes like speed and MTU, which you can then assign to device interfaces in a campus fabric. Editing the profile will then affect all interfaces that the profile has been assigned to. You can also configure individual interfaces.
- Written by Julie Powell
- Posted on 7月 25, 2024
- Updated on 7月 25, 2024
- 1078 Views
A new role permission, Action Execution, has been introduced to control the execution of custom actions when they are run in isolation, such as via Studio Autofill actions and standalone executions in the Action editor. A custom action is a user-created action that has either been installed via a package or has been created using python script and arguments.
- Written by Shea Janke
- Posted on 6月 26, 2023
- Updated on 6月 26, 2023
- 4520 Views
An AQL notebook is an interactive tool for working with Advanced Query Language (AQL). It provides an accessible interface for incrementally developing complex queries and visualizing data. An AQL Notebook consists of a series of cells that can be executed individually, making it easy to experiment, test and iterate on AQL code.
- Written by Grzegorz (Greg) Kacy
- Posted on 3月 15, 2023
- Updated on 3月 15, 2023
- 4468 Views
Whenever CVP code is upgraded (either by the user on-prem, or automatically, on CVAAS), built-in studios are also upgraded. In some cases, the workspace containing that update may not be auto-submitted. There are typically one of two reasons behind this. Either the studio upgrade impact's device's running config (and we want the user to review the changes), or the new studio isn't building because of some error in the workspace.
- Written by Harsh Goyal
- Posted on 2月 2, 2022
- Updated on 3月 25, 2022
- 8309 Views
The syslog export feature allows users to export audit logs to external server endpoints and monitor the status of these exports using CloudVision.
- Written by Julie Powell
- Posted on 10月 25, 2024
- Updated on 10月 25, 2024
- 286 Views
Use the Authentication Studio to configure RADIUS servers for user authentication and 802.1X authentication and accounting. The 802.1X authentication protocol is a port-based network access control that provides an extra layer of security for both wired and wireless networks.
- Written by Joseph Walsh
- Posted on 9月 4, 2022
- Updated on 10月 26, 2022
- 5737 Views
This is an optional feature that can be enabled to automatically upgrade the EOS image of any device through ZTP. It ensures that all ZTP-enabled devices in your network have a minimum EOS image version.
- Written by Julie Powell
- Posted on 7月 29, 2024
- Updated on 7月 29, 2024
- 1018 Views
Use bearer tokens to provide custom applications or third-party applications, like Ansible, login access to CloudVision. Doing so will allow the application to make configuration changes to EOS devices. Bearer token login can be used with identity providers that issue bearer tokens and have an introspection endpoint. Okta and PingIdentity have been tested for use with CloudVision.
- Written by Will Rideout
- Posted on 2月 16, 2021
- Updated on 2月 22, 2021
- 7470 Views
BFD (Bidirectional Forwarding Detection) session telemetry allows for the collection of per session statistics as
- Written by Shirong Bai
- Posted on 11月 6, 2019
- Updated on 11月 8, 2022
- 11387 Views
This document describes the BGP Maintenance Mode (MM) and MLAG ISSU Actions for Change Control to support hitless
- Written by Rudi Fockema
- Posted on 9月 4, 2022
- Updated on 10月 26, 2022
- 5508 Views
When a device enters maintenance mode, this event will be triggered. The event will stay active while the device stays in maintenance mode.
- Written by Paul Druce
- Posted on 9月 4, 2022
- Updated on 10月 26, 2022
- 5841 Views
New releases of CloudVision may introduce new built-in studios or enhancements to existing built-in studios. Occasionally, these updates may feature improvements and other changes to the configuration template used by the studio and are included as part of the CloudVision release.
- Written by Joseph Walsh
- Posted on 12月 21, 2023
- Updated on 12月 21, 2023
- 3204 Views
The Certificate Authority Rotation feature included in a previous release has been expanded to include a custom validity period. When rotating a certificate authority (CA) you can now define how long the certificate is valid for.
- Written by Joseph Walsh
- Posted on 7月 25, 2024
- Updated on 7月 25, 2024
- 1166 Views
The Campus Dashboard provides an overview of your network state. Devices stream telemetry data to CloudVision in real time, giving you immediate and up-to-date insights into your network’s health. The timepicker can be used to view historic data of the network state.
- Written by Joseph Walsh
- Posted on 10月 28, 2024
- Updated on 10月 28, 2024
- 301 Views
The Campus Fabric studio allows you to set up and configure a complete campus network using Arista’s validated designs. By leveraging zero touch provisioning (ZTP), you can seamlessly onboard EOS devices, define their roles and connections within the fabric, and configure L2 and L3 services across the fabric.
Deployments utilizing VXLAN, a routing underlay (OSPF or eBGP), and a routing overlay (eBGP) are supported, and you can also define connections to non-EOS devices in the fabric. Additionally, PTP, 802.1X, IP locking, and other network features are supported by the studio.
- Written by Joseph Walsh
- Posted on 10月 30, 2024
- Updated on 10月 30, 2024
- 259 Views
The Campus Health Dashboard provides an overview of your network state. Devices stream telemetry data to CloudVision in real-time, giving you immediate and up-to-date insights into your network’s health. The timepicker can be used to view historic data of the network state.
- Written by Joseph Walsh
- Posted on 11月 15, 2023
- Updated on 11月 15, 2023
- 4309 Views
The streaming agent and other applications communicate to CloudVision using mutual-TLS certificates signed by a local CA. In order to prevent the CA from expiring, you will need to rotate the CA. Once rotated, the CA is valid for one hundred years.
- Written by Joseph Walsh
- Posted on 6月 26, 2023
- Updated on 6月 26, 2023
- 4386 Views
A new event advises when the CloudVision SSL certificate is expiring. The event will alert users 90 days in advance of certificate expiration.
- Written by Joseph Walsh
- Posted on 9月 4, 2022
- Updated on 10月 26, 2022
- 5700 Views
The Preload feature is used to streamline any change control operations that include an image upgrade. When a change control contains an image upgrade, the Preload feature can be used to create another change control operation that will download the required EOS image versions for each device.
- Written by Philip DiLeo
- Posted on 11月 15, 2023
- Updated on 11月 15, 2023
- 3471 Views
The Change Control UI has been redesigned to improve navigation and workflow speed. Additional information is available in the sidebar, which enables you to gain a better insight into specific actions. These changes are cosmetic and don’t depend on any backend API enhancements.
- Written by Karthik Shyam Krishnan Subraveti
- Posted on 11月 6, 2019
- Updated on 5月 21, 2020
- 7485 Views
Script action is a very effective feature to enable customers to add their own custom actions to Change controls.
- Written by Ashwin Swaminathan
- Posted on 11月 6, 2019
- Updated on 11月 6, 2019
- 6703 Views
The ChangeControl APIs offer a way to programmatically interact with the ChangeControl service on CVP.
- Written by Sudarshan Ravindranath
- Posted on 1月 12, 2023
- Updated on 1月 12, 2023
- 4764 Views
Action bundles can be created within the Template editor. Based on the selected Action Bundle, the rule container will expose extra fields for the user to provide inputs. If the bundle has a Task action, or an action with a DeviceID argument set to Provide via template, the rule will ask the user to define the Device Filter.
- Written by Joseph Walsh
- Posted on 6月 26, 2023
- Updated on 6月 26, 2023
- 4300 Views
The CloudVision Health dashboard is a built-in dashboard packaged with CloudVision. It provides panels displaying metrics for the cluster.
- Written by Ankit Gupta
- Posted on 2月 2, 2022
- Updated on 2月 2, 2022
- 7045 Views
When a CVP cluster is deployed in a different location from the devices under management, it is possible that it
- Written by Sabah Khan
- Posted on 7月 29, 2024
- Updated on 7月 29, 2024
- 1037 Views
Profiles are assigned to user accounts to customize their landing page on CloudVision and present information relevant to them. You can use built-in profiles or create custom ones. Profiles are assigned in Users to user accounts.
- Written by Lavanya Conjeevaram
- Posted on 3月 20, 2017
- Updated on 2月 4, 2022
- 7634 Views
Documentation for the new major features is available in the CloudVision User Guide for release 2017.1.0. This TOI
- Written by Don Jayakody
- Posted on 6月 26, 2023
- Updated on 6月 26, 2023
- 4799 Views
This document covers the identity provider (IdP) onboarding in CloudVision as-a-Service (CloudVision). CloudVision as a Service supports two types of identity providers: OAuth & SAML. Each has its unique configuration input and requires different configuration items to configure the provider for use within CloudVision.
- Written by Julie Powell
- Posted on 7月 25, 2024
- Updated on 7月 25, 2024
- 1019 Views
CloudVision allows users to maintain multiple login sessions simultaneously. However, to prevent account sharing, administrators can now limit the number of active login sessions a user can have and terminate a user’s open sessions if that have reached their limit and are unable to log in.
- Written by Grzegorz (Greg) Kacy
- Posted on 1月 12, 2023
- Updated on 1月 12, 2023
- 4929 Views
Since Device Config diffing is a very important aspect of managing our hardware, we should make sure that this diffing is as convenient as possible. With that we have introduced a few improvements to our diffing component. These improvements range from UX convenience features to performance enhancers.
- Written by Sabah Khan
- Posted on 12月 20, 2023
- Updated on 12月 20, 2023
- 3233 Views
The connectivity monitor change control action leverages the functionality of the connectivity monitor resource API to monitor connectivity statistics and roll back any configuration changes that affect a device’s connectivity. This feature comes pre-configured with the 2023.3.0 release and any proceeding releases, but can also work with the 2023.2.0 release by downloading the connectivity monitor action pack, available on Github.
- Written by Tamas Plugor
- Posted on 5月 21, 2020
- Updated on 11月 8, 2022
- 10590 Views
Please do not update packages after minimal installation, the installer ships with all required updated RPMs.
- Written by Timothy Ward
- Posted on 11月 6, 2019
- Updated on 3月 18, 2020
- 6443 Views
This document describes a procedure and tooling to reallocate the RAM and CPUs in the DCA CV 100 in order to maximize the
- Written by Romit Shah
- Posted on 9月 4, 2022
- Updated on 12月 15, 2022
- 9159 Views
Every switch managed by CVP uses TerminAttr to stream updates to CVP and every one of these TerminAttr connections needs to be authenticated. Authentication is provided via shared key or certificates.
- Written by Murali Krishnamoorthy
- Posted on 11月 6, 2019
- Updated on 12月 15, 2022
- 9092 Views
This document describes the TerminAttr certificate authentication feature introduced in the CVP 2019.1.0
- Written by Joseph Walsh
- Posted on 6月 26, 2023
- Updated on 6月 26, 2023
- 4303 Views
Users can now preview dashboards from the main dashboards screen. This allows users to see a windowed version of the selected dashboard that can be interacted with.
- Written by Joseph Walsh
- Posted on 11月 15, 2023
- Updated on 11月 15, 2023
- 3373 Views
Every panel now has four new appearance settings that you can configure. Show Title: Select whether to display the title or not
- Written by Joseph Walsh
- Posted on 12月 20, 2023
- Updated on 12月 20, 2023
- 3218 Views
This release includes an update to the Traffic Flows, Events, and Compliance panels and two new dashboard elements: Layouts.The layouts provide you with further ways to structure and control the layout of your dashboards by combining panels into a single display.
- Written by Joseph Walsh
- Posted on 2月 2, 2022
- Updated on 7月 13, 2022
- 11307 Views
The AQL panel is a dashboard element that allows you to create custom data displays using the CloudVision Advanced Query Language (AQL). This gives you complete control over what data the panel displays and how it displays it, because you define the inputs and write the AQL query that feeds data to the panel.
- Written by Mateus Malvessi Pereira
- Posted on 6月 26, 2023
- Updated on 6月 26, 2023
- 4931 Views
This feature adds the ability to onboard third-party devices and management systems (herein referred to as “data sources”) via the sensor (formerly known as “collector”) infrastructure. The ability to onboard data sources using a default sensor is available by default on-premises.
- Written by Riku Miyao
- Posted on 1月 12, 2023
- Updated on 1月 12, 2023
- 4970 Views
When there are a large number of configlets assigned to devices, it becomes important to have a fast and easy way to view configlets assigned to a device. To facilitate this, we have introduced multiple enhancements to the Device Configuration page that makes it easier for a user to navigate the configuration of their devices.
- Written by Rudi Fockema
- Posted on 9月 4, 2022
- Updated on 7月 24, 2023
- 5561 Views
The device memory usage prediction event monitors the historical device memory usage via the MemAvailable metric and from this data generates a predicted future value which can be subject to a threshold above which to alert the user on.