Use the following process to onboard Session Smart Routers (SSR) to the Mist cloud. Since SSN software can run on any certified hardware or virtual machine, this process relies on an on-premise conductor to assist in the onboarding.
Configuring WAN Assurance requires Administrator level privileges on all platforms, SSR and Mist.
High Level Steps:
- Create an account on the Mist portal.
- Add your Organization.
- Create Sites.
- Register the Conductor with Mist.
- Assign routers to a Site.
This procedure assumes you do not already have an account, organization, or sites configured on the Mist portal. These items are required for SSR/Mist Wan Assurance.
For detailed information about Mist WAN Assurance, please refer to the Mist WAN Assurance documentation.
Create an account on the Mist portal.
Create an organization for the authority.
From the Mist menu on the left, select Organization, and select Settings from the menu.
In the Create Organization panel, enter a name for the Organization.
For additional information about creating an Organization, please refer to the Mist Organization Config documentation.
Create one Site for each physical location for onboarding 128T SSRs.
Create a unique site for each physical (or logical) location in the network. For example, the spoke and hub should be onboarded to different sites. Other devices from the Juniper stack such as Mist APs, Switches, SRX, etc., should be onboarded and assigned to the same site as the SSR when possible. This provides a clean topology view of all devices running within a site.
From the Mist menu on the left, select Organization and select Site Configuration from the menu.
In the Sites List, click on the Create Site button.
Use the New Site panel to configure a site.
For information about the fields used to create a site, please refer to the Mist Site Configuration documenation.
- Access the registration code for the organization.
From the Mist menu on the left, select Organization > Inventory.
In the Inventory panel, click on the Gateways selection on the top of the screen.
Click on the Adopt Gateways button in the top right corner. The Gateway Adoption dialog appears, displaying the registration code.
Click on Copy to Clipboard.
Return to the SSR and login to the conductor PCLI as an admin.
Paste the registration code into the PCLI.
To enter the registration code in the SSR GUI, copy the text registration-code from the Mist portal (info above) and paste it under Configuration > Authority > Mist WAN Assurance > Registration Code.
Committing the registration code enables WAN Assurance on all connected routers. If you only want WAN Assurance enabled on certain routers, please refer to Skipping Specific Routers before committing the registration code information to the configuration.
- Commit the registration code to the configuration.
Once a valid registration code is committed, registration is automatic. The conductor sends instructions to all connected routers to self-onboard to the Mist cloud. The process is automated and the routers do not require any user interaction.
A router or routers can be skipped during the Mist onboarding process. Change authority > router > mist-wan-assurance > enabled to
false. The Conductor will skip the router and associated nodes (if it is an HA router).
For a system that has completed the onboarding process, setting
false will prevent telemetry data from being sent to the cloud.
Disabling WAN Assurance does not automatically release the router from the cloud. See Releasing a Router for more information.
Once the SSR/128T portion of the onboarding process is complete, each router is displayed on the Mist inventory page under Organization > Inventory. Select Gateways on the top of the page to see a list of the routers and status. The router is listed as Unassigned, and must be assigned to the appropriate site.
Sites must have already been created - there is no option to create a site in the drop down.
- Select the Unassigned router.
- Click on the More drop down on the upper right corner.
- Select Assign to Site.
- In the Assign Gateway dialog, select the appropriate site from the drop down.
- Click on Assign to Site.
Once the site assignment is complete, the information is relayed back to the corresponding 128T router, and the router begins streaming the telemetry data to the cloud.
The SSR can be configured to receive LLDP packets from LAN interfaces. This information is useful for creating a local site level topology view. Use the following code example to enable the LLDP receive mode on LAN interfaces.
configure authority router <router> node <node> device-interface <lan-intf> lldp mode receive-only
Once onboarding is complete, the router begins streaming telemetry data. Data appears on the Mist portal after approximately 15 minutes. The Gateway Insights page provides a good starting point for viewing the analytics being streamed to the cloud.
- Select Gateways from the left side menu.
- On the Gateways page, select a site from the drop down.
- Select a router from the list.
- In the Properties pane, select the link to Gateway Insights.
To provide insights into the application, services, and some SLE functionality, enable
session-record. It is recommended to enable session records for all the SSR/128T services to provide a broad look at the application use.
Use the following information to help identify or resolve issues configuring WAN Assurance on an SSR.
show plugins state command displays extensive information about the state of the plugin. Use the following command as a starting point for any troubleshooting.
show plugins state router <router name> detail 128T-mist-wan-assurance
In a situation where a router needs to be moved from one organization to another or physically relocated the router must be released and then re-onboarded.
The router must be released from both Mist and the SSN conductor. To release a router, use the following process.
- From the Mist GUI:
- Go to Organization > Inventory.
- Select the checkbox next to the router.
- Click on the More drop down that appears on the top of the page.
- Select Release.
- Click on Release to confirm.
- On the SSN conductor, you can perform a release from either the conductor shell or the GUI.
From the conductor shell:
release mist agent router <router> node <node>
In the GUI:
In the Tools menu, select Plugin Commands.
In the Plugin Commands pane, select the plugin command (top right corner) release Mist agent.
Select the router and node from the drop down lists.
After a few minutes the router will be released and stop sending the data to the Mist cloud. Once that process is completed, disable the Mist WAN Assurance plugin on the router.
To re-onboard a router, re-enable the plugin on the router. This triggers a reload of the registration code and the onboarding process.