4-6
Cisco Prime Network 4.0 User Guide
OL-29343-01
Chapter 4 Device Configurations and Software Images
Set Up Change and Configuration Management
Caution FTP is not a secure mode of transfer. Use SCP/SFTP instead, for secure config and image transfers.
–
The TFTP source interface on the devices must be able to reach the unit. Otherwise, the
configuration management jobs that require TFTP may fail.
–
To use SFTP/SCP for config transfers from a device to a unit, you need to ensure that an SSH
server is configured and running on the device, such th at the de v ice acts as a serv er an d the unit
as a client during the transfer. For Cisco IOS XR devices, you need to configure the device with
K9 security (k9sec) enabled images such that the SSH server is up and running on the device.
–
To use SCP as the protocol to retrieve configuration and image files, you must execute the
following command on the device:
# ip scp server enable
2. Enable CM to perform an initial synchronization of the CM archive files with the confi gurations that
are running on the network devices. Whenever the Prime Network gateway is restarted, CM will
perform this synchronization. By default, synchronization is disable d. To enable it, activate Enable
Initial Config Syncup.
3. Configure the policies that control how often CM retrieves information from devices and copies
configuration files to the archive. By default, al l of thes e sett ings ar e disab led. You must answer the
following basic questions:
a. How much disk space is available? Smaller space may require more frequent purging.
b. Should new configuration files be copied (backed up) to the archive on a periodic basis or on an
event-driven basis?
If configurations are changing frequently and the changes are no t important to you, you should
use periodic backups by selecting Enable Period Config Backup. This will minimize server
workload.
Note The periodic setting is recommended.
If every change is considered significant, use event-driven backups (Enable Event-Triggered
Config Archive).
c. For event-driven archiving, should information be copied to the archive immediately upon
receiving a change (Sync archive on each configuration change)? Or should changes be
queued and then copied at a certain interval (Sync archives with changed configurations
every ___ hours and ___ minutes)? If information needs to be copied to the archive
immediately, you must sync the archive on each config uratio n change. Otherwis e, you can syn c
the archive with changed configurations at a certain interval (every 1-24 hours).
4. Enable CM to perform periodic synchronization of out-of-sync d evices by sel ect ing Enable
Periodic Sync for Out of Sync Devices (24Hours).
5. Enable CM to export archived configuration to an export server on a perio dic basi s by se lect ing
Enable Periodic Config Export and Export Settings. This allows you to free up disk space while
keeping a permanent record of historical ar ch ives.
6. Configure when configuration files should be purged from the archive using the Archive Purge
Settings. You should consider:
–
How big are the configuration files?