Kenna.VM Premier: Accelerate Vulnerability Management with Cisco Talos Intel and Remediation Analytics

New level unlocked. The next step for Kenna.VM users who are maturing their risk-based vulnerability management program is Kenna.VM Premier—and it’s live. 

The Cisco Kenna team is excited to release a new tier of the Kenna Security platform designed specifically for customers or prospects that have reached a point of maturity in which they can and want to do more with their vulnerability management program.

In addition to the existing Kenna features and functionality you know and love, the new Kenna.VM Premier tier includes:

◉ In-depth and actionable remediation scoring (New!)  

◉ Zero-day vulnerability intelligence, powered by Cisco Talos (New!) 

◉ Access to Kenna’s vulnerability intelligence via an API or user interface (UI) 

We’re particularly excited about the new features that are debuting with this tier. So, let’s take a closer look at everything that’s included.

Remediation scoring 

On the Kenna.VM homepage, a new metric will appear at the top right corner (Figure 1). The Remediation Score, as this measurement is known, quantifies how well an organization is addressing risk overall.

Figure 1: Remediation Score in Kenna.VM homepage

The Remediation Score itself encompasses four key measurements (Figure 2), which may sound familiar to you if you’ve been reading any of the Prioritization to Prediction reports produced by Kenna and the Cyentia Institute:  

    ◉ Coverage: Of all vulnerabilities that should be remediated, what percentage was correctly identified for remediation?  

    ◉ Efficiency: Of all vulnerabilities identified for remediation, what percentage should have been remediated? 

    ◉ Capacity: What is the average proportion of open vulnerabilities that were closed in a given period? 

◉ Velocity: What is the speed and progress of remediation?  

Figure 2: Remediation sub-scores in Kenna.VM homepage

These new remediation insights will allow organizations to shift away from relying on just the Risk Score itself as a measurement to assess the performance of remediation teams. While many organizations opt to use the Risk Score in this manner, there are inherent problems with evaluating performance based on the Risk Score—particularly for mature programs. A Risk Score can spike at any moment due to a suddenly high-risk vulnerability—a spike that isn’t a reflection on the remediation team themselves. And as organizations mature, they’re likely to reach a ‘steady state’ with their Risk Score, which makes it a difficult metric to use to measure progress.

Ultimately, these performance metrics will help customers better understand what areas of their remediation efforts are doing well and which might need to be adjusted.

Zero-day vulnerability intel—brought to you by Cisco Talos 

Another new addition to the Kenna.VM platform is zero-day vulnerability intelligence powered by Cisco Talos. Talos regularly identifies high-priority security vulnerabilities in commonly used operating systems and software. The team works with vendors to disclose more than 200 vulnerabilities every year.  

This new integration with Talos gives Kenna.VM users access to information on zero-day vulnerabilities documented by the Talos research team (and likely to be in their environment). With the “Zero Days” filter in Kenna.VM, users can isolate zero-day vulnerabilities, investigate, and take action leveraging Snort rule IDs provided by Talos, when applicable (Figure 3).

Figure 3: “Zero Days” filter isolates all zero-day vulnerabilities in Kenna.VM Explore page

Vulnerability intelligence—your way 

The last (but certainly not least) piece of the Kenna.VM Premier puzzle is the inclusion of Kenna’s recently enhanced vulnerability intelligence User Interface and API. Kenna is known for its risk scoring, but what people may not realize is just how much data we consume and turn into finished, actionable intelligence. There are more than 18+ threat and exploit intelligence feeds that power our understanding of vulnerabilities, and our vulnerability intel API and UI make of this information available to customers. 

The UI provides a dashboard to research any CVE—regardless of whether or not a scanner found that vulnerability in the customer’s environment. Meanwhile, the API allows customers to query Kenna and export as much of our vulnerability intelligence on as many vulnerabilities as they wish, and use that data to enrich any existing IT, dev or security workflows, including Cisco’s very own SecureX. The data in this set includes descriptions, publication dates, CVSS data, available exploits and fixes, insight into remote exploitable vulnerabilities, and much more. Also provided is the Kenna Risk Score for each vulnerability and an indication of whether it is predicted to be exploitable—unique data points derived by Kenna’s data science.

Figure 4: Kenna’s vulnerability intel dashboard lets you research any CVE to see its risk score and other characteristics

This intelligence, combined with our new remediation scoring and Talos zero-day intelligence, rounds out the Kenna.VM Premier tier as the ideal package for any customer or prospect who is looking to take their vulnerability management program to the next stage of maturity.

Kenna.VM Premier is available today. If you’re interested in learning more, contact your sales representatives or send us a demo request to unlock the next level of your vulnerability management journey.

Source: cisco.com

Continue reading

Using APIs to create a Multidomain Inventory for Asset Management

IT Organizations have to manage, secure, and get audited on their IT assets. The span of domains cover multiple different product sets with different operating systems by nature, and the teams are tasked to create a cohesive asset management framework. An example is a financial institution which is subject to the FFIEC guidance, which requires them to be able to conform to an audit structure that requires managing their assets and software.

A second example is the NIST publication 1800-5 on IT Asset management that describes a framework for managing assets in an organization. A number of organizations may adopt NIST as their security framework.

Within these frameworks, the NIST and FFIEC guidance don’t call out “Cisco Equipment” or “Microsoft software”, “Virtual machines”, or “Firewalls” in a vacuum. IT Administrators and security teams aren’t tasked with inventory and patch management of just their load balancers, servers, switches, or routers.

IT Administrators and their leadership are tasked with knowing, patching, and securing all of their IT infrastructure. From the physical to the virtual, from the endpoint to the cloud. Thus any single tool needs to be able to fit into a framework to be able to merge together different systems in a cohesive manner that is capable of managing multiple operating systems and vendor implementations.

The purpose of this blog is to show how this can be done practically using diverse Cisco hardware and software, and the framework would bolt in to any other third party and provide functional, easy to use code, that can create a single asset management table for products in the Cisco portfolio.

We do this by integrating ACI, Multiple DNAC, Meraki, Intersight, and SD-Wan platforms into a single table which can be cross referenced and then pushed, into Service Now. We do this using available DevNet sandboxes as of 11/2022. There is also a reference on how this can be reconciled and pushed into Service Now (so that the system of record can be updated following software changes, or reconciled).

This is functional code, which is easy to run against real sandbox environments, and can be validated and repurposed for your environment.

While we cannot control third party products and how they integrate, the framework would allow for other equipment which support Rest API to create a state table for inventory asset management. The framework is rather straightforward: capture the inventory from diverse systems using REST API, and normalize to a consistent list of all assets in those systems. From there, you can update Service Now or another system of record.

The problem we are trying to solve is further elaborated in NIST 1800-5, of the multiple frameworks a customer may be required to audit towards, and the fact that its not as simple as just running a single vendor’s report, when your responsible for an entire ecosystem of vendors and products.

So lets get to it!

What is created is a Google Colab notebook, which allows you to take and validate the code. This is possible because we are using cloud sandboxes hosted in DevNet and our cloud platforms. If you have never used Colab before, it is a Jupyter notebook in the sky that is as easy to run as clicking a button. It also allows me to easily share with you, so you can see for yourself how it works.

You can get a read only copy of the code here: We will walk through it below.

https://colab.research.google.com/drive/1DMfB_FfWPEIDggYawtJgmskLJmkVzqyM?usp=sharing

The first thing you want to do, is look at what it says at the top. What is shared is a read only copy, and to play with it, you want your own editable copy. So you want to save it, by going to File/Save a copy to drive.

The next thing to look at is there are sections, at a high level, its broken down into

1. Getting Meraki inventory

2. Getting SD-Wan inventory

3. Getting DNAC (and multi controller example… this multi controller could also be ACI domains, or Meraki networks)

4. Getting Intersight inventory

5. Getting ACI Inventory

6. Merging them all togther

7. Optional: Updating ServiceNow example. (note, this uses a developer instance which will be inactive by the time you read this, it is functional, get your own developer instance and use the URI at developer.servicenow.com)

Each of these sections can be ran as a group, by mousing over “7 cells hidden”, or you can expand each section and look at code, and what it is doing. You can click the run button below, OR expand the section. This shows the Meraki inventory.

We then go and get the info from SD-Wan, and Intersight, we go into all the groups and grab information and store them in tables, we have created the below tables:

◉ sdwan_inventory_df -> Data Frame with details from SDWAN

◉ meraki_inventory_df -> Data Frame with details from Meraki

◉ dnac_inventory_df -> Data Frame with details from DNAC

◉ intersight_inventory_df -> Data Frame with details from Intersight

◉ aci_inventory_df -> Data Frame with details from ACI

Each of these data frames include details from inventory, and we want to simplify it for the concise table. We reduce the amount of fields in each table, and rename them so they are consistent. For example, natively ACI calls hostnames in model format, as fabricNode.attributes.name. Intersight calls Hostname “HostName”. We just simplify this.

Reduce the Intersight table to just a few columns,

intersight_inventory_simple_df=intersight_inventory_df[[‘DataSource’,’SerialNumber’,’HostName’,’ModelNumber’,’Ip.Ip’,’Version’]]

Rename these columns to a consistent format:

intersight_inventory_simple_df.rename(columns={‘SerialNumber’:’Serial’,’HostName’:’Hostname’,’ModelNumber’:’Model’,’Ip.Ip’:’IP Address’,’Version’:’Version’}, inplace=True)

After concatenating all these tables, we have an inventory list with a list which we can use to audit or update our system of record.

Source: cisco.com

Continue reading

Secure the Industrial Edge with Cisco SD-WAN

The Expansion of Enterprise Networks

As networking infrastructure continues to expand in our hyper-connected world, the capabilities businesses have to deploy, secure, and manage their critical Internet of Things (IoT) devices plays an ever-increasing role in the success of their enterprise. In response to this expansion, there have been on-going innovations advancing the ways networks operate – and at the forefront of these trends is the way that SD-WAN enables and supports IoT deployments.

Networks are expanding outside traditional office buildings and into industrial spaces, resulting in more devices being connected to the internet and data centers. It is not just printers, light bulbs, and cameras anymore as IoT is moving far beyond the carpeted spaces – each day something new is added to your network and sometimes you may not even know it was there.

The rate of growth for IoT is moving so quickly that IDC estimates by 2025 there will be 55.7 billion IoT devices connected to the internet – that outnumbers the amount of humans in the world by a 7:1 ratio. Though the rise of IoT has improved and extended visibility to more operational elements of the business, it comes with a unique set of challenges that must be tackled to maintain the integrity of the network.

Challenges Surrounding IoT

Across multiple industries companies are finding it difficult to identify, manage, and secure industrial assets. The volume of IoT deployments in an enterprise can vary greatly and introduce incremental security risks. The bottom line is that to fully protect your network and enterprise, IoT devices must be secured on the same level as a data center or operating system would be.

Deployments in the field can be hard to manage with use cases like roadways and intersections, pipelines for oil and gas, and substation automation for power stations. The influx of IoT devices that are being added to networks can be a challenge for those in charge as observability becomes a bottleneck for networks operating on multiple WANs. These obstacles of observability and management can result in instances of unauthorized users accessing sensitive data and lead to high-risk vulnerabilities being exploited. In many cases, lack of consistent security policy extending through the industrial edge becomes an expensive problem.

Fortunately, Cisco SD-WAN provides users with the ability to manage, secure, and observe networks with IoT deployments of all sizes. Cisco SD-WAN provides seamless and secure connectivity far beyond your enterprise, powers automation to scale your operations, and enables visibility to keep your enterprise protected and resilient.

Cisco SD-WAN Can Help

Cisco SD-WAN provides solutions for common IoT challenges by converging security features and management tools that enable the visibility of IoT assets connected to the network while applying consistent security policies in both the enterprise as well as the industrial network extensions. With SD-WAN, encryption and segmentation of data from IoT devices can be applied so that the right people or applications with the right credentials see critical information at the right time.

Over the years, Cisco SD-WAN has made the world more connected than ever by enabling routers deployed in the field, on campus, and at home to be connected to a single network that can be managed with a single pane of glass. Now, Cisco SD-WAN allows for enterprise networks to be brought to the industrial edge to enable visibility and security needs without the need for an entirely new network or management tool.

The simplification of extending network security and routing policies to the edge of your network should be top of mind for any business looking to keep up with changing times and with Cisco SD-WAN, that power is yours.

Source: cisco.com

Continue reading

Supercharge 5G with Converged CRAN Architecture

Communication service providers (CSPs) are being challenged to deploy 5G in dense urban and high traffic environments while trying to optimize for cost and simplify capacity expansions. Centralized radio access network (CRAN) architectures are becoming critical as CSPs adopt mid-band and high-band spectrums to address 5G opportunities. CRAN architecture lowers capital expenditures (CapEx), simplifies operations, and enhances RAN performance with spectrum sharing technologies. CSPs need to look at their existing transport architecture to ensure that they realize these benefits by adopting CRAN.

Evolving the transport network is a first important step in adopting 5G on an existing 4G RAN network. The decision to either stay with distributed RAN (DRAN) architecture by expanding backhaul capacity or migrating to CRAN architecture with fronthaul investment is something every CSP must consider.

Cisco’s Converged SDN Transport architecture and product innovations are addressing these challenges with a unified transport architecture design. This way CSPs can adopt any deployment scenarios (CRAN, DRAN, or both) without changing the underlying transport protocols, management, and infrastructure services definition.

5G CRAN explained

4G is traditionally deployed with DRAN architecture, where radio baseband processing for each site is done locally (figure 1a). In CRAN, a large part of the radio baseband processing is done at a hub for multiple radio sites (figure 1b). In DRAN architecture, the RAN transport toward the mobile core is referred to as backhaul. In CRAN the transport network between the radio antenna and baseband processing units is referred to as fronthaul. Fronthaul has much more stringent latency, jitter, and synchronization requirements compared to backhaul.

Figure 1. 5G RAN architectures – DRAN and CRAN

There are several benefits with CRAN architecture, such as:

◉ Cost optimization: CRAN improves hardware utilization with centralized processing for multiple radio sites. It also reduces radio site footprint and optimizes power and cooling requirements.

◉ Spectrum gains: By processing multiple radio sites from a centralized hub location, it’s easier to process related functions like coordinated multipoint reception to remove inter-signal interference and implement carrier-aggregation techniques.

◉ Expansion and scale: CRAN simplifies capacity expansion, site acquisition, and deployment of heterogeneous networks to meet different business needs.

The benefits of CRAN are realized in dense urban and high traffic scenarios whereas DRAN is often more appropriate for rural and moderate traffic scenarios. CSPs need to consider their networks and traffic patterns in deciding between CRAN and DRAN adoption.

Building efficient RAN transport

CSPs are focused on building an xHaul transport architecture that allows them the flexibility to adopt DRAN or CRAN without worrying about the requirements of fronthaul, midhaul, or backhaul transport. They demand an architecture that meets the latency, jitter, and synchronization requirements of each of these transports – a flexible, programmable, and scalable 5G xHaul transport architecture.

As shown in figure 2, Cisco Converged SDN Transport, with Cisco NCS 540 and NCS 5700 series platforms, allows customers to build a 5G RAN transport that’s both scalable and flexible and can converge Layer 2 and Layer 3 services from the edge of the network. The architecture allows customers to offer various public and private 5G services covering eMBB, FWA, URLLC, and enterprise services.

Figure 2. Converged xHaul architecture

Extending segment routing to the cell site not only simplifies the protocol stack and allows intelligent traffic steering, but also enables service slicing, programmability, and automation capabilities on the architecture. Fronthaul traffic, which is mostly Layer 2, can be carried over an EVPN slice with a low latency path while non-latency sensitive traffic can be carried over a L3VPN slice to meet 5G ORAN specifications. Built using timing best practices, the architecture allows adopting any access topology without impacting time synchronization accuracy.

Cisco’s Converged SDN Transport architecture simplifies adoption of DRAN and CRAN with a deployment that’s independent of network level protocols, infrastructure services, or synchronization architecture.

5G xHaul transport with NCS 540 and NCS 5700 series

Cisco NCS 540 and NCS 5700 series deliver performance, density, and exceptional efficiency to address transport pre-aggregation as well as 5G CRAN deployments. Powered by the IOS XR network operating system, the architecture focuses on simplified operations with programmability, manageability, and automation to meet key characteristics of 5G xHaul transport.

High Density Interfaces for 5G CRAN

NCS 5700 platforms offer high density 10G, 25G, 50G, 100G, and 400G interfaces to aggregate access transport links as well as 5G DU or CU servers at 5G CRAN or far-edge.

At cell sites, NCS 540 platforms offer high density 1G, 10G, and 25G interfaces to connect mid-band and high-band radios over CPRI or eCPRI interfaces with 100G or 400G options for uplink connections.

Optical Support

Broad support of 400G and 100G QSFP-DD ZR/ZR+ optics across the NCS 540 and NCS 5700 portfolio enables CSPs to address bandwidth demand and scale through simplified network architecture.

ORAN Characteristics

The NCS 540 and NCS 5700 portfolio meets 5G xHaul ORAN specifications to support fronthaul, midhaul, or backhaul deployments on a converged architecture.

With consistent performance that meets stringent microsec latency, accurate Class C timing and support of advanced segment routing features, EVPN, and integrated GNSS, the solution helps customers deploy any use case scenario under a single plane of management.

Programmability and Automation

Starting with segment routing v6 and microSIDs-based programmable routing, the solution offers zero-touch provisioning (ZTP) and advanced streaming telemetry as well as YANG model support.

Platforms support modern protocols like gRPC, gNMI, protobuf; and tools based on Chef, Puppet, and Ansible to help customers integrate management layers and simplify operations across access transport and 5G CRAN/far-edge. Network operations teams can take early action, achieve faster remediation, and ensure guaranteed service level agreements (SLAs) for a better end-user experience.

Source: cisco.com

Continue reading

Cisco Intersight Gets a New Look

New User Interface Signals Milestone for Hybrid Cloud Operations Platform

Cisco Intersight, Cisco’s hybrid cloud operations platform, passed a major milestone with the recent release of its new user interface (UI). The UI introduces Cisco’s new branding for its Cloud Networking and Computing software portfolio, brings Nexus Cloud (Cisco’s cloud-managed platform for networking) into the Intersight platform, and improves readability and task findability.

Consistent User Experience

“One of our priorities for the software-as-a-service offerings in Cisco’s Networking and Computing portfolio is to provide a consistent and familiar user experience, no matter which product someone’s using,” said Jeff New, Cisco Intersight Product Manager. Intersight is the first platform to introduce Cisco’s common UI that will be rolled out across its data center computing, networking, and security solutions to provide a more consistent experience for customers.

Cloud Networking, Newest Intersight Platform Service

Intersight’s new UI also introduces cloud-managed networking as the platform’s newest IT operations service. This signals the next step in the platform’s vision to simplify IT operations through a cloud operations model that extends the principles of the cloud to the entire cloud/network IT stack. Nexus Cloud will debut as a service on Cisco Intersight following its current tech preview.

Intersight users can select the IT operations functions they need to perform using the multi-service selector

To easily access Intersight’s services, the new UI introduces a multi-service selector. From the selector, users can choose:

◉ Infrastructure Service – visualize, control, and automate Cisco UCS, HyperFlex, and third-party computing devices

◉ Cloud Orchestrator – automate workflows with a drag-and-drop designer to accelerate delivery of apps and infrastructure

◉ Workload Optimizer – ensure applications get resources when and where needed, at the lowest cost

Nexus Cloud – deploy, manage, and operate your Cisco Nexus networks from the cloud

◉ My Dashboard – personalize a multi-service dashboard using widgets for capabilities across the services on the Intersight platform

◉ System – Claim devices, licensing, identity access management, and other account settings

Intersight users will have access to the functions they have licensed and their corresponding permissions. Once users are in a specific service, they’ll find capabilities in a familiar way.

Command Palette – Get to Actions and Information Quickly

Intersight is a comprehensive solution for hybrid cloud operations with a robust feature set. Intersight users have asked for a faster way to find specific objects in their environments as well as the actions they want to take.

To do this, we’ve introduced the Command Palette. Based on a simple search approach, users can input what they want to do and select from the search results. (“Command K” for Mac users and “Control K” for PC users.) The command palette shows suggestions based on your current context and items you’ve used recently.

Users who took part in the tech preview of the new UI report being pleased with the shortcut to specific tasks they want to execute. This lets them launch operations and begin working in fewer clicks.

Cisco Intersight users can find actions fast using the Command Palette.

Users can find actions fast using the Command Palette

The new UI also improves readability. The classic Intersight UI presented information in a dense way with heavy text on a single screen. In the new UI, users will find that readability is improved with more relevant information on individual screens and more space that allows users to focus on what’s most important.

One UI, Multiple Benefits

“The new UI is more than an improved look and feel,” said New. “The release of the new UI marks the next significant milestone on our vision to deliver a flexible hybrid cloud operations platform to help customers simplify IT operations. Cloud networking joins the suite of Intersight services, with more to come. And through the common UI, we’re lowering the learning curve for customers of Cisco software so it’s easier to get up and running.”

Source: cisco.com

Continue reading

CCT Routing and Switching 100-490 RSTECH Exam: Get to Know How to Pass

Cisco CCT Routing & Switching certification emphasizes on the skills needed for onsite support and sustenance of Cisco routers, switches, and working environments. Technicians in this field must be able to recognize Cisco router and switch models, cabling, accessories, and interfaces; perceive the Cisco IOS Software operating modes and recognize ordinarily found software; and be able to utilize the Cisco Command Line Interface (CLI) to link and service products. One must pass the Cisco 100-490 RSTECH exam to obtain the CCT Routing & Switching certification.

CCT Routing & Switching 100-490 RSTECH Exam Information

The applicant is only said to be completely prepared once they understand and master the essential information for any exam. The CCT Routing and Switching (100-490 RSTECH) exam evaluates an applicant's understanding and expertise concerning the following objectives.

Cisco 100-490 RSTECH Exam Objectives

General Networking Knowledge (25%)

Cisco Equipment and Related Hardware (20%)

Cisco IOS Software Operation (29%)

Service-Related knowledge (26%)

Basic Details of Cisco 100-490 Exam

Let us dive into the basic details of the Cisco 100-490 RSTECH exam. The exam comprises 55-65 multiple-choice questions. This Cisco exam is available in the English language. Also, the Cisco CCT Routing and Switching (100-490 RSTECH) certification is valid for three years.

Studying for CCT Routing and Switching 100-490 RSTECH Exam

If you want to obtain the CCT Routing and Switching certification, you need to pass Cisco 100-490 RSTECH exam. If you consider this exam as another task to accomplish, you will be able to carry it out with amazing results. Just concentrate on learning and mastering all the exam syllabus topics; the rest will be pretty easy whenever you are taking any exam; one of the initial things you will require to do is to obtain the right study resources.

The first platform from where you should begin is the Cisco official website. Cisco itself offers many learning materials for those who want to utilize official resources. You can come across many learning materials on the official website, like the Cisco community, 100-490 RSTECH study guide, training courses, practice tests, and much more. The Cisco community is the ideal place to join in to solve all the questions you have with other members of the community. All the details of these learning resources can be found on the certification's official webpage.

And to perform the CCT Routing and Switching practice exam, you can explore the nwexam website. This is the best website providing practice tests for the Cisco certification exam. They help you assess your preparation level for the exam topics as well as equip you with exam-taking skills. The practice tests will equip you with knowledge and skills but also helps you get familiar with an exam environment before facing the actual exam.

Additional Tips for CCT Routing and Switching Exam

During the preparation stage, not only study resources are important, but also the steps that you take. When you are studying for the CCT Routing and Switching 100-490 RSTECH certification exam, try to make a study plan so that you can learn the syllabus topic within time and assign enough time for each of them. Take into account all the resources available and give each of them an identical time during every week of your preparation. But don’t overlook counting your free time with your family, responsibilities, and other pleasing things you require.

If you want to pass this CCT Routing and Switching exam on the first shot, it is best to concentrate on studying the essential objectives. Thus, you should attempt as many practice tests as possible because they will make a huge difference. Once the exam day reaches, you should ensure that you sleep well the night before and don’t learn anything new on this day. If you start revising concepts instead of just giving yourself a break before the actual exam, there is a possibility that you might start to ignore important details. Have faith in your exam preparation and take your certification exam smoothly.

Pro Tip: Don’t be frightened to use multiple resources because this might be the thing that will help you pass the exam.

Conclusion

Passing the CCT Routing and Switching 100-490 RSTECH exam will demonstrate to organizations that you hold all the skills needed for onsite support and maintenance of Cisco routers, switches, and operating environments.

Cisco certifications are greatly appreciated in the professional world, and if you hold one, it will be a shining star on your CV. Obtaining the CCT Routing and Switching certification will smooth your career path, so why not grab this opportunity and put all your efforts into this milestone?

Continue reading

Vacationing and IT Operations Part 3: Manage the Change

You are looking forward to a day of island hopping. The cruise has been booked, swimming trunks and snorkels packed – you are ready to dive right in. Alas, on the day of the trip the weather gods decided to rain on your parade. Literally. Now what? You can’t afford to waste a precious vacation day cooped up in a hotel room but it’s too late to plan an alternative.

Continuously Optimize for changes

Thankfully, your hotel has an awesome concierge desk. They have been monitoring the weather forecast and proactively created a few alternate options should things not go according to plan. Within minutes of your cruise being canceled, you get a call from the concierge desk offering day passes to the local indoor amusement park. Wave pool, bowling, rides, food court – the whole nine yards. Wouldn’t it be great if your IT infrastructure was this smart in handling change?

Change Management

Change is the only constant. Your IT team knows this too well. Maintaining the health of an ever-changing hybrid cloud environment is not easy: multiple layers of heterogeneous infrastructure, distributed workloads, and applications across different platforms, dynamically changing, require constant monitoring, and decisions about cost, performance and compliance are made at the speed of the cloud. This is a challenge beyond the human scale, and it requires the power of data and analytics to solve.

Transform data into insights across your entire environment

A key part of the value proposition of Intersight is how the platform optimizes your environment and constantly adapts to changes.

Increase your situational awareness and remediate faster to stay ahead of problems

Intersight leverages intelligence across all layers

Starting with Cisco Intersight Infrastructure Services, hardware and firmware are monitored to help ensure that your systems are always compliant with the Cisco Hardware Compatibility List (HCL)—any unsupported configurations cause automatic alerts. At the same time, Cisco Intersight Workload Optimizer analyzes and correlates telemetry across your full stack, from your physical servers to virtualized resources, Kubernetes clusters, and application components, wherever they are, to visualize application and infrastructure dependencies.

In addition, Cisco Intersight offers an always-on connection to the Cisco Technical Assistance Center (TAC), constantly monitoring your environment to help identify configuration issues before they become problems. It watches for anomalous infrastructure events, capturing log information and providing centralized alerts about failure notifications or policy violations.

Reduce risk and costs – optimize performance

Automate complex workload placement decisions with intelligent recommendations

All this telemetry and intelligence captured by Intersight across the different layers of your stack is used to automate tasks and decisions that would be otherwise manual, enabling your environment to truly scale. Using an AI-powered recommendation engine, Intersight continuously assures application performance by automating scaling and placement actions, provisioning resources to meet demand, or correcting misconfigurations to avoid disruptions and unnecessary costs.

Intersight gets smarter over time and adapts better to your unique needs with historical data feeds, producing better real-time recommendations and advanced scenario modelling outputs. Examples of automated tasks include applying security patches and operating system upgrades for physical servers, to licensing for databases on your virtual machines, to resizing and moving workloads for performance and cost, auto-scaling Kubernetes clusters, or applying user access policies across all layers of infrastructure etc.

Finally, Intersight can automatically generate and forward Cisco TAC support cases when required and even raise service requests and return material authorizations (RMAs) automatically.

With complete visibility into on-premises and public cloud application requirements, resource utilization, availability, and costs, Cisco Intersight can improve your overall situational awareness, reduce risk and cost, and free your teams to focus on more important things.

The show must go on

Cisco Intersight can help you smoothly manage disruptions and reduce risk and cost, through complete visibility into on-premises and public cloud application requirements resource utilization, and availability. Allowing your teams to free their focus for more important things, like soaking up that awesome wave pool. Rain or shine.

Source: cisco.com

Continue reading