Network Automation with Ansible + DNA Center Lab

Solution Overview
Many customer environments today have a mixture of OEMs and/or topologies that dictate a wider net be cast in the context of automation. While Cisco’s DNA Center provides some serious intelligence in the Assurance engine and really simplifies the deployment and management of a Campus Fabric it will not be able to cover the multiple OEMs. For non-fabric configurations it can use the Apache Velocity templating language but still that only would cover the Cisco topology and has some limitations related to idempotency and validating the configs remain in check with the "standard."

This is where joining the forces of Ansible and DNA Center can help drive a more comprehensive automation strategy resulting in a fully automated network with awesome visibility.

Goals & Objectives

This lab guide will explore the capability of integrating Cisco DNA Center and Red Hat Ansible. The two are not mutually exclusive automation solutions and this lab will show that they are highly complimentary.

We will explore the following concepts:

  • Configuring DNA Center Using Ansible
  • DNA Center as a Source of Inventory
  • Network Automation with Ansible + DNAC
    • Add a New SVI
    • Modifying an Edge Port
    • Port Authentication with Dot1x

Hardware & Software

- Cisco DNA Center (
- Cisco ISE (2.4 patch 9)
- Ansible Engine (2.9.6)
- Catalyst 9300 (16.12.3a)
- Catalyst 3850 (16.12.3a)