Cisco ACI Integration Setup¶
This guide will walk you through steps to set up Cisco ACI integration with the nautobot_ssot app.
Prerequisites¶
Before configuring the integration, please ensure, that nautobot-ssot app was installed with the ACI integration extra dependencies.
Configuration¶
Integration behavior can be controlled with the following settings:
| Setting Name (* required) |
Type | Description |
|---|---|---|
aci_apics_* |
Per-APIC settings. See per-APIC settings section for details. | |
| aci_tag* | String | Tag which is created and applied to all synchronized objects. |
| aci_tag_color* | String | Hex color code used for the tag. |
| aci_tag_up* | String | Tag indicating the state applied to synchronized interfaces. |
| aci_tag_up_color* | String | Tag color applied to the "UP" tag on interface status. |
| aci_tag_down* | String | Tag indicating the state applied to synchronized interfaces. |
| aci_tag_down_color* | String | Tag color applied to the "DOWN" tag on interface status. |
| aci_manufacturer_name* | String | Manufacturer name. Specifically existing, or a new one with this name will be created. |
| aci_ignore_tenants* | List[String] | List of ACI Tenants that should not be synchronized from APIC. |
| aci_comments* | String | Comment added to synchronized objects. |
Below is an example snippet from nautobot_config.py that demonstrates how to enable and configure Cisco ACI integration:
PLUGINS_CONFIG = {
"nautobot_ssot": {
"enable_aci": True,
# URL and credentials should be configured as environment variables on the host system
"aci_apics": {x: os.environ[x] for x in os.environ if "APIC" in x},
# Tag which will be created and applied to all synchronized objects.
"aci_tag": "ACI",
"aci_tag_color": "0047AB",
# Tags indicating state applied to synchronized interfaces.
"aci_tag_up": "UP",
"aci_tag_up_color": "008000",
"aci_tag_down": "DOWN",
"aci_tag_down_color": "FF3333",
# Manufacturer name. Specify existing, or a new one with this name will be created.
"aci_manufacturer_name": "Cisco",
# Exclude any tenants you would not like to bring over from ACI.
"aci_ignore_tenants": ["common", "mgmt", "infra"],
# The below value will appear in the Comments field on objects created in Nautobot
"aci_comments": "Created by ACI SSoT Integration",
}
Per-APIC settings¶
The APIC URL and credentials need to be created as environment variables on the host system.
You can configure multiple APIC instances for synchronization. To do this, append _ character, followed by an identifier, to the names of environment variables.
In the example below, configured APIC uses NTC for an identifier. Instead of NTC you could, for example, use CHCG01 to configure an APIC instance in your Chicago facility.
export NAUTOBOT_APIC_BASE_URI_NTC=https://aci.cloud.networktocode.com
export NAUTOBOT_APIC_USERNAME_NTC=admin
export NAUTOBOT_APIC_PASSWORD_NTC=not_so_secret_password
export NAUTOBOT_APIC_VERIFY_NTC=False
export NAUTOBOT_APIC_SITE_NTC="NTC ACI"
export NAUTOBOT_APIC_TENANT_PREFIX_NTC="NTC_ACI"
The identifier is used to select APIC from the SSoT dashboard when initiating a synchronization job:
Nautobot Objects Affected by Settings¶
A Site will be created in Nautobot with the name specified in the NAUTOBOT_APIC_SITE environment variable and resources created by the integration will be assigned to this site.
Tenants imported from ACI will be prepended with the unique name specified by the corresponding TENANT_PREFIX variable. This uniquely identifies tenants which might have the same name, but belong to two different APIC clusters.
Configuring Device Templates¶
To create a new Nautobot Device Type mapping to a specific ACI leaf or spine switch model you need to provide YAML file describing that model. This model definition includes interface template with the ports and transceiver types (ex. 10GE SFP+) specification.
The YAML files need to be placed in the nautobot_ssot/integrations/aci/diffsync/device-types directory. Their names need to match the model name as it appears in the ACI Fabric Membership area of the APIC dashboard.
For example, given a Model name of N9K-C9396PX as shown below, the YAML file should be named N9K-C9396PX.yaml.
There are example YAML files for a few common switch models in nautobot_ssot/integrations/aci/diffsync/device-types, and additional ones can be downloaded here.
Upgrading from nautobot-plugin-ssot-aci App¶
Warning
When upgrading from nautobot-plugin-ssot-aci app, it's necessary to avoid conflicts.
- Uninstall the old app:
- Upgrade the app with required extras:
- Fix
nautobot_config.pyby removingnautobot_ssot_acifromPLUGINSand merging app configuration intonautobot_ssot:PLUGINS = [ "nautobot_ssot", # "nautobot_ssot_aci" # REMOVE THIS LINE ] PLUGINS_CONFIG = { # "nautobot_ssot_aci": { REMOVE THIS APP CONFIGURATION # MOVE CONFIGURATION TO `nautobot_ssot` SECTION # "apics": {x: os.environ[x] for x in os.environ if "NAUTOBOT_APIC" in x}, # "tag": "ACI", # ... # } "nautobot_ssot": { # Enable Cisco ACI integration "enable_aci": True, # Following lines are moved from `nautobot_ssot_aci` and prefixed with `aci_` "aci_apics": {x: os.environ[x] for x in os.environ if "NAUTOBOT_APIC" in x}, "aci_tag": "ACI", ... } }
Note
Configuration keys are prefixed with aci_.
Note
Environment variables defining APICs access must contain APIC.
Other environment variables for this integration are prefixed with NAUTOBOT_SSOT_ACI_.