Setting up ZTP in a trusted network

The following procedure is an overview of setting up a Zero Touch Provisioning (ZTP) environment to provision newly installed switches automatically. The procedure is intended for network administrators who are familiar with automatically provisioning switches in a network, and does not provide detailed information about configuring or managing switches.

Procedure
  1. For each switch model to be provisioned using ZTP, do the following:
    1. Obtain the switch firmware image files.
    2. Prepare the switch configuration files.

      The configuration file becomes the running configuration and the startup configuration on the switch.

  2. Set up a TFTP server.

    The TFTP server, DHCP server, and the switches to be provisioned must be in the same management network.

    You will need to know the IP address of the TFTP server when you set up the DHCP server.

  3. Publish the configuration files and image files to the TFTP server.

    You will need to know the locations of the files and the IP address of the TFTP server when you set up the vendor class on the DHCP server.

  4. On the DHCP server, set up vendor classes for each switch model you plan to provision. DHCP server.

    The DHCP server responds when the factory default switch connects to the management network and sends a DHCP request.

    The TFTP server, DHCP server, and the switches to be provisioned must be in the same management network.

    To set up the vendor classes on the DHCP server, you need the following information:

    • The IP address of the TFTP server. You must specify an IP address. Using a host name is not supported.

    • The path to the switch configuration files and firmware image files on the TFTP server.

    • The vendor class identifier (VCI) for each switch model.

      You can obtain the VCI by entering the show dhcp client vendor-class-identifier command from a switch CLI command prompt in the manager context. The VCI is the text string in the response that starts with Aruba.

      For example:

      switch# show dhcp client vendor-class-identifier
      Vendor Class Identifier:  Aruba JL479A 8320
    • The DHCP options that are supported by the ZTP implementation on ArubaOS-CX.

  5. At the installation site, provide the switch installer with a Cat6K network cable connected to the management network that includes the DHCP and TFTP servers.

    The switch installer plugs the cable into the management port of the switch. The ZTP operation begins when power is applied to the switch after the network cable is installed.

  6. Assuming the configuration includes a way to access the CLI of the switch, you can enter the following command to show the options offered by the DHCP server and the status of the ZTP operation:

    show ztp information