Onboarding
Steps:
-
Step 1: Learn about Meraki and cloud-managed IT, then begin
to plan your deployment
- Task 1: Register for a virtual event, available on Cisco Community
-
Step 2: Complete your Meraki organization onboarding
- Task 2: Create a Meraki dashboard account and organization
- Task 3: Enable two-factor authentication for administrative users (recommended)
- Task 4: Convert your licensing model from co-termination to per-device licensing (recommended)
- Task 5: Create a second organization admin account to adhere to access redundancy best practices (recommended)
Implement
Steps
-
Step 1: Grow your deployment by claiming at least 40% of license
purchase orders
- Task 1: Claim licenses and devices on the "Inventory" page in the Meraki dashboard
- Step 2: Create networks within the organization and assign devices to them
- Step 3: Convert supported Catalyst switches and Catalyst wireless APs to cloud-managed mode
- Step 4: Finish network device onboarding by setting the location
-
Step 5: Enable essential networking and security capabilities on
the network using the Meraki dashboard
- Task 8: For the security appliance: Enable routing capabilities by adjusting and configuring VLANs
- Task 9: For the security appliance: Enable a high-availability pair to increase redundancy in your MX deployment (recommended)
- Task 10: For the security appliance: Fine-tune DHCP settings (recommended)
- Task 11: For switches: Adjust the type and VLAN assignment of switch ports
- Task 12: For switches: Create switch stacks to increase redundancy in your switched network
- Task 13: For access points: Enable and rename your SSIDs
- Task 14: For access points: Configure SSID authentication, encryption, splash page, and client IP addressing settings (recommended)
- Task 15: For Systems Manager (SM): Enroll at least 10 endpoints into the SM network (recommended)
-
Step 6: Deploy network security at scale with group policies
- Task 16: Create group policies on a per-network basis with the following settings: firewall rules, traffic shaping rules, DNS layer protection, wireless security settings, and UTM features (IDS/IPS and content filtering)
Use
Steps
-
Step 1: Grow your deployment by claiming at least 80% of license
purchase orders
- Task 1: Claim licenses and devices on the "Inventory" page in the Meraki dashboard
-
Step 2: Enable intermediate networking and security capabilities
on the network using the Meraki dashboard
- Task 2: For the security appliance: Enable firewall capabilities by setting up Layer 3 and Layer 7 firewall rules
- Task 3: For the security appliance: Enable Intrusion Detection/Prevention to secure the network against attacks
- Task 4: For the security appliance: Enable Advanced Malware Protection to secure the network against malware
- Task 5: For the security appliance: Enable content filtering to control access to web pages in the network
- Task 6: For the security appliance: Enable AutoVPN (recommended for multi-site deployments planning to use SD-WAN features)
- Task 7: For switches: Configure spanning-tree settings to create a loop-free topology
- Task 8: For switches: Configure Layer 3 routing for supported switches (recommended)
- Task 9: For access points: Configure and apply RF profiles to define radio settings at scale
- Task 10: For access points: Enable Auto RF to leverage AI channel planning within the network (recommended)
- Task 11: For Systems Manager: Configure and deploy device profiles (recommended)
- Step 3: Enhance device monitoring and management with tags and alerts
Engage
Steps
-
Step 1: Grow your deployment by claiming at least 90% of license
purchase orders
- Task 1: Claim licenses and devices on the "Inventory" page in the Meraki dashboard
-
Step 2: Deploy configuration at scale with network templates
- Task 2: Create templates at the organization level to help with deploying settings at scale
-
Step 3: Enable advanced networking and security capabilities on the
network using the Meraki dashboard
- Task 3: For the security appliance: Define uplink configuration and uplink selection settings in the SD-WAN and traffic shaping page to determine uplink failover and load balancing behavior
- Task 4: For the security appliance: Define SD-WAN policies and performance classes to enhance application experience in the network
- Task 5: For the security appliance: Configure traffic shaping rules to enhance end-user experience with Quality of Service (recommended)
- Task 6: For switches: Enable Quality of Service (QoS) settings in the switched network by defining QoS rules and editing DSCP to CoS mappings
- Task 7: For switches: Enable security features in the switched network, such as port security, DHCP snooping, Dynamic ARP inspection, port isolation, storm control, and spanning-tree guard features (recommended)
- Task 8: For access points: Enable Quality of Service (QoS) settings in the wireless network by defining SSID traffic shaping rules
- Task 9: For access points: Enable security features in the wireless network, such as firewall rules, AirMarshal, DHCP guard, and RA guard (recommended)
- Task 10: For access points: Enable and configure the IoT radio settings to leverage advanced endpoint analytics and tracking (recommended)
- Task 11: For access points: Enable DNS layer protection on the wireless network (advanced license required) (recommended)
- Task 12: For Systems Manager: Configure and deploy application profiles (recommended)
-
Step 4: Enable scalable security in the LAN and WLAN with adaptive
policies
- Task 13: Verify that adaptive policy has been configured and applied in the network (recommended)
-
Step 5: Validate deployment settings using the Meraki mobile app
- Task 14: Install and log in using the Meraki mobile app to validate your deployment on the go (recommended)
Adopt
Steps
-
Step 1: Grow your deployment by claiming at least 95% of license
purchase orders
- Task 1: Claim licenses and devices on the "Inventory" page in the Meraki dashboard
-
Step 2: Enable integrations with external solutions to enhance visibility,
security, and analytics
- Task 2: Integrate your Meraki networking and security networks with monitoring servers using SNMP, Netflow, or Syslog (recommended)
- Task 3: Integrate your Meraki networking and security networks with RADIUS servers for network access control in the network (recommended)
- Task 4: Integrate your Meraki networking and security networks with Cisco Identity Services Engine for network access control and device posturing in the network (recommended)
- Task 5: Integrate your Meraki networking and security networks with CloudShark to export and host packet captures (recommended)
- Task 6: Integrate your Meraki networking and security networks with webhooks for advanced alerting and monitoring (recommended)
- Task 7: Integrate your Meraki networking and security networks with Active Directory (AD) (MX only) to enable group policy assignment per AD group (recommended)
- Task 8: Enable the dashboard API for advanced automation and integrations (recommended)
- Task 9: Integrate your Meraki networking and security networks with Secure Malware Analytics (MX only) for advanced malware analysis and sandboxing (recommended)
- Task 10: Enable the Scanning API for end-user analytics on the wireless network (recommended)
- Task 11: Enable and configure Message Queue Telemetry Transport (MQTT) for access points (recommended)
Comments
0 comments
Please sign in to leave a comment.