-
Notifications
You must be signed in to change notification settings - Fork 146
SIMPLE-7648: Added configuration to the ISE node definition #62
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Merged
Merged
Changes from all commits
Commits
Show all changes
5 commits
Select commit
Hold shift + click to select a range
5d2c100
SIMPLE-7648: Added configuration to the ISE node definition
BregaladTaran 5a84207
Merge branch 'CiscoDevNet:master' into master
BregaladTaran 2ff0ed0
Added Windows 11 node-definition from simple.
BregaladTaran a73d8ec
Fixed typo
BregaladTaran 9285a07
Update ise.yaml
BregaladTaran File filter
Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
There are no files selected for viewing
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,13 @@ | ||
| # Microsoft Windows 11 | ||
|
|
||
| This directory contains the following node definition: | ||
|
|
||
| * `win11.yaml` - Microsoft Windows 11 node definition | ||
|
|
||
| ### Image Availability | ||
|
|
||
| VHD images can be downloaded from Microsoft on a trial basis here: https://www.microsoft.com/en-us/evalcenter/evaluate-windows-11-enterprise. Then the VHD image will have to be converted to a .qcow2 format. Linux `qemu-img` makes it easy. Documentation: https://docs.openstack.org/image-guide/convert-images.html | ||
|
|
||
| ### Notes | ||
|
|
||
| This node definition uses 2 VCPUS and 6 GB RAM. |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,71 @@ | ||
| id: win11 | ||
| general: | ||
| nature: server | ||
| read_only: false | ||
| description: Windows 11 | ||
| device: | ||
| interfaces: | ||
| has_loopback_zero: false | ||
| physical: | ||
| - eth0 | ||
| - eth1 | ||
| - eth2 | ||
| - eth3 | ||
| - eth4 | ||
| - eth5 | ||
| - eth6 | ||
| - eth7 | ||
| serial_ports: 1 | ||
| default_count: 2 | ||
| ui: | ||
| visible: true | ||
| label_prefix: win11- | ||
| icon: host | ||
| label: Windows 11 | ||
| description: |- | ||
| 2 vCPUs 6 GB RAM | ||
|
|
||
| Username/Password: | ||
| IEUser/Passw0rd! (or whichever is set on installation) | ||
|
|
||
| ##### Note | ||
| **EXPERIMENTAL** | ||
|
|
||
| The -waitpkg flag is required for boot with hyperv compatibility, | ||
| which speeds up the node; the model setting then required disabling | ||
| the other features (hle,rtm,mpx) on the machine used to test this. | ||
| sim: | ||
| linux_native: | ||
| libvirt_domain_driver: kvm | ||
| driver: server | ||
| disk_driver: sata | ||
| ram: 6144 | ||
| cpus: 2 | ||
| nic_driver: e1000 | ||
| video: | ||
| model: cirrus | ||
| memory: 16 | ||
| cpu_limit: 20 | ||
| cpu_model: 'Skylake-Server,-waitpkg,-hle,-rtm,-mpx' | ||
| machine_type: q35 | ||
| enable_tpm: true | ||
| efi_boot: true | ||
| boot: | ||
| timeout: 300 | ||
| inherited: | ||
| image: | ||
| ram: true | ||
| cpus: true | ||
| data_volume: true | ||
| boot_disk_size: true | ||
| cpu_limit: true | ||
| node: | ||
| ram: true | ||
| cpus: true | ||
| data_volume: true | ||
| boot_disk_size: true | ||
| cpu_limit: true | ||
| configuration: | ||
| generator: | ||
| driver: server | ||
| schema_version: 0.0.1 |
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Does this password meet complexity requirements and do these settings work if IP is provided?
Uh oh!
There was an error while loading. Please reload this page.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
This password does work, since it's the one I used in the last test of ISE.
I commented all the settings which are not required (i.e. ISE needed at the very least the settings I left uncommented)
Examples for nameserver and ntpserver are ones that work for me when NOT on VPN. I provided them specifically as an example, but I am assuming these will depend on the person running ISE.
I do have have all the values for the minimal working configuration (I can send them here if needed), but I have assumed that those should not go here since some of them work just for me (being on cisco vpn).
Next, I rewrote the boot timeout to 3600 since from my experience it takes at least an hour for ISE to bootup
issues with console:
even though they should be on separate lines; sometimes an issue pops up but if ignored, the setup continues as normal; sometimes the user is prompted to "Press to continue" even though in the same lane it says that Booting OS please wait... and so on, I didn't write down all the weird things these are just some that I remember;
possible SERIOUS issue:
correct config), couldn't it be an issue if someone who maybe doesn't realize this fact, started ISE on
a machine, not knowing that there is not enough space and that if ISE is allowed to go on it wil
l completely fill the memory of said machine which will (or can) lag it out, or potentially even halt it
by filling all the memory?
(I feel like this is something which could realistically be done by accident and it could cause some
issues)
(These issue and observations were made using this image: http://10.122.58.4/CML2/2.9/images/Cisco-vISE-300-3.4.0.608.qcow2 )
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Wow. I've never seen an hour for the first boot. But I haven't used ISE 3.4 yet. My last experience was with 3.3. I think we should document things if it does a silent update from the internet. Again, that's not been my experience, but maybe ISE 3.4 is doing this? What does it pull down?