To add unmanaged sites to an NGE domain
Steps
1 |
Choose Manage→Network Group Encryption from the NFM-P main menu. The Manage Network Group Encryption form opens. |
2 |
Choose Key Group from the drop-down menu and click Search. The NFM-P NGE key groups are listed. |
3 |
Select a key group and click Properties. The Key Group (Edit) form opens. |
4 |
Click on the Encryption tab, then on the NGE Domains sub-tab. |
5 |
Choose an NGE domain and click Properties. The NGE Domain (Edit) form opens. |
6 |
Configure at least one site and interface in the domain as a gateway. At least one gateway must be present before an unmanaged site can be added to the domain. To configure a gateway: |
7 |
Add one or more unmanaged sites to the domain. To add an unmanaged site:
The unmanaged site is added to the list of sites in the domain. Repeat this step as required to add other sites. |
8 |
Verify that the Unmanaged Site check box is enabled for all unmanaged sites. Select the unmanaged sites and click NGE Discovery. The IP addresses of the unmanaged sites are added to the discovery rule specified in Step 7. When NGE discovery is triggered, the NFM-P inserts the IP address of the unmanaged NE to the specified discovery rule. ACL IP exception filters will then be created on the gateway interface, in preparation for successful encryption on the interface of the newly discovered NE. |
9 |
Wait for the NGE discovery process to complete an NE resynchronization. When the resynchronization is complete, the discovered sites become managed sites in the NGE domain and the Unmanaged Site check box is disabled. If the NGE Discovery Execution Status is Failed, check the NGE Discovery Execution State for the failure reason. |
10 |
Enable encryption on interfaces of the newly discovered NE by following Step 10 of To configure an NGE domain. After encryption has been enabled, the ACL IP exception filters are removed by the NFM-P. |
11 |
Close the forms. End of steps |