Zero-touch provisioning

Last updated

Zero-touch provisioning (ZTP), or zero-touch enrollment, [1] is the process of remotely provisioning large numbers of network devices such as switches, routers and mobile devices without having to manually program each one individually. [2] The feature improves existing provisioning models, solutions and practices in the areas of wireless networks, (complex) network management and operations services, and cloud based infrastructure services provisioning. [3]

Contents

ZTP saves configuration time while reducing errors. [2] The process can also be used to update existing systems using scripts. [2] Research has shown that ZTP systems allow for faster provisioning versus manual provisioning. [4] The global market for ZTP services was estimated to be $2.1 Billion in 2021. [5]

In April 2019, the Internet Engineering Task Force published RFC 8572 Secure Zero Touch Provisioning (SZTP) as a Proposed Standard. [6]

Applications

One application of the technology is to improve delivery of cloud computing services. [7] The concept has been particularly influential for information technology when paired with mobile device management. [8] Repetitive processes that can be automated and streamlined include configuring settings; collecting inventory details; deploying apps; managing licenses; and implementing security policy, including password management and wiping remote devices. [9]

System architecture

A basic ZTP system requires a network device that supports ZTP, a server that supports Dynamic Host Configuration Protocol (DHCP) or Trivial File Transfer Protocol (TFTP), and a file server. [2] When a ZTP-enabled device is powered on, the device's boot file sets up configuration parameters. A switch then sends a request using DHCP or TFTP to get the device's configuration file from a central location. The file then runs and configures ports, IP addresses and other server parameters for each location. [2]

Similar concepts

A similar concept is the zero-touch network, which integrates zero-touch provisioning with automation, artificial intelligence and machine learning. [8]

Standards activity

In December 2017, the European Telecommunications Standards Institute (ETSI) formed the Zero-touch network and Service Management group (ZSM) to accelerate development and standardization of the technology. [10] In the summer of 2019, the group published a series of documents defining ZSM requirements, reference architecture and terminology. [10]

In April 2019, the Internet Engineering Task Force published RFC 8572 Secure Zero Touch Provisioning (SZTP) as a Proposed Standard. [6]

Related Research Articles

The Dynamic Host Configuration Protocol (DHCP) is a network management protocol used on Internet Protocol (IP) networks for automatically assigning IP addresses and other communication parameters to devices connected to the network using a client–server architecture.

In telecommunication, provisioning involves the process of preparing and equipping a network to allow it to provide new services to its users. In National Security/Emergency Preparedness telecommunications services, "provisioning" equates to "initiation" and includes altering the state of an existing priority service or capability.

Trivial File Transfer Protocol (TFTP) is a simple lockstep File Transfer Protocol which allows a client to get a file from or put a file onto a remote host. One of its primary uses is in the early stages of nodes booting from a local area network. TFTP has been used for this application because it is very simple to implement.

Dynamic DNS (DDNS) is a method of automatically updating a name server in the Domain Name System (DNS), often in real time, with the active DDNS configuration of its configured hostnames, addresses or other information.

The Bootstrap Protocol (BOOTP) is a computer networking protocol used in Internet Protocol networks to automatically assign an IP address to network devices from a configuration server. The BOOTP was originally defined in RFC 951 published in 1985.

Zero-configuration networking (zeroconf) is a set of technologies that automatically creates a usable computer network based on the Internet Protocol Suite (TCP/IP) when computers or network peripherals are interconnected. It does not require manual operator intervention or special configuration servers. Without zeroconf, a network administrator must set up network services, such as Dynamic Host Configuration Protocol (DHCP) and Domain Name System (DNS), or configure each computer's network settings manually.

The Service Location Protocol is a service discovery protocol that allows computers and other devices to find services in a local area network without prior configuration. SLP has been designed to scale from small, unmanaged networks to large enterprise networks. It has been defined in RFC 2608 and RFC 3224 as standards track document.

<span class="mw-page-title-main">Preboot Execution Environment</span> Standard for booting from a server

In computing, the Preboot eXecution Environment, PXE specification describes a standardized client–server environment that boots a software assembly, retrieved from a network, on PXE-enabled clients. On the client side it requires only a PXE-capable network interface controller (NIC), and uses a small set of industry-standard network protocols such as DHCP and TFTP.

Linux Terminal Server Project (LTSP) is a free and open-source terminal server for Linux that allows many people to simultaneously use the same computer. Applications run on the server with a terminal known as a thin client handling input and output. Generally, terminals are low-powered, lack a hard disk and are quieter and more reliable than desktop computers because they do not have any moving parts.

IP address management (IPAM) is a methodology implemented in computer software for planning and managing the assignment and use of IP addresses and closely related resources of a computer network. It does not typically provide Domain Name System (DNS) and Dynamic Host Configuration Protocol (DHCP) services, but manages information for these components. Additional functionality, such as controlling reservations in DHCP and other data aggregation and reporting capabilities, is also common. Data tracked by an IPAM system may include information such as IP addresses in use, and the associated devices and users. Centralized collection of this information may support troubleshooting and abuse investigations.

<span class="mw-page-title-main">Home network</span> Type of computer network

A home network or home area network (HAN) is a type of computer network that facilitates communication among devices within the close vicinity of a home. Devices capable of participating in this network, for example, smart devices such as network printers and handheld mobile computers, often gain enhanced emergent capabilities through their ability to interact. These additional capabilities can be used to increase the quality of life inside the home in a variety of ways, such as automation of repetitive tasks, increased personal productivity, enhanced home security, and easier access to entertainment.

The domain name .local is a special-use domain name reserved by the Internet Engineering Task Force (IETF) so that it may not be installed as a top-level domain in the Domain Name System (DNS) of the Internet. As such it is similar to the other special domain names, such as .localhost. However, .local has since been designated for use in link-local networking, in applications of multicast DNS (mDNS) and zero-configuration networking (zeroconf) so that DNS service may be established without local installations of conventional DNS infrastructure on local area networks.

Technical Report 069 (TR-069) is a technical specification of the Broadband Forum that defines an application layer protocol for remote management and provisioning of customer-premises equipment (CPE) connected to an Internet Protocol (IP) network. TR-069 uses the CPE WAN Management Protocol (CWMP) which provides support functions for auto-configuration, software or firmware image management, software module management, status and performance managements, and diagnostics.

Lightweight Access Point Protocol (LWAPP) is the name of a protocol that can control multiple Wi-Fi wireless access points at once. This can reduce the amount of time spent on configuring, monitoring or troubleshooting a large network. The system will also allow network administrators to closely analyze the network.

<span class="mw-page-title-main">Intel Active Management Technology</span> Out-of-band management platform by Intel

Intel Active Management Technology (AMT) is hardware and firmware for remote out-of-band management of select business computers, running on the Intel Management Engine, a microprocessor subsystem not exposed to the user, intended for monitoring, maintenance, updating, and repairing systems. Out-of-band (OOB) or hardware-based management is different from software-based management and software management agents.

dhcpd is a DHCP server program that operates as a daemon on a server to provide Dynamic Host Configuration Protocol (DHCP) service to a network. This implementation, also known as ISC DHCP, is one of the first and best known, but there are now a number of other DHCP server software implementations available.

Cobbler is a Linux provisioning server that facilitates and automates the network-based system installation of multiple computer operating systems from a central point using services such as DHCP, TFTP, and DNS. It can be configured for PXE, reinstallations, and virtualized guests using Xen, KVM or VMware. Cobbler interacts with the koan program for re-installation and virtualization support. koan and Cobbler use libvirt to integrate with different virtualization software. Cobbler is able to manage complex network scenarios like bridging on a bonded Ethernet link.

Cisco Prime Network Registrar (CNR) is a Cisco software product that includes components for Domain Name System (DNS) services, Dynamic Host Configuration Protocol services, Trivial File Transfer Protocol (TFTP) services, and Simple Network Management Protocol functions. CNR provides a regional and local management structure and is supported on server hardware and software based on 32-bit and 64-bit architectures. This product is now called Cisco Prime Network Registrar.

HP Network Management Center (NMC) is a suite of integrated HP software used by network managers in information technology departments. The suite allows network operators to see, catalog and monitor the routers, switches, and other devices on their network. IT staff is alerted when a network device fails and it predicts when a network node or connection point may go down. The suite was designed to address operational efficiency.

References

  1. Gold, Jack (May 16, 2019). "How can zero-touch enrollment help Android admins?". Techtarget.com. Retrieved February 24, 2023.
  2. 1 2 3 4 5 Gillis, Alexander (May 1, 2021). "zero-touch provisioning (ZTP)". Techtarget.com. Retrieved January 3, 2023.
  3. Demchenko, Yuri; Filiposka, Sonja; Tuminauskas, Raimundas; Mishev, Anastas; Baumann, Kurt; Regvart, Damir; Breach, Tony (2015). "Enabling Automated Network Services Provisioning for Cloud Based Applications Using Zero Touch Provisioning". 2015 IEEE/ACM 8th International Conference on Utility and Cloud Computing (UCC). pp. 458–464. doi:10.1109/UCC.2015.82. ISBN   978-0-7695-5697-0. S2CID   16630605 . Retrieved February 24, 2023.
  4. Boskov, Ivan; Yetgin, Halil; Vucnik, Matevz; Fortuna, Carolina; Mohorcic, Mihael (2020). "Time-to-Provision Evaluation of IoT Devices Using Automated Zero-Touch Provisioning". GLOBECOM 2020 - 2020 IEEE Global Communications Conference. pp. 1–7. arXiv: 2009.09731 . doi:10.1109/GLOBECOM42002.2020.9348119. ISBN   978-1-7281-8298-8. S2CID   221818631 . Retrieved February 24, 2023.
  5. "Zero-Touch Provisioning Market Size, Share & Trends Analysis Report By Component, Device Type, Network Complexity, Enterprise Size, Industry, By Regional Outlook, Competitive Strategies, And Segment Forecasts, 2022 - 2030". grandviewresearch.com. Retrieved January 19, 2023.
  6. 1 2 Watsen, Kent; Abrahamsson, Mikael; Farrer, Ian (April 1, 2019). "Secure Zero Touch Provisioning (SZTP) RFC 8572". IEGF.org. Retrieved March 6, 2023.
  7. Demchenko, Yuri; Filiposka, Sonja (November 1, 2016). "ZeroTouch Provisioning (ZTP) Model and Infrastructure Components for Multi-provider Cloud Services Provisioning". researchgate.net. arXiv: 1611.02758 . Retrieved January 4, 2023.
  8. 1 2 "What is a zero-touch network?: Hype vs. reality". rcrwireless.com. December 17, 2021. Retrieved January 4, 2023.
  9. "Zero-Touch Provisioning: A New Model for Device Management". Insight. October 15, 2018. Retrieved May 19, 2023.
  10. 1 2 "Zero touch network & Service Management (ZSM)". ETSI.org. Retrieved January 4, 2023.
This page is based on this Wikipedia article
Text is available under the CC BY-SA 4.0 license; additional terms may apply.
Images, videos and audio are available under their respective licenses.