Feature Requirements |
Series |
Models |
|---|---|---|
Identity certificates must be preset for devices that go online through SZTP. That is, identity certificates need to be preset on all main control boards before delivery. Devices without identity certificates do not support SZTP. |
NetEngine 8000 F |
NetEngine 8000 F1A |
During SZTP running: 1. Do not run the mtp assistant disable or assistant scheduler suspend command to disable the OPS built-in script maintenance assistant. 2. Do not run the undo enable (OPS view) command to disable the OPS function. Otherwise, the ZTP function is affected. |
NetEngine 8000 F |
NetEngine 8000 F1A |
If two or more interfaces with the same MAC address exist on the network and all these interfaces can apply to the same DHCP server for IP addresses, the subsequent SZTP process is affected. As a result, the SZTP fails to be started. |
NetEngine 8000 F |
NetEngine 8000 F1A |
When a device goes online through SZTP, the configuration file in the startup item must be NULL or vrpcfg.zip. Otherwise, SZTP does not start. |
NetEngine 8000 F |
NetEngine 8000 F1A |
During device startup, the sub-interfaces with VPN instances generated by the pre-configuration script do not support SZTP. |
NetEngine 8000 F |
NetEngine 8000 F1A |
A device cannot be in the same broadcast domain with two or more DHCP servers. Otherwise, the SZTP function may be invalid. |
NetEngine 8000 F |
NetEngine 8000 F1A |
If SZTP is used for the next startup, check whether SZTP is enabled. If SZTP is disabled, you need to enable it. Otherwise, the device cannot enter the SZTP process next time. |
NetEngine 8000 F |
NetEngine 8000 F1A |
The address lease needs to be set for the DHCP server based on the site deployment period. If the lease is too short, a go-online failure occurs. You are advised to set a long period for the DHCP server address. |
NetEngine 8000 F |
NetEngine 8000 F1A |
If SZTP is used, the manually configured device startup items may be overwritten by SZTP. In this case, you need to run the set sztp disable command to stop SZTP first. |
NetEngine 8000 F |
NetEngine 8000 F1A |
SZTP does not support DNS resolution or DHCPv6. |
NetEngine 8000 F |
NetEngine 8000 F1A |
Before SZTP goes online, a configuration file must be available for downloading. The corresponding configuration file must be loaded on the server. If the corresponding configuration file is not available, the SZTP process is triggered again. |
NetEngine 8000 F |
NetEngine 8000 F1A |
Device startup through SZTP requires the CF card to provide sufficient storage space. Otherwise, file downloading fails. As a result, the SZTP process is re-triggered until the download is successful or the user intervenes. |
NetEngine 8000 F |
NetEngine 8000 F1A |
The number of redirection servers carried in the Bootstrap Data message sent from the server to a device cannot exceed 3. Otherwise, SZTP does not process the message and SZTP deployment fails. |
NetEngine 8000 F |
NetEngine 8000 F1A |
SZTP cannot run on virtual systems except VS 0. |
NetEngine 8000 F |
NetEngine 8000 F1A |
SZTP supports only the X509 certificate in PEM encoding format on the server. The CA certificate chain used to issue server identify certificates can contain only one root certificate and a maximum of three intermediate certificates. Otherwise, server identity authentication by SZTP will be affected. |
NetEngine 8000 F |
NetEngine 8000 F1A |
SZTP can parse packets only in XML format (voucher, redirect, and onboarding information). Packets in JSON format cannot be parsed. |
NetEngine 8000 F |
NetEngine 8000 F1A |
The configuration file downloaded when the device goes online through SZTP cannot contain configurations related to OPS disabling. Otherwise, SZTP stops running. |
NetEngine 8000 F |
NetEngine 8000 F1A |