Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

ON THIS PAGE
 

Step 1: Begin

This guide walks you through the simple steps to install Paragon Automation and use Paragon Automation to onboard, manage, and monitor Juniper Networks devices.

Meet Paragon Automation

Juniper® Paragon Automation provides end-to-end transport network automation and simplifies the adoption of network automation for device, network, and service life cycles from Day 0 to Day 2.

You can onboard ACX7000 Series, PTX Series, and MX Series routers listed in Paragon Automation Supported Hardware to Paragon Automation and manage them.

Install Paragon Automation

Before you install the Paragon Automation application, ensure that your server(s) meet the requirements listed in this section. A Paragon Automation cluster should contain four nodes [virtual machines (VMs)], with three nodes acting as both primary and worker nodes and one node acting as a worker-only node.

Requirements

Hardware Requirements

Each node VM must have the following minimum hardware resources:

  • 16-core vCPU

  • 32-GB RAM

  • 300-GB SSD (SSDs are mandatory)

Note:

  • These VMs do not need to be in the same server, but the nodes need to be able to communicate over an L2 network.

  • The hardware resources needed for each node VM depends on the size of the network that you want to onboard. To get a scale and size estimate of a production deployment and to discuss detailed dimensioning requirements, contact your Juniper Partner or Juniper Sales Representative.

Software Requirements

Use VMware ESXi 8.0 to deploy Paragon Automation.

Network Requirements

The four nodes must be able to communicate with each other through SSH. You need to have the following addresses available for the installation, all in the same subnet.

  • Four IP addresses, one for each of the four nodes

  • Network gateway IP address

  • A Virtual IP (VIP) address for generic ingress shared between gNMI, OC-TERM (SSH connections from devices), and the Web UI.

  • A VIP address for Paragon Active Assurance Test Agent gateway.

Browser Requirements

Paragon Automation is supported on the latest version of Google Chrome, Mozilla Firefox, and Safari.

The recommended browser is Google Chrome.

Create and Configure VMs

A system administrator can install Paragon Automation by downloading an OVA bundle and using the OVA bundle to deploy the node VMs on a VMware ESXi server. Alternatively, you can also extract the OVF and VMDK files from the OVA bundle and use them to deploy the node VMs. Paragon Automation runs on a Kubernetes cluster with three primary/worker nodes and one worker-only node. The installation is air-gapped but you need Internet access to download the OVA bundle to your computer.

Figure shows the workflow for installing Paragon Automation.

Figure 1: Workflow for Installing Paragon Automation Workflow for Installing Paragon Automation

You use the OVA (or OVF and VMDK files) bundle to create your node VMs. The software download files come prepackaged with the OS and all packages required to create the VMs and deploy your Paragon Automation cluster. The VMs have a Linux base OS of Ubuntu 22.04.4 LTS (Jammy Jellyfish).

Once the VMs are created, you must configure each VM in the same way. When all the VMs are configured, you can deploy the Paragon Automation cluster from the first VM.

  1. Download the OVA bundle onto your computer.

  2. Log in to the VMware ESXi 8.0 server to install Paragon Automation.

  3. Create the node VMs.

    To create the node VMs:

    1. Right-click the Host icon and select Create/Register VM.

      The New virtual machine wizard appears.

    2. On the Select creation type page, select Deploy a virtual machine from an OVF or OVA file and click Next.

    3. Follow the steps in the wizard to create a node.

      See Install Paragon Automation for information.

    4. Follow steps 3.a to 3.c to create three more nodes. Enter appropriate VM names when prompted.

    5. After all the VMs are created, verify that the VMs have the correct specifications and are powered on.

  4. Configure the Nodes.

    To configure the nodes:

    1. Connect to the node VM console of the first VM node.

      You are logged in to the node as the root user automatically and prompted to change your password.

    2. Enter and re-enter the new password.

      You are automatically logged out of the VM.

      Note:

      We recommend that you enter the same password for all the VMs.

    3. When prompted, log in again as root user with the newly configured password.

    4. Configure the hostname and IP address of the VM, gateway, and DNS servers when prompted.

      For information, see Install Paragon Automation.

    5. When prompted, if you are sure to proceed, review the information displayed, type y, and press Enter.

    6. Repeat steps 4.c through 4.e for the other three VMs.

    7. Make sure that the nodes can reach each other.

You can now deploy the cluster.

Deploy the Cluster

You can deploy the Paragon Automation cluster either by using Paragon Shell or by using the interactive deployment wizard in the Linux root shell.

This section describes deploying the cluster by using thedeployment wizard. For information about deploying the cluster by using Paragon shell, see Install Paragon Automation by using Paragon Shell.

To deploy a Paragon Automation cluster by using the deployment wizard from the Linux root shell:

  1. Log into the first VM (PA-primary1) node and log back in as the root user with the newly configured password.

    You are in the Paragon Shell operational mode.

    In the login message that appears, each node in the cluster is referred to as a controller. This first VM from where you create the cluster is referred to as Controller-1.

  2. Exit Paragon Shell by executing the exit command.

    You are in the Linux root shell now.

  3. When prompted whether you want to create a cluster, type y and press Enter.

  4. Configure the VIP addresses (general ingress and Test Agent gateway), the IP addresses of Controller-2, Controller-3, and Controller-4 VMs (corresponding to the second, third, and fourth VM created and configured before), the Web admin e-mail address and password, and the NTP server address.

    For more information, refer to Deploy the Cluster Using the Deployment Wizard.

  5. When prompted whether you want to proceed, type y and press Enter.

  6. When prompted, enter the SSH password for the VMs, enter the same password that you configured to log in to the VMs.

    The cluster deployment begins. The deployment takes around an hour to complete.

  7. Upon successful completion of the deployment, the application cluster is created and you are logged in to Paragon Shell.

    The console output displays the four Controller IP addresses, the Paragon Active Assurance Test Agent gateway VIP address, the Web admin user e-mail address, and the Web UI IP address.

  8. Log out of the node VM and log in again to Paragon Shell to see the updated command prompt.

    The CLI command prompt displays your log in user name and the node hostname that you configured previously.

  9. (Optional) Configure SMTP-based user management. To configure SMTP, perform the steps described in Configure SMTP Settings in Paragon Shell.

  10. (Optional) Upload custom user certificates. To configure Paragon Automation to use custom user certificates, perform the steps described in Upload User Certificates.

You can now log in to the Paragon Automation GUI by using the Web admin user ID and password.

Log in to Paragon Automation

To log in to the Paragon Automation Web GUI:

  1. Enter https://web-ui-ip-address in a Web browser to open the Paragon Automation login page.

  2. Enter the Web admin user e-mail address and password that you configured while deploying Paragon Automation.

    The New Account page appears. You are now logged into Paragon Automation. You can now create organizations, sites, and users.

Add an Organization, a Site, and Users

Add an Organization

After you log in to the Paragon Automation GUI for the first time after installation, you must create an organization. After you create the organization, you are the Super User for the organization.

Note:

You can add only one organization in this release. Adding more than one organization can lead to performance issues and constrain the disk space in the Paragon Automation cluster.

To create an organization:

  1. Click Create Organization on the New Account page that appears after you log in to Paragon Automation.
    The Create Organization page appears.
  2. Enter a name for the organization in Organization Name.
  3. Click Create.
    The organization is created. You are logged into the organization and the Troubleshooting Devices page appears.

After you create an organization, you can add sites and users to the organization.

Create a Site

A site represents the location where devices are installed. You must be a Super User to add a site.

  1. Click Inventory > Common Resources > Sites in the navigation menu.
  2. On the Sites page, click + (Add) icon.
  3. On the Create Site page, enter values for the fields Name, Location, Timezone, and Site Group.
  4. Click OK.
    The site is created and appears on the Sites page. For more information about sites, see Add Sites.

Add Users

The Super User can add users and define roles for the users.

To add a user to the organization:

  1. On the banner, click Settings Menu > Users.
    The Users page appears.
  2. Click the + (Invite User) icon.
    The New User page appears.
  3. Enter the first name, surname, e-mail ID, and specify the role of the user in the Organization.

    For the list of roles and their permissions in Paragon Automation, see Predefined User Roles Overview.

    The first name and surname can be upto 64 characters long.

  4. Click Save.

    If SMTP is configured in Paragon Automation, an invite is sent to the user through an e-mail.

    If SMTP is not configured, the New User Creation page appears displaying the system-generated password for the user. You must share the password with the user manually.

  5. Follow Steps 1 through 4 to add users with the Installer, Network Admin, and Observer roles.