Skip to main content

 

Cisco Meraki Documentation

Endpoint Agent Monitoring with ThousandEyes Configuration Guide

  1. Last updated
  2. Save as PDF

This feature requires the customer to have a ThousandEyes Endpoint Agent license.

Endpoint Agent Monitoring is currently in early access public preview. It can be enabled on Early Access page  (Organization > Early Access). 

Overview 

ThousandEyes is a platform that provides detailed visibility into customers' applications and WAN infrastructure. It uses active monitoring with protocols such as ICMP and HTTPS queries to track application and WAN performance. For more information about ThousandEyes and its features, refer to the ThousandEyes Documentation.

This integration allows Meraki administrator to configure tests and monitor user experience to private and public resources for endpoint users with active ThousandEyes agents. These users can be on-prem or Remote Access users.

Meraki also offers ThousandEyes integration with MX platforms. These two solutions together provide full end to end visibility for Meraki SASE solution, for branch and hybrid workforce.

For more details regarding MX integration refer to Meraki MX ThousandEyes Configuration Guide.

Solution Requirements 

  • Existing ThousandEyes Endpoint Agent license.
  • Connectivity to the ThousandEyes Platform cloud infrastructure. For a full list of required ports and subnets please refer to the Firewall Configuration for Enterprise Agents document in ThousandEyes documentation.
Meraki and ThousandEyes Accounts 
  • Meraki Dashboard account:
    • At least two Full-Org admins are needed in the Meraki Dashboard.
    • SSO/SAML is not supported for account linkage or agent onboarding.
  • ThousandEyes account:
    • At least the Account Admin role privilege.

The ThousandEyes Integration is currently supported in the following regions:

  • North America
  • Europe, Middle East and Africa
  • Asia Pacific and Japan

Your Meraki Dashboard Account and ThousandEyes Accounts must belong to the same region. 

Enable ThousandEyes on Meraki Dashboard 

Navigate to Organization Tab in Meraki Dashboard and select Monitor > Agents. If this is the first time you are connecting Meraki Dashboard to ThousandEyes click onto Connect ThousandEyes and follow the steps in a new frame to login into ThousandEyes account.

If Meraki organization is already authenticated with ThousandEyes,  there will be a window with instructions how to register endpoint agents to the correct account. 

This image is displayed to show how to connect the Meraki Dashboard to ThousandEyes by navigating to the Organization tab and selecting Monitor, Agents.

If the admin has multiple assigned account groups, the system lists all of them. Select the group to connect to.

This image is displayed to show the list of account groups assigned to the admin and prompt the user to select the group to connect to.

After successful authentication you will be returned to main Meraki Dashboard window with instruction how to register endpoint agents to the right account using provided ThousandEyes Connection String. 

Connection String will be displayed on Meraki Dashboard only during the ThousandEyes integration. Please save it securely for later end point registration. If not saved, you can always retrieve it directly from ThousandEyes account.

This window appears if you have already authenticated the Meraki organization with ThousandEyes.

This image is displayed because the Meraki organization has already been authenticated with ThousandEyes.

Register Endpoint Agents

Follow the Install the Endpoint Agent ThousandEyes Documentation to register Endpoint Agents to the correct account using ThousandEyes Connection String saved during Meraki ThousandEyes integration.

Once the Endpoint Agents are successful registered navigate to Organization >  Agents  to see the full list of endpoint machines including captured information about each.

This image is displayed to show how to register Endpoint Agents using the ThousandEyes Connection String and where to view the list of registered endpoint machines.

Endpoint Details View

  1. Navigate to Organization > Agents.
  2. Click any Endpoint agent to view detailed information:

  • Endpoint details: system information related to the machine the end point agent is installed on.

  • Connectivity with Secure Connect: Default test created for every registered end point.

  • Monitored applications: All scheduled testes created on the end point.

This image is displayed to show the detailed view of an Endpoint Agent, including system information, connectivity tests, and monitored applications.

This image is displayed to show the detailed view of an Endpoint Agent, including system information, connectivity tests, and monitored applications.

Default Endpoint Test

By default all registered endpoints will have default test named  Secure Connect Remote Access configured. This test is ment to measure health of endpoint ability to reach Secure Connect headend, closest data center. 

For the end point connected at the branch, default test may be irrelevant as user is not connecting using VPN tunnel to the Secure Connect Cloud head end.

Navigate to Organization > Endpoint Agents > Test  to see status of the default test.

This image is displayed to show where to view the status of the default test under Organization, Endpoint Agents, Test.

This image is displayed to show where to view the status of the default test under Organization > Endpoint Agents > Test.

Create Endpoint Test

There are two locations to create a new test, while the flow is the same:

  • Directly from Endpoint page: Navigate to Organization >  Endpoint Agents > Agents > Select Endpoint > + Create test
  • Under Endpoint tests page: Navigate to Organization > Endpoint Agents > Test >  + Create test

Create Scheduled Test window will open. 

This image is displayed to show the two locations where you can create a new test for Endpoint Agents in the dashboard.

Select Endpoint Agents from which the test will run. You can choose from a list of registered endpoint agents or select All endpoint agents. 

This image is displayed to show how to select specific or all registered Endpoint Agents to run a test.

Select target window gives you an option to configure test for:

  • Select defined target:  List of predefined Private Resources under Secure Connect > Resources and Applications
  • Specify custom target: Public or SaaS application defined by IP address, domain name or FQDN

Select defined target

Select from the list of defined Private Resources.

This image is displayed to show how to select from the list of defined Private Resources.

By default when selecting defined target, only the first 6 private resources will be listed. It is recommended to search private resource by name instead.

If private resource is defined with more then one network address, the first network address will be used. If we wish to configure test for each defined network address, septate test must be configured for each.

Select custom target

Custom target can be configured using

  • IP address: <IP address>:<port number>. If port number is not selected it will use protocol tcp port 80 by default.
  • URL: Should be used for HTTP Server test or Both. Enter: <http|https>://<domain>:<port number> 

This image is displayed to show how to configure a custom target using an IP address with a port number or a URL for testing.

Test Type

After source and destination for the test are selected, choose what type of test to run:

  • Network test: Measure network performance between agent and target device
  • HTTP server test: Measure availability, response time, throughput of a web server
  • Both: Run both network test and HTTP server test

This image is displayed to show the options for selecting the type of test to run after choosing the source and destination.

Additional Configuration

For detail about each parameter refer to Endpoint Agent Test Settings for more information.

This image is displayed to show the basic configuration options for setting up a test.

It is recommended to leave default options for Advanced configurations.

This image is displayed to show the recommended default options for Advanced configurations.

View Endpoint Tests

Navigate to Organization > Endpoint Agents > Tests to view all configured endpoint tests.

This image is displayed to show where to view all configured endpoint tests under Organization, Endpoint Agents, Tests.

Endpoint Test View Actions

For each test following actions are allowed:

  • Edit Test

  • Disable Test

  • Delete Test

At this time "Edit Test" is very limited and it may require for the test to be deleted and recreated with new parameters.

Navigate to Organization > Endpoint Agents > Tests and click ... at the end of the test to open Action Window.

This image is displayed to show how to open the Action Window for a test by clicking the ... at the end of the test under Organization, Endpoint Agents, Tests.

 

Viewing Test Details

Endpoint View per Test

Navigate to Organization > Endpoint Agents > Agents. Select Endpoint Agent and navigate to Monitored Applications section. Select the test to view.

This image is displayed to show how to view test details for a specific Endpoint Agent in the Monitored Applications section.

This image is displayed to show how to view test details for a specific Endpoint Agent in the Monitored Applications section.

Test Details View 

Navigate to Organization > Endpoint Agents >  Tests and select a test to view.

 

This image is displayed to show how to view the details of a specific test under Organization, Endpoint Agents, Tests.

  1. Back to top
  • Was this article helpful?

Recommended articles

  1. Article type
    Topic
    Stage
    Draft
  2. Tags
    This page has no tags.