Onboard Experience Insights

This topic shows you how to use the Experience Insights onboarding wizard to connect your ThousandEyes account to Experience Insights and monitor your network and application performance.

Table of Contents

• Prerequisites
• Procedure
  • Step 1: Review Prerequisites
  • Step 2: Integration
  • Step 3: Default test target
  • Step 4: Unified Collaboration Application
  • Step 5: Register Endpoint Agents
• Result of Onboarding

Prerequisites

• A Cisco ThousandEyes account with the following:
  • Organization Admin role. For more information, see Role-Based Access Control and Built-in Roles and Permissions in ThousandEyes documentation.
  • Login Account Group set to the ThousandEyes organization that is intended for integration with Secure Access. For more information, see Role-Based Access Control: Login Account Group in ThousandEyes documentation.
  • Note: The administrator who received email notification of Secure Access activation will also receive email notification of ThousandEyes activation. Follow ThousandEyes provisioning instructions within 72 hours of receiving the activation email. If the activation email is expired, visit the ThousandEyes login page and click Forgot password?
• An OAuth bearer token generated in the ThousandEyes dashboard. For instructions on generating and copying the token, see Generate OAuth Bearer Token.
• To install and run the ThousandEyes agent on your endpoints, you must meet ThousandEyes system requirements.
• Cisco Secure Client installed with the ThousandEyes endpoint agent (also known as the ThousandEyes module) on endpoints in your organization. For information about installation, see Download Cisco Secure Client. For information about installing Secure Client on multiple endpoints, see Mass Deployment Overview.
• If you plan to use RAVPN as the target for the default synthetic test, then you must first configure RAVPN in Secure Access. For instructions, see Manage Virtual Private Networks.

Procedure

1. Navigate to Experience Insights > Insights Management > Management.
2. On the Experience Insights landing page, click Connect ThousandEyes.

3. Follow the five steps of the Experience Insights onboarding wizard.

Step 1: Review Prerequisites

Review the the onboarding wizard prerequisites and click Next.

Step 2: Integration

Integrate your Experience Insights account with ThousandEyes by pasting the OAuth bearer token you copied from ThousandEyes. For instructions on generating and copying the token, see Generate OAuth Bearer Token.

Step 3: Default test target

Synthetic tests allow you to identify performance issues with user journeys to destinations. Select the target that will apply to all endpoints for the default test. Post-onboarding, you have the option of changing the target, including selecting a custom (public or private application) target.

Test target options are Zero Trust Access, RAVPN, and SWG Roaming Module.

Step 4: Unified Collaboration Application

Secure Access can report on the user experience scores of a unified collaboration application in your organization. Select the most commonly used collaboration application used in your organization: Webex, Zoom, Microsoft Teams, or None.

Note: The number and type of endpoint tests you can create in Experience Insights is based on your license. For information, see About Endpoint Agent Tests.

Step 5: Register Endpoint Agents

To use Experience Insights, you must install and register the ThousandEyes endpoint agent in Cisco Secure Client on your endpoints. The final step provides registration scripts that you need to run on the command line of your Windows or Mac endpoints.

For Secure Client installation instructions, see Get Started and Manage Client-based Zero Trust Access from Mobile Devices and Download Cisco Secure Client.

For an example of how to use an MDM to register the ThousandEyes endpoint agent, see Deploy Cisco ThousandEyes Module via Microsoft Intune.

The registration script includes a ThousandEyes connection string that is unique to your organization. Your organization's connection string is the parameter following the --register argument.

"C:\Program Files (x86)\Cisco\Cisco Secure Client\ThousandEyes Endpoint Agent\csc_te_agent" --register <connection string>

sudo /Applications/Cisco/Cisco\ Secure \Client\ -\ ThousandEyes\ Endpoint\ Agent.app/Contents/MacOS/csc_te_agent --register <connection string>

Note: Navigate to Experience Insights > Configure Account to find your organization's registration scripts at any time after onboarding is completed.

For more information, see Cisco Secure Client ThousandEyes Endpoint Agent Module.

Result of Onboarding

Once you complete the Experience Insights onboarding wizard and the registration of one or more endpoints, endpoint data reported by Secure Client will appear in your Experience Insights dashboard. Navigate to Experience Insights > Management to confirm that your endpoint is reporting data.

About Experience Insights < Onboard Experience Insights > Generate OAuth Bearer Token