Cisco certifications have long been the benchmark for networking professionals, offering validation of technical expertise in various areas of networking and infrastructure. In 2019, at Cisco Live US, Cisco introduced major updates to its certification tracks, marking a significant shift in how network professionals will approach their certifications in the coming years. These updates touched all certification tracks, including the foundational CCNA, intermediate CCNP, and advanced CCIE tracks, signaling a redefined path for those pursuing Cisco certifications.

For candidates specifically focused on CCIE Routing & Switching (R&S), this announcement brought both a change in nomenclature and a shift in exam structure. The most noticeable change was the rebranding of the well-established CCIE Routing & Switching track to a new title: CCIE Enterprise Infrastructure. This rebranding, effective from February 24, 2020, might seem like a minor alteration at first, but it represents a broader trend in Cisco’s focus on modernizing its certification offerings to align with the evolving needs of enterprise networks. The term “Enterprise Infrastructure” more accurately reflects the direction in which Cisco is heading, encompassing not just traditional routing and switching technologies but also modern solutions like automation, software-defined networking (SDN), and cloud-based networking.

It’s important to emphasize that this rebranding doesn’t alter the fundamental technical requirements or the core skills needed for the certification; the content of the CCIE exams still focuses heavily on the same core networking concepts. The name change is essentially cosmetic, intended to keep the certifications relevant to the current technological landscape. Cisco’s move toward this rebranding signifies that future engineers will need a deeper understanding of a broader range of technologies, with an emphasis on software-defined solutions and automation.

With the introduction of the CCIE Enterprise Infrastructure track, the certification becomes a more comprehensive representation of the skills required in today’s complex, multi-layered networks. This change is particularly significant for those candidates currently preparing for the CCIE R&S exam, as it signals a move toward more integrated network solutions that go beyond traditional routing and switching.

In addition to the name change, Cisco has also overhauled its certification structure, which will impact how candidates approach the journey to earn their CCIE. One of the most critical updates involves how the CCIE qualification exams are structured concerning the CCNP exams. Previously, the CCIE Routing & Switching qualification exam (the CCIE R&S Written Exam) was a separate and distinct exam from the CCNP exams, which had their own set of core and concentration exams. As part of the new certification strategy, Cisco is merging the qualification exam for CCIE Enterprise Infrastructure with the new CCNP core exam, the 300-401 ENCOR (Implementing and Operating Cisco Enterprise Network Core Technologies) exam.

The 300-401 ENCOR exam is now required for both CCNP and CCIE candidates. This change simplifies the certification journey and creates a more streamlined pathway, as the same exam serves as a prerequisite for both certifications. For those studying for the CCIE Enterprise Infrastructure, passing the ENCOR exam will be the first step, after which candidates can choose to pursue additional concentration exams or proceed directly to the CCIE Enterprise Infrastructure Lab Exam.

This shift is part of Cisco’s broader effort to make its certification process more flexible and aligned with real-world networking environments. Candidates will no longer have to focus on the distinction between the CCIE R&S qualification and the CCNP ‘Core’ exams. Instead, they will only need to focus on mastering the content of the 300-401 ENCOR exam, which covers a broad spectrum of enterprise networking technologies.

The restructuring of the CCIE qualification process also underscores Cisco’s commitment to integrating modern networking trends into its certification tracks. With the rise of software-defined networking, automation, and cloud technologies, networking professionals need to be well-versed in these cutting-edge concepts. The ENCOR exam, therefore, lays the foundation for future network engineers to understand and implement these emerging technologies, providing them with the skills needed to thrive in contemporary enterprise network environments.

For candidates currently preparing for the CCIE R&S, these updates mean a significant shift in how they should approach their studies. While the core technical concepts of routing, switching, and network design remain central, they will now need to broaden their understanding to include newer technologies, such as SD-WAN, software-defined access (SD-Access), automation, and cloud-based networking. These are crucial skills for network professionals looking to stay competitive in an industry that is rapidly moving toward automation and cloud-driven solutions.

Ultimately, Cisco’s rebranding of the CCIE R&S to CCIE Enterprise Infrastructure is not just a change of name but a reflection of the evolving nature of enterprise networks. Cisco has recognized that the future of networking is no longer solely reliant on traditional routing and switching technologies but on a more integrated, flexible approach to network management. This is a positive step for candidates who want to be at the forefront of the industry and ensure their skills remain in demand.

As we dive deeper into the specific changes to the CCIE Enterprise Infrastructure certification, it’s essential to understand that the industry is undergoing a paradigm shift. The restructured CCIE exam will now focus on a broader range of skills, with a greater emphasis on network automation, programmability, and the ability to work with modern software-defined solutions. These changes open up a more exciting and dynamic path for candidates, one that is more closely aligned with the evolving needs of today’s enterprise networks.

The Evolution of the CCIE Lab Exam

The changes to Cisco’s certification structure are not limited to the rebranding of the CCIE R&S track to CCIE Enterprise Infrastructure; there are also significant alterations to the format and content of the CCIE Lab Exam itself. The lab exam has long been a hallmark of the CCIE certification, testing candidates’ ability to implement, troubleshoot, and optimize real-world network configurations. For candidates studying for the CCIE Enterprise Infrastructure, these changes represent a critical shift that will require a new approach to exam preparation and a deeper understanding of modern networking technologies.

One of the most notable changes to the CCIE lab exam is a shift from three modules (Design, Troubleshooting, and Implementation) to a new, streamlined format with just two modules. This change aims to better align the exam structure with the real-world tasks network professionals face in today’s enterprise environments. The new format is designed to be more efficient and better reflect the types of work candidates will do in their daily roles.

The first module of the CCIE Enterprise Infrastructure Lab Exam lasts 3 hours and focuses primarily on design. In this module, candidates are tasked with designing a network solution that meets customer requirements. This involves not only designing the network topology but also validating and optimizing the design to ensure it can scale and operate effectively in a production environment. Candidates will be expected to demonstrate their ability to assess the network readiness, consider business and technical requirements, and translate those requirements into practical solutions. The skills assessed in this module are centered around high-level design principles, network optimization, and the ability to troubleshoot and adjust designs to meet the evolving needs of a network.

In addition to creating a design, candidates will need to demonstrate their ability to analyze and validate the network’s performance, ensuring that it meets both customer and technical expectations. This part of the exam is essential because it ensures candidates have the ability to not only build networks but to think critically about how to improve and adapt them based on various requirements and challenges. It tests a candidate’s understanding of network planning, troubleshooting techniques, and their ability to assess performance metrics to ensure network optimization.

The second module of the new lab exam is significantly longer, lasting 5 hours. In this phase, candidates will have to build a network solution based on the design requirements established in the first module. This hands-on portion of the exam requires candidates to demonstrate their practical ability to implement network solutions under time constraints. The 5-hour duration of the second module reflects the complexity of the tasks involved, which require a combination of physical and virtual devices, as well as web-based elements to create a functioning network.

This module tests candidates’ proficiency in deploying and configuring the network, ensuring that the proposed design is effectively implemented. They will be required to use a variety of devices, including routers, switches, and firewalls, to build the network according to the design specifications. The exam simulates the types of tasks candidates would perform on the job, including creating configurations, ensuring network stability, and resolving any issues that may arise during the implementation phase. It requires a deep understanding of network protocols, troubleshooting techniques, and device configurations to ensure the solution works correctly.

The lab exam’s second module also tests candidates’ ability to work under pressure. In the real world, network engineers are often tasked with troubleshooting and resolving issues in high-stakes environments, where downtime or performance issues can have significant business implications. The extended length of the module ensures that candidates are prepared for these real-world challenges, testing both their technical abilities and their ability to manage time and resources effectively.

One of the key components of the revised CCIE lab exam is its greater emphasis on emerging technologies, such as software-defined networking (SDN), automation, and cloud-based solutions. Cisco recognizes that modern enterprise networks are not only about traditional routing and switching but also about integrating advanced technologies that offer increased flexibility, scalability, and efficiency. To reflect these trends, the new lab exam places a heavier focus on SD-WAN (Software-Defined Wide Area Networking) and SD-Access (Software-Defined Access), both of which are included as critical parts of the CCIE Enterprise Infrastructure certification.

SD-Access focuses on creating a more agile and automated network access layer. The new exam requirements test candidates’ understanding of designing and deploying SD-Access solutions, including underlay and overlay network components, such as VXLAN, LISP, and Cisco TrustSec. Candidates will also be tested on their ability to implement network segmentation at both macro and micro levels, ensuring that the network is secure and flexible enough to support modern workloads. The inclusion of SD-Access ensures that candidates are well-prepared to design and deploy network access solutions that are vital for businesses that require greater flexibility and scalability in their networks.

SD-WAN, on the other hand, is a solution that focuses on managing and optimizing wide-area networks, particularly in the context of cloud computing and distributed networks. As businesses move more applications and services to the cloud, the need for an efficient, secure, and reliable WAN becomes even more important. The CCIE Enterprise Infrastructure lab exam now includes SD-WAN as a central technology that candidates must master. This involves designing, configuring, and managing SD-WAN solutions that improve application performance, enhance security, and optimize network performance across geographically dispersed locations. Candidates will be tested on their knowledge of SD-WAN components such as orchestration (vBond), control plane (vSmart), and data plane (vEdge/cEdge), as well as their ability to configure WAN edge routers and implement centralized and localized policies.

The inclusion of SD-WAN and SD-Access technologies in the lab exam is a clear signal that Cisco is aligning its certifications with the evolving needs of the industry. As SDN technologies become more prevalent in enterprise networks, network engineers need to gain proficiency in these solutions to remain competitive and relevant in the field. These technologies not only streamline network management but also offer improved performance, security, and scalability, all of which are vital in today’s enterprise environments.

Furthermore, these changes reflect the broader trend toward automation and programmability in networking. The new exam format places a greater emphasis on automation tools, such as scripting and the use of APIs to automate network management tasks. Candidates will need to demonstrate their ability to interact with Cisco’s APIs (e.g., Cisco DNA Center API, vManage API, and IOS XE API) to configure and monitor network devices. This shift towards automation is driven by the increasing complexity of modern networks, where manual configuration and troubleshooting processes are no longer sustainable. Instead, automation is becoming an integral part of network management, and network engineers must possess the skills to work with automation tools and APIs to streamline operations and ensure efficient network performance.

In summary, the changes to the CCIE lab exam are designed to reflect the rapidly changing landscape of enterprise networking. With a greater emphasis on software-defined solutions, automation, and cloud-based technologies, the new exam format ensures that candidates are equipped with the skills and knowledge necessary to design, implement, and manage modern networks. As the industry continues to evolve, so too must the certification process, ensuring that network professionals are prepared for the challenges and opportunities of the future. The new CCIE Enterprise Infrastructure lab exam will test candidates on both theoretical and practical skills, ensuring that they are ready to tackle the most complex and demanding network environments.

The Emergence of Software-Defined Networking

In recent years, software-defined networking (SDN) has revolutionized the way networks are designed, deployed, and managed. Cisco, one of the leading companies in the networking space, has fully embraced SDN technologies, and the incorporation of these solutions into the CCIE Enterprise Infrastructure certification reflects the growing importance of SDN in the modern networking landscape. The updated CCIE lab exam includes several critical SDN solutions, particularly Cisco SD-WAN (Software-Defined Wide Area Network) and Cisco SD-Access (Software-Defined Access), both of which are now core components of the certification. Understanding these technologies and their implementation is crucial for candidates preparing for the exam.

Cisco SD-Access is a software-defined approach to managing network access, enabling businesses to better manage user and device access, improve security, and simplify network management. In the past, network access was often managed with static configurations and complex physical infrastructures. However, SD-Access allows for a more dynamic and automated network access model, which is especially important in environments where business requirements change rapidly. The integration of SD-Access into the CCIE exam underscores Cisco’s focus on ensuring that network engineers can design and deploy these modern, flexible access solutions.

The SD-Access design process starts with the creation of an underlay network, which serves as the foundational layer of the SD-Access fabric. Cisco uses technologies like ISIS (Intermediate System to Intermediate System) to implement underlay networks, ensuring efficient routing and device communication. In SD-Access, the underlay network forms the backbone for the overlay fabric, which uses technologies such as VXLAN (Virtual Extensible LAN) and LISP (Locator/ID Separation Protocol) to create a flexible, scalable network that can adapt to the needs of the organization.

Overlay networks are crucial because they allow for the segmentation of traffic, which is key to providing secure and efficient access for different user groups or devices. In SD-Access, segmentation is achieved at both the macro and micro levels. Macro-level segmentation involves using Virtual Networks (VNs) to create isolated network segments, while micro-level segmentation is achieved using Security Group Tags (SGTs), with Cisco Identity Services Engine (ISE) managing user access policies. This layered approach ensures that different parts of the network are securely isolated from each other, providing both security and flexibility.

Cisco SD-Access also includes robust monitoring and troubleshooting capabilities. By leveraging Cisco’s DNA Center platform, network administrators can gain visibility into network health and performance, making it easier to detect and address issues before they impact users. The inclusion of SD-Access in the CCIE lab exam tests candidates’ ability to design, deploy, and manage a fully automated and secure network access solution that meets modern business demands.

Cisco SD-WAN, another key technology in the updated CCIE Enterprise Infrastructure exam, is a transformative solution that redefines how enterprises manage their wide-area networks. Traditionally, WANs have been reliant on complex hardware configurations and MPLS circuits to ensure network connectivity between distant locations. Cisco SD-WAN, however, leverages software-based solutions to make WAN management more agile, secure, and cost-effective. With the rapid adoption of cloud-based applications, organizations require networks that can seamlessly integrate with cloud services, support real-time application traffic, and provide robust security. SD-WAN addresses these needs by offering a centralized, automated solution for managing WAN traffic across multiple locations.

In the context of the CCIE lab exam, candidates will need to demonstrate their ability to design and deploy Cisco SD-WAN solutions. A key element of SD-WAN is its ability to work with various planes, each serving a specific purpose in the network’s operation. These include:

• Orchestration Plane: This includes the vBond component, which handles device authentication and secure communication between SD-WAN devices, ensuring that the SD-WAN network is both secure and reliable.
  
• Management Plane: This includes the vManage component, which is used for monitoring and managing the SD-WAN network, applying policies, and configuring devices. vManage enables centralized configuration and monitoring of the SD-WAN network, streamlining WAN management across multiple locations.
  
• Control Plane: The vSmart component handles the distribution of routing information and ensures that the SD-WAN devices can communicate with each other efficiently, helping to determine the best paths for network traffic.
  
• Data Plane: The vEdge or cEdge devices are responsible for forwarding network traffic across the SD-WAN infrastructure. These devices use software to optimize traffic paths and improve network performance, especially for cloud applications.
  

The CCIE lab exam will test candidates on their ability to design and configure these components, ensuring that they can deploy a fully functional SD-WAN solution that optimizes WAN traffic, improves security, and reduces costs. Candidates will need to understand key features such as zero-touch provisioning (ZTP), which simplifies the onboarding of new SD-WAN devices, and the application-aware routing capabilities that ensure high-priority traffic, such as VoIP or video, is handled optimally across the network.

The integration of SD-WAN into the CCIE lab exam reflects Cisco’s recognition of the growing importance of cloud services and the need for flexible, secure, and efficient WAN solutions. As more businesses migrate to the cloud and rely on SaaS (Software as a Service) applications, SD-WAN has become a critical technology for ensuring that enterprise networks can meet the demands of modern business. For candidates, mastering SD-WAN and understanding how to integrate it with traditional network technologies will be essential for success in the exam and in the field.

The inclusion of Cisco SD-Access and Cisco SD-WAN in the updated CCIE Enterprise Infrastructure certification highlights Cisco’s strategic direction toward software-defined networking solutions. As networks become more complex and businesses increasingly rely on cloud-based applications, the need for flexible, scalable, and automated networking solutions has never been greater. By adding these SDN technologies to the CCIE lab exam, Cisco ensures that candidates are equipped with the knowledge and skills necessary to design, deploy, and manage modern enterprise networks.

For candidates studying for the CCIE Enterprise Infrastructure certification, the shift toward SDN technologies means that their preparation must now include a deep understanding of software-defined access and wide-area networking. These technologies represent the future of networking, and mastering them will be essential for anyone looking to succeed in the rapidly evolving networking landscape. The updated exam content reflects the industry’s focus on automation, security, and cloud integration, ensuring that the next generation of network engineers is ready to tackle the challenges and opportunities of the digital age.

Infrastructure Automation and Programmability

One of the most transformative changes in the world of networking over the past decade has been the shift toward automation and programmability. As network infrastructures grow in complexity and scale, managing them manually has become increasingly impractical. Automation allows network administrators to streamline repetitive tasks, reduce the risk of human error, and optimize network performance in real-time. With the growing demand for agile, scalable networks, automation and programmability are now fundamental components of modern networking, making them essential for candidates pursuing the CCIE Enterprise Infrastructure certification.

Cisco’s approach to automation and programmability is closely tied to the use of software-defined technologies and network programmability tools. In the new CCIE Enterprise Infrastructure exam, candidates must demonstrate their understanding of how to automate network operations, interact with network devices via APIs, and use scripting languages like Python to facilitate network management tasks. This shift reflects Cisco’s vision of a more automated and integrated networking environment, where network engineers rely less on manual configurations and more on programmable solutions to manage and scale networks efficiently.

Network Automation: A New Paradigm

The integration of automation into networking allows administrators to configure devices, troubleshoot issues, monitor network health, and optimize performance with minimal manual intervention. For candidates pursuing the CCIE Enterprise Infrastructure, it is essential to understand not only the basic principles of automation but also how to implement and configure automation tools to enhance network operations.

At the heart of network automation in the updated CCIE exam is the ability to use tools like Python, EEM (Embedded Event Manager) applets, and Cisco’s guest shell to automate a variety of tasks. Python has become one of the most widely used languages for network automation due to its simplicity, flexibility, and wide range of libraries that interact with network devices. By mastering Python, candidates can automate tasks like configuring devices, checking network health, and troubleshooting issues, all of which are essential skills for modern network engineers.

One of the most important tools in network automation is EEM applets, which run directly on Cisco devices. EEM applets allow network engineers to automate tasks such as capturing and responding to events, configuring devices based on specific triggers, and running diagnostic tests. The ability to use EEM applets effectively is a crucial skill for candidates studying for the CCIE Enterprise Infrastructure exam, as it enables them to implement automation on individual devices without requiring external servers or systems.

Additionally, Cisco’s guest shell, a Linux-based environment that runs on Cisco devices, allows engineers to run scripts, access APIs, and execute commands to automate and manage network operations. This is particularly useful for performing automation tasks that require external tools or scripting environments. The ability to use the guest shell effectively provides candidates with the flexibility to write custom scripts and integrate them with Cisco’s networking platforms to perform network operations automatically.

Interaction with APIs

The rise of network programmability has brought about a new era of managing networks through APIs (Application Programming Interfaces). APIs allow different applications and network devices to communicate with one another, facilitating the automation of tasks and enabling engineers to interact with network devices programmatically. The ability to interact with network devices via APIs is a key component of the CCIE Enterprise Infrastructure exam and will play an essential role in candidates’ success.

The exam will require candidates to demonstrate their ability to interact with Cisco’s DNA Center API, vManage API, and IOS XE API. These APIs provide various functions, from monitoring network health to configuring devices, and candidates will need to show proficiency in using Python libraries like the Requests library or tools like Postman to interact with these APIs. For instance, candidates might need to use Python to retrieve configuration information from a device, monitor device health, or make bulk configuration changes across multiple devices. Understanding how to send HTTP requests (GET, PUT, POST) via these APIs is crucial for automating network tasks and integrating network devices into larger, more complex workflows.

The DNA Center API, in particular, is used for managing Cisco’s Software-Defined Access (SD-Access) solutions and provides a centralized platform for automating network configurations and policies. By interacting with the DNA Center API, network engineers can automate tasks such as device provisioning, policy enforcement, and network segmentation. Understanding how to use the API for these tasks is essential for candidates looking to excel in the CCIE Enterprise Infrastructure exam, especially since SD-Access is now a critical part of the certification.

Similarly, the vManage API is used for automating tasks within Cisco’s SD-WAN solution. Candidates will need to demonstrate how to interact with the vManage API to automate WAN edge configurations, monitor traffic, and manage centralized policies. Given the increasing adoption of SD-WAN in enterprise networks, mastering the vManage API and integrating it into automation workflows is vital for ensuring that WANs are both efficient and secure.

Finally, IOS XE API provides the tools necessary for interacting with Cisco’s flagship operating system for routing and switching devices. Candidates must demonstrate their ability to use the IOS XE API to configure, monitor, and troubleshoot devices running IOS XE. With the increasing complexity of modern networks, the ability to interact with these APIs efficiently will allow network engineers to perform tasks more quickly and with greater accuracy.

Model-Driven Telemetry and Real-Time Monitoring

Another key area of focus in the CCIE Enterprise Infrastructure exam is model-driven telemetry, a technology that allows network devices to send real-time data to monitoring systems for analysis. With model-driven telemetry, network engineers can track network health, performance, and security metrics continuously, enabling them to respond to issues as soon as they arise.

In the exam, candidates will need to demonstrate their ability to configure and verify telemetry systems, using protocols like gRPC (gRPC Remote Procedure Call) to manage telemetry subscriptions. gRPC is a high-performance, open-source protocol that allows devices to send data efficiently and in real-time. Understanding how to configure on-change subscriptions using gRPC is critical for ensuring that network administrators are alerted immediately when an issue occurs, whether it’s related to performance, security, or device status.

The ability to implement and verify telemetry systems that provide real-time insights into network performance is essential for modern network management. As businesses rely more on data-driven decision-making, the ability to monitor networks in real-time and adjust configurations based on telemetry data becomes increasingly important.

The inclusion of automation, programmability, and telemetry into the CCIE Enterprise Infrastructure exam reflects the growing demand for network engineers who can not only design and configure complex networks but also automate and optimize them for efficiency, scalability, and performance. As networks continue to evolve and become more complex, automation tools and programmability have become critical for managing them effectively.

Candidates preparing for the CCIE Enterprise Infrastructure certification must develop a deep understanding of these concepts and learn how to apply them in real-world scenarios. By mastering network automation tools, API interactions, and telemetry configurations, candidates will be well-equipped to meet the challenges of modern networking environments. These skills not only ensure success in the CCIE exam but also prepare network engineers to lead the way in an industry that is rapidly moving toward automation, cloud integration, and software-defined networking.

Final Thoughts

The updates to the CCIE Enterprise Infrastructure certification reflect the dynamic and evolving nature of modern networking. Cisco’s embrace of software-defined technologies, network automation, and programmability has redefined what it means to be a network professional in today’s fast-paced, cloud-driven world. For candidates currently pursuing or planning to pursue the CCIE, these changes signal a shift towards a more integrated, agile, and automated approach to network management.

The rebranding from CCIE Routing & Switching to CCIE Enterprise Infrastructure is not just a cosmetic change but a reflection of Cisco’s forward-thinking strategy. As enterprise networks become more complex, there is a growing demand for professionals who can design, implement, and manage networks that are flexible, scalable, and capable of supporting cloud-based services, SD-WAN, and SD-Access technologies. The addition of these technologies into the exam blueprint ensures that candidates are well-prepared for the future of networking.

Automation and programmability are at the heart of these changes. The ability to automate network configurations, monitor real-time performance, and manage large-scale networks with minimal manual intervention is critical for staying competitive in an increasingly complex networking landscape. Whether it’s interacting with APIs to automate tasks or using telemetry to ensure network health, these skills will be invaluable for any network engineer. Candidates must be ready to embrace these tools and technologies, as they represent the future of network management.

Moreover, the shift toward SD-WAN and SD-Access as core elements of the CCIE Enterprise Infrastructure exam shows Cisco’s commitment to preparing professionals for the increasingly important role that SDN plays in the enterprise network environment. These technologies are not only fundamental to improving network performance and security but also central to achieving the kind of agility and scalability needed to support modern business needs.

Ultimately, the CCIE Enterprise Infrastructure certification is evolving to meet the challenges of a new generation of networks, where cloud, automation, and software-defined solutions are becoming the norm. For those preparing for the certification, the path forward may seem daunting, but it is also an exciting opportunity to gain expertise in some of the most cutting-edge technologies in the networking world.

Candidates who successfully navigate these updates will not only earn one of the most respected certifications in the industry but will also position themselves at the forefront of the networking revolution. The skills learned during this journey will open doors to exciting career opportunities, as businesses increasingly seek professionals who can manage and optimize complex, dynamic networks.

In conclusion, the future of networking is evolving, and the CCIE Enterprise Infrastructure certification is the gateway to mastering this future. By staying informed, adapting study strategies, and embracing the new technologies incorporated into the exam, candidates will be prepared to thrive in this exciting and rapidly changing field.