Security Level:

WEU Cloudcampus SaaS

2

WEU Cloudcampus SaaS Introduction

Main Function

Target Market

Demo

3

WEU Cloudcampus SaaS Introduction - Based at Pairs

Partner Cloud Platform99.99%

Distributed System Architecture High Reliability Flexible Capacity Expansion New Feature Keep Updating

Huawei Professional Team 7x24x365 R&D Internal Support Dedicate Team

One-stop Management Center, Policy Center, and AI Analysis Platform

4

WEU Cloudcampus SaaS Introduction

Huawei

CloudCampus

Huawei Host

MSP B MSP…MSP A

MSP

• Self-owned brand

• Self-pricing

Enterprise

Cloud Management Service

CloudCampus, SD-WAN …

• Simplified Deployment &

Management

• Managed Service by MSP

• Intelligent Network O&M

Enterprise A Enterprise B Enterprise …

• Build & Run the Cloud

• Sell Devices and Management

license to MSP

Use

Initial investment： Zero

5

WEU Cloudcampus SaaS Introduction

System

administrator

MSP

administrator

Tenant

administrator

Platform setup Account creationDevice and

license purchaseDeployment

O&M

management

• Purchase infrastructure

facilities.

• Deploy the Agile

Controller-Campus.

• Troubleshoot faults of

the platform.

• Create an MSP

account.

• Create a tenant

account.*

• Register a tenant

account.

• Purchase devices

and licenses.

• Purchase devices

and licenses.

• Deploy the tenant

network.

• Deploy the

network.

• Maintain the

tenant network.

• Maintain the

network.

Tenant Based Management by MSP

6

S6720-LI/S6720-SI/S6720-EI/

S6720-HI 10GE switches

S5720-LI/S5720-

SI/S5720-EI/

S5720-HI GE switches

AP with smart antennas

AP7052DE

Indoor AP Outdoor AP

Dual-5G outdoor AP

AP8082DN

Switch:

195 models

WLAN

AP & AC:

71 models

AR:

20 models

AR129CGVW-L/

AR129CVW

(outside China)

AR109

(outside China)

AR1220E AR2220EAR2204-27GE-P

AR101-S/

AR101W-S

(China)

AR161/AR161W

AR161EW

(outside China)

Firewall:

68 models

AC6003, AC6005,

AC6605, etc.

ACU2

USG6300 desktop

series

USG6300 box-

shaped series USG6600 seriesUSG6500 series

(only for the

Chinese market)

• S6720-HI: The industry's first campus fixed

switch with 100G uplink ports

• S6720-SI: The industry's first commercial

multi-gigabit access switch

• AP7052DE: Indoor high-density Wi-Fi, built-in

smart antennas, and on-demand coverage

• AP8x82DN: The industry's highest-density AP,

improving the user concurrency rate by 30%

• Distributed Wi-Fi: Innovative distributed Wi-Fi

solution, achieving comprehensive indoor

coverage without holes

• USG6300 series: Cost-effective egress security

gateways for SMBs, integrating multiple security

services

• USG6600 series: Recommended by NSS Labs,

with a live network threat detection rate of 99.95%

• AR129CGVW-L: Built-in LTE+VDSL2+802.11ac dual-

band, access of up to 64 users

• AR161EW: 802.11ac Wave 2, gigabit wireless access

• AR1220E: Two uplink optical ports, with performance

two times higher than that of competitors' equivalent

products

• AR2204-27GE-P: 24*GE high-density Ethernet,

support for PoE

Switch AP Firewall AR

Cloud management

platform

Huawei device

registration query center

Software-defined flexible switching,

smooth evolution

Cloud

management

mode Traditional

management mode

WEU Cloudcampus SaaS Introduction

7

Design based on experience： Blind spot，Half day Huawei online Wlanplanner：100% coverage，more efficient

Notes：one mid-size retail store for example

1.Layout

4 steps for position planning，3.2hours in total：

2.Obstacle

setting

3.Design

locally

4.Report

Layout checking or

drawing manually

Set the obstacle

manually

On the Laptop, only

the specific one

Integrate design

result with template

and generate report

4 steps for position planning，0.5hours in total ：

0.5h

1.5h

1h

0.2h

Output ：WIFI coverage is not assured，there might

be blind spot or internal interference。

1.Layout Transport Layout

remotely

2.CAD Import CAD directly

3.Design

on CLoud

Anytime anywhere

and anyone on cloud;

both indoor and

outdoor

4.Report Export report

automatically

1min

2min

25min

2min

Output：Rich expert experience inside，100% coverage，more

stable and efficient。

Offline

wlanplanner

在线云网规

Main Function: WLAN Planner

8

Barcode scanning using an app

locally

Deployment by scanning

barcode

Automatic remote configuration

DHCP-based deployment

Automatic remote configuration

Registration query center

Applicable to scenarios with APs

only

Applicable to scenarios where

DHCP is enabled

Applicable to regions where a

registration query center is available

Configuration

method

Deployment

mode

Application

scenario

Agile Controller-

Campus

Registration

query center

(unique)

Firewall

AR

LSW

AP

Agile Controller-

Campus

Firewall

AR

LSW

AP

Enable DHCPAgile Controller-

Campus

AP

Main Function: ZTP

9

User

management

Authentication

configuration

Authentication

server

Agile Controller-

Campus

Third-party

authentication server

Portal

management

WeChat Facebook

802.1X Portal(Portal/MAC) MAC

Authentication

device

HTTP 2.0

authentication

NETCONF

configuration

Multiple authentication

methodsPortal authentication (including SMS and social

media)

MAC address authentication

802.1X authentication (requiring external RADIUS

server)

Applicable Internet

transmission protocolsTransmits authentication data using the HTTP2.0

protocol.

Transmits configuration data using the NETCONF

protocol.

Open authentication

solutionsInterconnects with a third-party authentication server.

Interconnects with social media platforms, such as

WeChat and Facebook.AP AR Switch Firewall

Multiple Authentication Methods, Adapting to Various Internet Access Scenarios

Social media

authentication

Main Function: Policy Control

10

Intelligent O&M, Improving User and Service Experience Based on Prediction and AI

Autonomy and self-healingExperience visibilityFault identification and root

cause analysis

1. Automated fault identification: Dynamically

optimizes the baseline based on historical

and real-time data, and proactively discovers

problems, such as weak coverage and

roaming difficulties, at an accuracy rate of

85%.

2. Identification of potential problems: Makes

the most of accrued expert experiences and

multiple AI algorithms to proactively predict

issues such as capacity bottlenecks.

1. Terminal experience optimization: Performs

optimization based on user experience,

increasing the user satisfaction rate.

2. Automated network optimization by

CampusInsight: Automatically generates

optimization policies, and interacts and

collaborates with the Agile Controller for

network optimization; constantly strengthens

learning based on the live network to build a

more user-friendly network.

1. Every moment: Dynamically captures fault

data in seconds using the telemetry

technology.

2. Every user: Records user behavior and

conducts user profiling.

3. Every application: Senses application

status and transitions from network KPIs to

application KQIs.

Main Function: CampusInsight

11

Guided GUI configuration

For LAN & WAN

EVPN EVPN

Hub

Spoke

Spoke

Spoke

Spoke

Spoke

Spoke

Hub

Hub-Spoke Full-Mesh

WAN service highlight 1:

The controller automatically orchestrates VPN tunnels based on EVPN

Hub

Spoke Spoke

MPLS Internet

• Establish tunnels on demand between sites

based on EVPN and dynamically advertise

routes.

• The EVPN solution offers application- and

policy-based intelligent traffic steering,

allowing traffic to be transmitted over links

with higher quality based on applications and

policies.

WAN service highlight 2:

Hub-Spoke and Full-Mesh can be flexibly selected as required.

WAN service

LAN service

LAN-WAN interconnection

More

Intelligent traffic steering, traffic QoS…

Achieves LAN-WAN interconnection and interoperability by configuring

interfaces and routes between the core and egress gateways.

Delivers wired and wireless user authentication, based on the core,

aggregation, access, and other parameters.

Delivers VPN tunnels for site interconnection, based on the egress gateway.

Main Function: SD-WAN

12

Supermarket, cafe, or school (< 30 APs, < 500 persons) Hotel (< 500 persons)

Customer requirements:

• High network reliability

• A large number of wireless terminals and a small number of dumb

terminals

Deployment solution:

• WAN: firewall as the PPPoE client, configured with a static IP address

and dial-up function

• LAN: firewall enabled with DHCP and NAT, implementing plug-and-play

for the switch/AP

• Identity authentication: firewall and AP as the authentication points

Customer requirements:

• Optimal Wi-Fi experience, zero coverage holes, and high cost-

effectiveness

• Private line for egress or existing device in the upper layer

Recommended model:

• Firewall: USG6380, USG6390, and USG6390E

• Central AP: AD9430DN-24

• RU: R250D

Deployment solution:

• WAN: firewall as the PPPoE client, configured with a static IP address and

dial-up function

• LAN: firewall enabled with DHCP and NAT, implementing plug-and-play

for the switch/AP

• Identity authentication: firewall and AP as the authentication points

Internet

Agile

Controller-

Campus

APSwitchFirewall

Internet

Agile

Controller

-Campus

RUCentral APFirewall

Target Market

RU

13

Demo: Network Structure

Cloudcampus Operation Platform

Mobile Data Card Internet service

Wi-Fi 6 Access PointAP7060DN

Cloudcampus

Registration Query Centre

DNS

14

Demo: ZTP

Deployment of a Small Shop W/O Engineer On Site

Design Pre - Configuration Filed Deployment

Thank You

Huawei Confidential16

Registration Procedure Introduction

Cloudcampus

Registration Query Centre

DNS

12

45 3

1: Set AP Information

2: Share information with Registration

Query Centre

3: AP Get Registration Query Centre IP

by DNS Query

4: AP Get Cloudcampus IP by Query

Centre Query

5: Registration with Cloudcampus