We are looking to move more of our network over to Unifi. In order for standardization and saving time I would like to be able to create a network template and then duplicate that to the new site UDM and make whatever adjustments I need to the settings without having to create all new networks, routes, VLAN’s, Profiles etc.
Right now, I am trying a backup of the one that I created and then restoring it to a new system to see if I can get this to work. For those that do something like this already do you have a method that seems to work best for you?
We’ve explored this same issue with UDMs in multi-site MSP deployments. Unfortunately, Unifi sti doesn’t support true templating or multi-site config push natively across separate controllers (like you’d see in Cisco Meraki). Your current approach — creating a “golden config” and restoring from backup — is one of the more practical workarounds, though it’s far from ideal.
One thing that’s helped us: we maintain a detailed config document for our standard Unifi setups (networks, VLAN IDs, firewall rules, etc.), and use that as a manual checklist when spinning up new sites. For more complex or repeatable deployments, we’ve also been experimenting with the and automation via scripts, although this works best with a self-hosted UniFi Network Controller, not the UDM line which is more locked down.
Would definitely be interested if anyone’s found a better system — especially when dealing with multiple UDM-Pro or SE units across different clients.
2 Likes
This has been brought up to the team at UniFI and I know it’s something they want to do but don’t have a timeline to do it.
1 Like
Gary,
Thank you for the ideas. Hoping to hear from others how they do it as well. Right now, I am pretty much doing the same thing as you. We are just deploying UDM’s at each site as we found that the L3 on the switches is just to problematic and not wanting to pay that Cisco Price tag. I have created my template and am working on uploading it to other UDM’s at this point and continuing to work on my documentation as well. Right now we have not attempted anything with scripting, not sure what it would come in handy for though at this point?
Hopefully they will fast track this more. It is confusing how they keep trying to push into the Enterprise market but things like this that really make a different to Enterprise admins seems to be not of a large concern. I know they have lots to work on and to accomplish, it just seems like this would be a no brainer if trying to really compete with Cisco, Juniper and the like.