5508 WLC reset intermittently
I have a controller 5508 which resets intermittently, I updated to 8 of our other 7.6.130.0 to 8.0.133.0 without problem. Has anyone else had similar problems? If Yes, what is the reference as appropriate. Output below SysInfo & WLC Log:
(Cisco Controller) > show sysinfo
Name of the manufacturer... Cisco Systems Inc..
Product name... Cisco controller
Version of the product... 8.0.133.0
Bootloader Version... 1.0.20
Retrieving Image Version field... 7.6.101.1
Firmware version... FPGA 1.7, 1.8 Env, USB 2.2 console
Build Type....................................... DATA + WPS
Name of the system... ABM-GLAN-LS-WLC1
Location of the system... Glanrhyd LS Hub 1
Contact System...
ObjectID of system... 1.3.6.1.4.1.9.1.1069
Redundancy mode... SSO
IP Address....................................... 10.*. *. *
IPv6 address...:
Last Reset....................................... Software reset
Time system... 0 days 19 hours 1 minutes 0 seconds
Location of the time zone of the system...
System Stats in real time interval... 5
System Stats Normal range... 180
The country is set... GB - United Kingdom
-Other - or ITU (q)
Operating environment... Utilities (0 to 40 ° C)
Limits the internal temperature alarm... 0 to 65 ° C
... Internal temperature + 34 C
Outdoor temperature... + 19 C
Fan Status....................................... Ok
State of 802. 11 b network... Activated
State of 802. 11A network... Activated
Number of wireless LANs... 8
Number of Active Clients... 39
Built-in MAC address... 7 C: 0E:CE:49:C4:C0
Power supply 1... Currently, OK
Power supply 2... Absent
Maximum number of taken access points supported... 500
Nas - Id system...
Types of certificate MIC WLC... SHA1/SHA2
Before the WLC crash even once, kindly would coredump 'config coredump enable '.
How about "sh stat of memory"?
And get ready to upgrade to 8.0.140.0. Release notes can be found HERE.
Tags: Cisco Wireless
Similar Questions
-
Recover the forgotten password already created WLAN in 5508 WLC
Hello
Is it possible that we can retrieve the forgotten password already created WLAN in 5508 WLC. I do not want to reset the password want to only see the existing password. Image is attached as a reference.
Kind regards
Muhammad Noman
Hi Muhammad,
I don't think that it is possible that the key is encrypted in the configuration files as well.
See you soon,.
Ric
-
iPhone/iPad connectivity problem with of 5508 WLC
Hello
We are implementing a new Cisco 5508 WLC and C3602I LWAP corporate wireless network. Us are not running no matter what RADIUS or EAP for now and start with WPA2 / AES with a pre-shared to start flying.
The question that we are conducting is based iOS devices (iPhone/iPad) don't seem to want to connect. We just get one couldn't enter wireless messages. We had success with several portable Windows-based, my MacBook connects, as well as several different Android devices.
Looking at the logs on the WLC I see those entries that correspond to the MAC address of my iPhone.
* apfMsConnTask_6: 17:25:20.620 Jul 17: % CSA-3-CHECK_SUPP_RATES_FAILED: apf_utils.c:376 could not check support rate. Lack of support rate. Length: 0 mobile MAC: 24:ab:81:92:4 d: 97.
Does anyone has any ideas or have encountered this problem before?
Any help would be greatly appreciated.
Thank you!
Andrew
What is happening with several iDevices? Can you try to restart one of these iDevices, because there seems to be a problem with the unit and not the wireless.
-
Problem with NAC and 5508 WLC OOB
I have a wlc 5508 to shared resources to a 6500 switch. Shared resources to the switch on eth0 and eth1 is also the CASE. The CAM is connected to an access port.
The SCS and CAM are on VLANS separated and the CASE has been added to the CAM without problem.
I followed the example of document for OOB WLAN (VLANs and mapping etc.), but I don't get all current identifications. The client is associated and the WLAN interface is the quarantine VLAN but it seems that the client can connect to the network without problem (may web access a server in-house to campus)
The customer indicated in customers wireless on the device of the cam page
If I either CASE interfaces close client connectivity is broken.
Once, randomly the own access connection Page appeared on the client (battery dead and waited for about an hour) but when I rebooted the CASE check it was she never came back.
I do not set up the SSO part, must it be filled or is it a valid test without it so far?
No idea where to start with this problem?
Thank you
Yes, it looks like that somewhere, your 'placing in quarantine/no authenticated' vlan is filled to the full network, I do not see another explanation.
Try to configure the WLC for a new vlan quarantine which does not exist anywhere.
Then you should not have any access at all to anything whatsoever. Then try to leave this vlan gradually reach the heap and constantly test. You should find the point where the vlan 'flows '.
Nicolas
===
Remember responses of the rate that you find useful
-
I have a 5508 running 6.0.196.0 and have a few 1142 currently associated with him. I tried to get a 1242 to associate, but it won't.
My WLC recovering DHCP to a VLAN wireless (950) and the 1242 Gets an IP address to this VLAN, but does not associate or showup as an AP.
In addition, I have a console cable connected and attached the output of the trunk, but cannot get my settings to allow (via HyperTerminal) to get the CLI. I'm set to 9600, N, 8, 1 and I tried a few other settings.
Layer 1 - good
Layer 2 - good
Layer 3 - good
1142 1142 1142 1252 DHCP leases are superior and can ping one of these, but only to show that the three 1142 s in the controller.
A reflection as to why does not showup? How bout my hyperterm settings?
Thank you!
The you have probably the Frother activated in HyperTerminal, this is why the AP will not meet your entry. Make sure that the terminal emulation program has Frother off.
In regards to the 1252 only joined does not, the reason is because he runs an independent image of AP, not a picture LWAPP/CAPWAP. You can see if you look at the name of the image. This has k9w7 which is autonomous images. K9w8 are light images. You just need to convert this lightweight AP.
-
Admin Hall account number on 5508 WLC
I have all this work on a WLC 5508, GANYMEDE + authentication works fine no problem there. Impossible to use the lobby connect WLC administrator account and manage guest users.
However when under properties of the AAA, I change first priority to 'LOCAL' and then ' GANYMEDE + ' lobby admin works but then GANYMEDE + does not work. Is there a way to have GANYMEDE + as the first and get the account admin Hall work?
Currently we have no WCS just Cisco ACS.
Hello Mohammad.
the only way to get this working, is to configure also admin Hall on ACS account.
in this case, all attempts will ACS (including Hall adming)
Add admin Hall on GBA
http://www.Cisco.com/en/us/docs/wireless/controller/4.2/configuration/guide/c42sol.html#wp1139569
with role1 = HALL
Kind regards
Talal
==============
Please note the responses you are useful, and mark as answered when - it is :-)-.
-
What is the purpose of the redundant Port that says "future use RJ45" on the Cisco WLC 5508?
Hello
None.
The new models of WLC are actually a common architecture with other products. (you may have noticed the same between 2106 and breakfast asa)
This means generally that there was an extra rj45 that may be in use by other products ports with the same material, but not on the 5508.
That is, there is no current use or future use for it.
Nicolas
===
Remember responses of the rate that you find useful
-
5508 WLC works only with small business unit SA 520 security
Cisco 5508 is new Wireless LAN Controller supporting 802.11ac new Giga bit wireless. It has been connected to the port of SA 520 LAN LAN port of small business Security Appliance (trunk). VLAN by default 1 works fine, which is for the management but vlan data does not work.
However, I can ping from WLC until SA 520 on vlan data but no ping SA 520. Also the wireless clients connected to the AP cannot connect to SA 520 on the data vlan 2702 as gateway?
both have the latest firmwares. These devices are supported?
Any suggestion?
Hello
I guess your VLAN DATA is another VIRTUAL local network that you have configured on the WLC.
Make sure of the ff.
1. you have configured the correct WLAN interface
2. you have assigned the right WLAN interface on your SSID
3. the DHCP of your users (where btw?) if in the WLC, check if it is on the correct subnet and that it is enabledAlso considering it is a safety device, check that the ff:
1. you have configured the necessary policies and fro the AP and WLC
-Note that traffic CAPWAP able, to avoid any problem, just allow and fro WLC and AP for example, two policies a WLC-> AP and another AP-> WLC2. of course, the policies necessary to allow traffic
PS: The compatibility is not a problem, note that your servers SMB of device as a connection of the WLC. You should have no problem integrating the two
If it is not much, kindly rate helpful messages :)
-
ISE 1.2 rejects 5508 WLC RADIUS messages
The setup of ref is:
WLC 5508 HA pair running 7.6 talk with ISE 1.2 patch 7 (a 6).
Wireless users are authenticated very well, so the 5508 is a valid n in ISE, but...
When I install active RAY of relief, so that the WLC can query the ISE Server I get the message:
"The query a device no RADIUS wireless was interrupted because the installed license is for wireless devices only.
Why the ISE spend a RADIUS of a WLC message which is a wireless device? It is certainly a mistake?
Hi Nicolas,.
This is a known fault.
CSCug34679 ISE drop keep alive from WLC.
Symptom:
ISE drops keep living authentications from the WLC, with message 11054 request from a device no wireless because of the license installed wireless.
Conditions:
When only licensed wireless is installed on the ISE and use current keep alive on the WLC.
Workaround solution:
Passive use keep alive on the WLC and non-active.Kind regards
Jatin kone
* Make the rate of useful messages *.
-
Cisco 5508 wlc mesh SSID broadcast?
Hello
I feel a strange phenomenon in my environment. Users on computers laptops Windows seem to be trying to connect to the SSID, they see the arrival of an access point which is mode bridge (and not broadcasting an SSID). I confirmed that nothing weird happens where the bridge would be broadcast SSID (standing right next to the newly imaged bridge on a laptop and when I connect I continue straight to a properly configured flexconnect AP).
There is no output from the path of the box in Windows to tell the operating system that an access point is not valid once he thinks he is, so I'm reaching out to the community to see if someone else has seen this before. My next troubleshooting step is to bridges in stand-alone mode, if I can't find an answer.
The environment consists of a WLC HA pair, standard 5508 flexconnect environment internal wireless, and we have a pair of bridge linking the two buildings. The affected computers are Windows 7 and Windows 8
Hello
Are you sure the mesh, access point is not configured to announce the WLAN of concern?
Unless it is in a group of AP with no WLAN, WLAN 1-16 will be announced via its interface 2.4 ghz (and 5 GHz so "mesh access customer backhaul" is enabled).
Here's a controller cli command to confirm (1550 is the AP name) ("site name" is the ap group)
(jk-4400-111) > show ap WiFi 802. 11 b 1550
Site Name........................................ 1550
Site description...WLAN ID BSSID Interface
------- ----------- --------------------------
18 management 88:f0:77:b7:b2:20
management 88:F0:77:B7:B2:21 19 -
Failure and 5508 WLC WLC 5508-HA
We are a hospital that uses wireless communication / clinical applications through.
We have a pair HA (AIR-CT5508-K9 / AIR-CT5508-HA-K9) 7.6.130.0 running.
It seems that it's 7 days something caused the original primary down and restart. Primary current has been for almost a year and I want to it without rebooting without losing connectivity to APs customers.
Other devices Cisco active / standby, allow you to restart the secondary and then fail to him with no impact on users.
That's what I intend to do:
(A) primary
Reboot peer (B) - and wait for the system to return to the top.
then
redundancy > force-passage to the -force just restarted WLC (B) to become a primary
then
Reboot peer (Primary)
Thoughts?
Thanking you in advance.
Bob
I used this version of the firmware before and in conditions ideal switch to the redundant unit should not have any impact to applications or not real-time.
Make sure that the TAC Gets a copy of the coredump file so that these can determine the real cause of the accident.
-
Impossible to install WebAuth cert on 5508 WLC
Hi all
I have a certificate that is chained from a public certification authority that I am trying to download to a WLC for Secure Web Auth (guest wireless). On the TFTP transfer, I get a message "error installation of certificate".
Newspapers are below. Any ideas?
(Cisco Controller) > transfer download starts
Mode............................................. TFTP
Data Type........................................ Site Cert
TFTP Server IP... 10.205.2.31
TFTP package Timeout... 6
Attempts to TFTP Max... 10
TFTP Path........................................ /
Name of the TFTP file... final.pemThis can take some time.
Are you sure you want to start? y (y/N)
* TransferTask: 03:32:59.938 Mar 30: memory approve the policy increased from 0 to 1* TransferTask: 03:32:59.938 Mar 30: RESULT_STRING: transfer of Webauth TFTP from cert.
Transfer of Webauth TFTP from cert.
* TransferTask: 03:32:59.938 30 March: RESULT_CODE:1* TransferTask: 03:33:03.942 Mar 30: lock semaphore, pHost = 10.205.2.31 tftp pFilename = / final.pem
* TransferTask: 03:33:04.026 Mar 30: semaphore locked, now unlock, pHost = 10.205.2.31 pFilename = / final.pem
* TransferTask: 03:33:04.026 Mar 30: semaphore managed to unlock, pHost = 10.205.2.31 pFilename = / final.pem
TFTP receive full... Install the certificate.
* TransferTask: 03:33:04.026 Mar 30: TFTP: remote = 10.205.2.31 link* TransferTask: 03:33:04.039 30 March: end of TFP: 4186 bytes transferred (0 retransmitted packets)
* TransferTask: 03:33:04.039 Mar 30: tftp rc = 0, pHost = 10.205.2.31 pFilename = / final.pem
pLocalFilename = cert.p12* TransferTask: 03:33:04.039 Mar 30: RESULT_STRING: TFTP receive full... Install the certificate.
* TransferTask: 03:33:04.039 30 March: RESULT_CODE:13
* TransferTask: 03:33:08.042 Mar 30: added cert (4150 bytes) with password certificate key.
* TransferTask: 03:33:08.057 Mar 30: sshpmCheckCert: checking return code: 0
* TransferTask: 03:33:08.057 Mar 30: checking the result text: unable to get local issuer certificate
Certificate of installation error.
* TransferTask: 03:33:08.057 Mar 30: depth 0 error: unable to get local issuer certificate
* TransferTask: 03:33:08.063 Mar 30: sshpmAddWebauthCert: certificate of decoding error, delete.
(Cisco Controller) > * TransferTask: 03:33:08.063 Mar 30: RESULT_STRING: Setup of certificate error.
* TransferTask: 03:33:08.064 30 March: RESULT_CODE:12
(Cisco Controller) > * TransferTask: 03:33:08.064 Mar 30: memory approve the restored policy 1-0
* sshpmLscTask: 03:33:17.826 Mar 30: sshpmLscTask: task of LSC received a message 4
-Brett
Brett!
I had a similar problem and ended up replacing one of the intermediate CA channels by one from the website of issuers (listed under public use-able key) which fixed the issue. I don't remember too much more details than that, but maybe play with who could help... Good luck!
Ric
-
[Q] how to build and install an SSL certificate signed for the management of a Cisco 5508 WLC?
Our security policy requires that all web pages admin must be signed by our CA business. I have successfully implemented a SSL certificate 3rd party Auth Web our WLAN of comments, but I need to install a self-signed certificate for the management of the WLC himself. I followed the instructions here:
http://www.Cisco.com/en/us/Tech/tk722/tk809/technologies_configuration_example09186a00806e367a.shtml
but it was more useful for Web auth. I can't find a specific document explaining how it should be done for the management interface.
Any help much appreciated.
(1) Please use a password. Empty passwords regularly give problems.
(2) you don't recombine the key with the certificate before you download to the WLC:
Combine the CA.pem certificate with the private key, and then convert the file to a .pem file.
Type this command in the OpenSSL application:
openssl>pkcs12 -export -in CA.pem -inkey mykey.pem -out CA.p12 -clcerts
-passin pass:check123 -passout pass:check123
!--- This command should be on one line.
openssl>pkcs12 -in CA.p12 -out final.pem -passin pass:check123 -passout pass:check123
Note: In this command, you must enter a password for the parameters -passin' and -passout . The password is set to the setting -passout must match the setting SubscriptionId is configured on the WLC. In this example, the password is configured at the time the -passin' and settings -passout is check123. Step 4 of the procedure in the section download the WLC third certificate of this document deals with the configuration of the SubscriptionId parameter.
The final.pem is the file that is transferred via TFTP to the Cisco WLC.
Now that you have the certificate of the third-party CA, you must download the certificate to the WLC.
-
Discovery of a new WLC 5508 AP
Hi all
I have a WLC EXISTING with the APs 5508 located in static 192.168.1.0/24 with 7.5 Cisco IOS.
I intend to add a NEW 5508 WLC as a PDC with CISCO IOS 8.0 and 5508 WLC existing as a secondary controller.
How can I move all the AP for the new 5508 and what will happen during the update of the firmware.
Kind regards
Hi Rasika, all the answer are helpful.
If our answers are useful, pls use the (Star) rating system to rate :)the wireless controller is now configured, but we have an issue with WLAN that is using radius server authentication. Should we enroll the NEW WLC to the Radius server?
Yes, you must add your WLC in your RADIUS server with the same credentials that you to define the RADIUS on your WLC server. Link below may provide some guidance on required WLC configs. http://www.Cisco.com/c/en/us/support/docs/wireless-mobility/WLAN-security/69730-EAP-auth-WLC.html HTH Rasika * Pls note all useful responses *. -
Migration of Cisco WLC 5508 to 5520
Hi all
I need to migrate cisco 5508 to 5520 wlc. This Cisco 5508 WLC is in production, it is possible, I can import this 5508 configuration file and export again 5520.
Please provide the steps to follow while making the migration.
(1) how cisco WLC-2 AP WLC-1 transfer since both have the same versions of IOS. Any URL available Cisco?
WLC-2, enter the command "config primary ap
. (2) applicant tried to transfer 2 points of access for LAP 1130 2 WLC WLC - 1 2 days back but still not reflective in WLC - 1. Measures to solve the problems there?
Distance or console in the AP. Post the output of the command 'sh' full record when trying to move the access of a controller to another point is entered.
Maybe you are looking for
-
MacBook Mid 2010 El Capitan: Library of App updated Photos not finished
MacBook Pro Mid 2010 running El Capitan 10.11.5 last updated the App Photos caused my App Photos to multiply on the update of the library and does not give me the option to use the App at all. I opened the Photos app and it acts like its update of my
-
as said in the question, I was sent a document to the signature using echosign. When I try to open it, a screen pops up saying script is busy. I have the choice to continue or cancel. I chose to continue and nothing happens. a message left next to Mo
-
Qosmio F30-140: No Tuner TV with Windows XP Professional
Hello I have a Qosmio F30-140 unpacking for computer laptop, I bought a Windows Xp professional, but unfortunately I can't see a TV Tuner and I do not know how to handle this problem? And the second thing I have a problem with Qosmio player too.It's
-
Scan to computer option removed the Panel controls after update?
Hello Normally, you can choose the option to scan a document in the Panel, and then you have another screen where contrast you where able to choose the DPI... But, as you can see, now after an update, the option "Analyze a document" is part... I can
-
H9-1183 Microsft Office expired
I have a h9-1183, I bought in June 2012. The seller told me that the version installed in the factory of Microsoft Office 2010 build 14.0.4763.1000 was not a trial version and I was not provided with a product key for it that the license was unlimite