WLC config doubt

Similar Questions

• ERROR:-cannot download the WLC config.

  Hello

  I'm not able to save the configuration of the wcs of wlc controller Please take a look and suggest me if I'm doing something wrong here.

  (WISN-slot1-2) > transfer mode upload tftp

  (WISN-slot1-2) > upload datatype transfer config

  (WISN-slot1-2) > transfer download IP_serveur 10.10.10.10

  (WISN-slot1-2) > download transfer path.

  (WISN-slot1-2) > name of download WLCconfig file transfer

  (WISN-slot1-2) > transfer download starts

  Mode............................................. TFTP

  TFTP Server IP... 10.10.10.10

  TFTP Path........................................ /

  Name of the TFTP file. WLCconfig

  Data Type........................................ Configuration file

  Encryption... People with disabilities

  WARNING: Config File Encryption Disabled *.

  Are you sure you want to start? y (y/N)

  TFTP Config from transfer.

  Preparation for transfer error!

  NOTE: I use the WCS as the server and do not use any what other tftp. Any help is appricaited.

  Hi Neha,

  You must restart the WLC controller if the WLC is placed on the WISN Module you must reload the WISN module after you will be able to download and upgrade the firmware of the controller.

  What is happening because of some isue internal with WISN/WLC material. I ask you to do and your problem will be solved.

  Kind regards

  Reem

• Discovery of a new WLC 5508 AP

  Hi all

  I have a WLC EXISTING with the APs 5508 located in static 192.168.1.0/24 with 7.5 Cisco IOS.

  I intend to add a NEW 5508 WLC as a PDC with CISCO IOS 8.0 and 5508 WLC existing as a secondary controller.

  How can I move all the AP for the new 5508 and what will happen during the update of the firmware.

  Kind regards

  Hi Rasika, all the answer are helpful.

  If our answers are useful, pls use the (Star) rating system to rate :)

  the wireless controller is now configured, but we have an issue with WLAN that is using radius server authentication. Should we enroll the NEW WLC to the Radius server?

  Yes, you must add your WLC in your RADIUS server with the same credentials that you to define the RADIUS on your WLC server. Link below may provide some guidance on required WLC configs. http://www.Cisco.com/c/en/us/support/docs/wireless-mobility/WLAN-security/69730-EAP-auth-WLC.html HTH Rasika * Pls note all useful responses *.

• Download automatic configuration on WLC?

  Hello

  Is there a way to plan the auto setup download (backups) on WLCs? It should be done without use of WCS.

  Thank you in advance.

  Kind regards

  Andras

  The solution was added in the following document;

  https://supportforums.Cisco.com/docs/doc-21757

  There is a way to do it using scripts to wait

  See my post at https://supportforums.cisco.com/message/3438495#3438495

  You can use cron to call the shell script that calls commands expect to file.

  commands expect script to back up the configs. Modification of the script variable upload for your environment

  #! / usr/bin/wait

  configure router [lindex $argv 0]

  the value of username [lindex $argv 1]

  set password [lindex $argv 2]

  spawn ssh $router

  #log_user 0

  the value of timeout 10

  wait "(yes/no) '? '" {

  Send "yes\r; exp_continue}

  expect to "user:".

  Send--"$username."

  expect to "assword:

  Send--"$Password."

  wait for the "controller".

  Send-'upload datatype config transfer. "

  wait for the "controller".

  Send-'transfer mode upload TFTP '.

  wait for the "controller".

  Send-'transfer download IP_serveur \r.

  wait for the "controller".

  Send-'Start upload transfer '.

  # a wlc config commands requires a secure yes/no

  wait "(y/N) '"

  Send-"y\r".

  wait for the "controller".

  Send "logout\r."

  wait "(y/N) '"

  Send-"n".

  expect to expressions of folklore

• WLC 802. 11A / n Radio regulatory domain question

  Dear all

  We are facing a problem with a customer where a Cisco 4400 Series controller blocks the 802. 11A / n Radio Interface of 1250 access point. Radio broadcasts like down on the controller to GUI. The error message on the GUI, it's that the "regulatory area" is not supported. This can be seen on the attached screenshot. Also the relevant parts of the WLC configs are attached.

  WLC: Cisco 4402 wireless
  WLC country: SA
  Device: Cisco Lightweight Access Point 1250 (LAP) is controlled by the Cisco Wireless LAN Controller (WLC) 4402
  The version of operating system of the TOWER: c1250-k9w8 - mx.124 - 18A .JA version of the WLC: 5.2.178.0 software Version

  The problem is that the controller which shows the 802. 11A / n Interface Radio in Radio Slot # 1 is still unavailable, the client was trying to manually "nonstop" interface of the PA of the console and it worked, but of course this solution would not work as the configuration cannot be saved (LW AP).

  Any help or pointers would be greatly appreciated.

  Concerning
  Farrukh

  just done a quick check on my WLC, resembles Saudi Arabis, code country SA, should be an EI AP, no a - N.  I hit up the partner and to correct the AP you

• WLC 7.4.121.0 configuration management interface

  Hello.

  I have a problem Management interface IP setting in new 5508 controller. I get the error "error in the management interface IP configuration". I can't put a management controller IP.

  Start IPv6 Services: ok
  From Config Sync Manager: ok
  Start Hotspot Services: ok
  Starting the PMIP Services: ok
  Starting the Services of Portal Server: ok
  Starting the mDNS Services: ok
  Start Management Services:
  Web server: CLI: ok
  Web security: authentication certificate Web not found (error). If you cannot access the management interface via HTTPS please reconfigure virtual Interface.
  License Agent: ok

  (Cisco controller)

  Welcome to the Setup Wizard Cisco tool
  Use the '-' character of backup

  You wish to terminate autoinstall? [Yes]: -.
  Invalid response

  You wish to terminate autoinstall? [Yes]: no

  Name of the system [Cisco_bf:dd:c4] (31 characters max):
  AUTO-INSTALL: process completed - no configuration not loaded

  Enter administrative username (up to 24 characters): admin
  Enter the administrative password (3 to 24 characters): *
  Administrative password: *.

  Interface Configuration for IP [static] [DHCP] address service: no
  The service Interface IP address: 1.1.1.1
  Service Interface subnet mask: 255.255.255.0

  Enable aggregation LAG (Link) [Yes] [NO]: no

  The Interface IP address management: 192.168.10.1
  Management Interface subnet mask: 255.255.255.0
  Router default Management Interface: 192.168.10.10
  Error in the management interface IP configuration

  The Interface IP address management: 10.10.10.1
  Management Interface subnet mask: 255.255.255.0
  Management router default interface: 10.10.10.100
  Error in the management interface IP configuration

  Address IP Management Interface:

  ····························································································

  Did someone in the face of this issue?

  Thank you.

  Hello

  Try these:

  1. with the WLC, please the Frother (in SecureCRT or hperterminal) the value none. Once the changes are made, CLI will start to work as usual.

  2. Another common reason may be related to the configuration of the virtual interface of the controller. To resolve this problem, remove the virtual interface, and then re - generate with this command:

  WLC >config interface address 1.1.1.1 virtual

  Then restart the controller. After that the controller is restarted, re - generate the certificate webauth locally on the controller with this command:

  WLC >config certificate generate webauth
  In the output of this command, you should see this message: Web authentication certificate has been generated.

  Now you should be able to access the secure web mode of the controller to restart.

  3. try to use a diff for the service interface IP address do not use 1.1.1.1.

  Concerning

  Remember messages useful rates

• WLC 2106 routing table do not fill

  Hey guys, I hope you can help with this one.

  I just tried to set up a WLC 2106 and everything seems OK however the routing table is not filled (even directly connected and default route). Currently, I have it plugged into a switch and an AP and they are all two visible in ARP and CDP, but I only ping is peripheral.

  (Cisco Controller) > show the summary

  Number of roads... 0

  Destination Netmask Gateway network

  -------------------    -------------------   -------------------

  (Cisco Controller) > show cdp neighbors detail

  -------------------------

  Device ID:-swt00.asggroup.com.au

  Enter address (s): 10.33.17.62

  Platform: cisco WS-C3750G-48TS, capacity: Switch IGMP router

  Interface: Fastethernet0/0/1, ID of Port (outgoing port): GigabitEthernet1/0/48

  Hold time: 174 s

  Version:

  Cisco IOS software, software C3750 (C3750-IPSERVICESK9-M), Version 12.2 SEE2 (25), RELEASE SOFTWARE (fc1) Copyright (c) 1986-2006 by Cisco Systems, Inc., Compiled Saturday 28 July 06 12:55 by yenanh

  version of the proclamation: 1

  -------------------------

  Device ID: AP1cdf.0f95.732c

  Enter address (s): 10.33.17.10

  Platform: cisco AIR-LAP1142N-N-K9, capacity: Trans-pont

  Interface: Fastethernet0/0/7, ID of Port (outgoing port): GigabitEthernet0

  Hold time: 155 s

  Version:

  Cisco IOS software, C1140 Software (C1140-K9W8-M), Version 12.4 (21 a) JHB1 - VERSION of the SOFTWARE (fc1) Technical Support: http://www.cisco.com/techsupport Copyright (c) 1986-2010 by Cisco Systems, Inc., Compiled Thursday, Aug 11, 10 at 15:45 by prod_rel_team

  -Other - or ITU (q)

  version of the proclamation: 1

  Configuration of the interface

  Name of the interface... ap-Manager

  MAC address... 58.8 d: 09:93:f1:c0

  IP Address....................................... 10.33.17.2

  IP Netmask....................................... 255.255.255.192

  IP Gateway....................................... 10.33.17.62

  State IP NAT outside... People with disabilities

  External IP NAT... 0.0.0.0

  VLAN............................................. 17

  Port of physics... 1

  Primary DHCP server... 10.33.17.1

  Secondary DHCP server... Not configured

  Option DHCP 82... People with disabilities

  ACL.............................................. Not configured

  AP Manager....................................... Yes

  Comments interface... NO.

  ... Management interface

  MAC address... 58.8 d: 09:93:f1:c0

  IP Address....................................... 10.33.17.1

  IP Netmask....................................... 255.255.255.192

  IP Gateway....................................... 10.33.17.62

  State IP NAT outside... People with disabilities

  External IP NAT... 0.0.0.0

  VLAN............................................. 17

  Quarantine-vlan... 0

  Port of physics... 1

  Primary DHCP server... 10.33.17.1

  Secondary DHCP server... Not configured

  Option DHCP 82... People with disabilities

  ACL.............................................. Not configured

  AP Manager....................................... NO.

  Comments interface... NO.

  Any help would be greatly appreciated
  Mark

  Hello

  Removes the brand management and interface of the AP on the WLC Manager and put the management and the Manager of the Ap in the vlan Switchports native...

  example of...

  the command is...

  WLC > config interface management vlan 0

  WLC > config interface vlan ap-Manager 0

  On the switch...

  switchport mode trunk

  switchport trunk dot1q encap

  switchport trunk vlan native 17

  end

  I assumed the management and Manager of the AP are in vlan 17. make the corresponding changes if not 17.

  Let me know if we can t oping after making the above changes...

  Let me know if that answers your question...

  Concerning
  Surendra
  ====
  Please do not forget to note positions that answered your question and mark as answer or was useful

• Get some APs to join a vWLC large-scale which replaces a small scale vWLC

  Hello everyone. I'm in a bit of a dead end. Here's our situation:

  • We have two vWLC on a small scale (.210 et.211), each with 200 AP licenses max. They are both on the 8.1.120.0 version.
  • vWLC.210 is maxed out et.211 is halfway there, as far as APs go. All APs are AIR-CAP702I-A-K9.
  • We recently bought APs more, but it was unclear, these APs are now 702i-B, which works with a newer version.
  • We were already looking to upgrade le.210 to a vWLC on a large scale, but ran into problems (error attached screenshot) and for some reason any could not do.
  • I was on vacation (a week or more), came back and my colleagues have already implemented a new and large scale vWLC, running version 8.2.111.0. His IP est.212.
  • So now what we're trying to do is to have the + 300 APs connect a.212 the most effective way possible.
  • One way that we figured out to hover over an AP has been put by default, but it would be horrible.

  At this point, we are eager to have a single virtual controller (large scale) for all the APs. If someone managed to upgrade small-scale (version 8.1.120.0) large scale (version 8.2.110.0), which would definitely be the way to go. I couldn't get this error with our support team.

  If we cannot go from small to large, then the second option could migrate their all new, large scale (. 212) controller. What would be the best/effective way to do.

  Thank you

  I just deconnecter.210 the network vWLC and edit the new vWLC at the same IP address (. 210). In this way, all of your AP must register with new vWLC.

  If you intend to use these vWLCs, you need to change the PDC of each AP (under AP config - tab that high) to new vWLC name & IP management. You can do this via vWLC CLI as well. If you get all the details of your AP, you can prepare your config in Notepad & applied only once. (first test & make sure it works for you)

  (WLC) >config ap primary-base <vWLC_Name> <AP1_Name> <vWLC_mgt_IP>(WLC) >config ap primary-base <vWLC_Name> <AP2_Name> <vWLC_mgt_IP>.(WLC) >config ap primary-base <vWLC_Name> <APn_Name> <vWLC_mgt_IP>

  HTH Rasika * Pls note all useful responses *.

• Cisco ISE - adding wireless AP s ISE

  I am currently in audit mode with my implementation of ISE.  I have a Cisco CAPWAP 2602 access point connected to a provisioned ISE 3750.  My policy of Auth is a failure on the AP because it does not find in any store identity.

  So, my question is, what is the best way to inventory all of my network of the AP?  We have about 300.   They are obviously not in AD and I'm not sure I want to bulk add the AP store internal endpoints and must constantly manage the inventory if AP is swapped.

  My thought was to have ISE dynamically reference my WLC for all my AP registered to authenticate them, but I don't see a way to do it.

  Ideas?

  THX

  If you are somewhere where normally supply you new APs, you can use 802. 1 x to authenticate, all you have to do is the WLC config for 802. 1 x for APs, boot on a non-dot1x port so that they can get the config of your WLC first, then move to where they should be in your building.

  Otherwise, you will need to return to the less secure and method heavy managing more than make an inventory of the mac address.

• Config of basis for the 2nd and 3rd of the WLC?

  I saw the discussion about the configuration of the failover on of the WLC. I think I have a pretty good understanding of what is supposed to happen here. But what is really clear is the config of base on the 2nd and 3rd in WLC. They need to be configured exactly like the first, with the exception of the unique fields such as host name and ip addresses, interface and such? Usually people take the config of the first and do a "Find and replace" to fix the config for subsequent controllers? I will add 2 more to my controller in the near future and try to have a better understanding of the process until I have to implement. Thank you!

  You are right in the config WLC - unique IP/hostname info and everything else the same. There is usually not a lot of changes of configuration to do on the additional WLC, the few times that I did I have manually configured things or used WCS. Configure additional WLC being part of the same group of mobility and/or hardcode primary, secondary & tertiary controllers AP for failover.

  HTH

• WLC primary and secondary - Config DHCP Scope

  Hi all

  WLCs: AIR-CT2504-K9

  We have therefore two 2504 s each in separate locations. Inside of each of the Access Points, we have configured one of the controllers of the WLC primary and the other as the secondary WLC tab HA. So my question has to do with the internal DHCP configured in each of the controllers scope.

  We only use the internal DHCP server of the WLCs for our Public Wi - Fi network. And I was wondering if I should configure the DHCP scope even in two controllers, or if they are supposed to be different?

  For example:

  Elementary WLC - extended DHCP: 10.12.202.110 - 10.12.202.200
  Secondary WLC - extended DHCP: 10.12.202.xxx - 10.12.202.xxx?

  The way in which access points are configured, they should only be attached to a controller or another. So that the way its set up it shouldn't be some APs on a single controller and some of the other. They should all be attached to the WLC even at any time. So, given that I can configure the same scope on both controllers?

  Any ideas or suggestions would be greatly appreciated!

  Thanks in advance,
  Matt

  Yes, you can set up this way, as long as you don't expect not so much operational WLC & customer service at the same time.

  If you think to expand this network of comments, I suggest you stay away from using DHCP internal like these WLCs has ever made to use as complete apart from entire DHCP servers in large scale networks.

  HTH

  Rasika

  Pls note all useful responses *.

• WLC Collection failed - Config - no APs running no.

  Hello

  I was not able to collect successfully with our wireless LAN controllers.  SNMP and SSH work correctly and one set of very limited data are collected, but he did not provide the AP inventory which is necessary in order to obtain these WAP portal of the NMP.  I tried everything at my disposal, but still does not accumulate the WLC AP inventory.  The WLC shows as "Managed" and collection is successful, less inventory of the AP.  Please help and if possible the Dataset that will collect this inventory so I can create a special Collection profile for our WLCs.  Thank you.

  Perfect.  Thank you.  This sysobjectid should be part of the WLC platform (settings > manage platform definitions).  This platform will be referenced in the dataset (settings > manage data sets) called AIRESPACE-without THREAD-MIB_bsnAP.  If you look inside the data group, you will see the WLC platform here.

  Collection profile was executed?

  Where are you not see the APs?  On the portal of the NMP or in the results of the collection on the CSPC (reports > Collection profile summary Run), choose the profile Collection and the date, and select Action > view data.  You can find the device in question and click it and search for the set of data listed above and then see the raw data.  If you see the LWAP here, so this isn't a matter of collection and we need to check if it is a problem of back-end processing.

• ISE 1.2 and WLC 7.6.100.0 Flex Config

  I have a SSID used for Headquarters users and the users of the branch. The problem is that the users of the branch use flexconnect. All users of the branch use vlan 10 as authC pre and vlan 20 after authenctication. But H.O. users use of vlan 50 to connect. Now I make the AuthZ policy to match id wlan and Wi - Fi 802.1 x.

  The question is how am I going the H.O. users to match different users of AuthZ policy and with other AuthZ policy branch since I return different vlan for them.

  Thank you and best regards,

  Zohaib

  If you are using groups of AP on your controller, you can set different NAS - ID for each group of AP on the controller, and this attribute will be sent to ISE if you create two rules different authz for two ap groups.

• When I click on the + to open a new window I don't like the images that arise. I tried to change that in all: config; Browser.newtab.URL, but it will not

  When I click on the + to open a new window I don't like the images that arise. I tried several times to change that through words: config; Browser.newtab.URL. I put in the site I want and it won't change. I tried to put in: blank and it don't work. I'm obviously something wrong - can you help please?

  Thank you

  If Firefox is ignorant preference browser.newtab.url, the usual culprit is an extension.

  You can open the page in Firefox Add-ons using either:

  • CTRL + SHIFT + a
  • "3-bar" menu button (or tools) > Add-ons
  • in the Windows "Run" dialog box, type or paste
    firefox.exe "about:addons"

  In the left column, click Extensions. Then, in case of doubt, disable (or delete, if possible) not recognized and unwanted extensions. Do not forget that all extensions are optional, none come with Firefox, and you can learn more about them by checking their reviews on the site of the Add - ons.

  Often, a link will appear above at least an extension disabled to restart Firefox. You can complete your work on the tab and click one of the links in the last step.

  Any improvement?

• PIN.WID has become my default browser, I don't want to, can not uninstall and have no chance with "subject: config?"

  Ok. How can I get rid of the pin.wid as my default browser. When I click on firefox I get pin.wid. I can't uninstall it. I emailed them this question. Response (abbreviated); Subject: config in the address bar, I promise you, keyword.url in the search box... not stuck there... no results.

  There are a few different ways that a site could take over your home page. These include:

  (1) change your settings
  
  (2) an add-on
  
  (3) hijacking your shortcut of Firefox

  For #1, you probably already checked, but just in case:

  • Startup, homepage, tabs and download settings
  • How to set the home page

  You can use the home button or open a new window (Ctrl + n) to test the change.

  Note that malicious software can create a file that will pick up your settings at startup. This article describes how to find such a user.js file: How to fix preferences that will not save.

  For #2, try this:

  Disable all non-essential or unrecognized extensions on page modules. Either:

  • CTRL + SHIFT + a
  • Firefox orange (or the Tools menu) button > Add ons

  In the left column, click Extensions. Then, when in doubt, turn off.

  Typically, a link will appear above at least an extension disabled to restart Firefox. You can complete your work on the tab and click one of the links in the last step.

  For #3, if you get the unwanted page at startup and not when you use the home page icon or open a new window (Ctrl + n), check here: right click on your shortcut on the desktop for Firefox > properties > Shortcut tab. For 64-bit Windows, the goal should be the next, no more, no less:

  "C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
  

  A little luck?