Cisco :: 5508 Controller - IPad Network Access
Mar 26, 2013
I recently had a 5508 controller installed and configured for a corporate network as well as internet only guest access. Users authenticate via 802.1X key management on the corporate network and web authentication via guest. This works fine, however, I've run into a problem. We also use iPads for inspections and the inspection site is housed internally. I've had a network admin create an exception in the firewall that will allow connection to the internal sites from the guest network, however, it does not function. I did find that if I connect an iPad to the corporate wireless network I'm able to download the necessary certificate to the device but that only works if I use my login information which is not something I am interested in doing. Is it possible to enable another authentication for the corporate network without breaking the functionality of the existing 802.1X authentication? What could possibly be the cause on the guest network not allowing connectivity to the internal sites, even though the exception has been created?
View 3 Replies
ADVERTISEMENT
Apr 2, 2012
I have a requirement to set up a guest SSID for contractor so that they can use the internet while in the office.
Security say that all traffic on this SSID should be isolated and directed straight to the firewall, with no chance of contamination into the company network infrastructure.
With the 5508, my understanding is using the setting up a guest account functionality built in will achieve this, but all traffic would end up at the wireless controller. How do I then put a direct forward for all traffic to the firewall which will only affect the guest traffic?
View 7 Replies
View Related
Apr 3, 2013
I configure IP address on the management interface port 1 of 5508 controller when i connect it direct to my laptop i can't ping or access controller from my laptop even i connect through layer 2 switch still i can't not.
IP Address of management interface : 10.21.0.50
Laptop IP Address : 10.21.0,51
View 13 Replies
View Related
Apr 11, 2013
We have an MPLS (layer 3) network 4 offices and a Data center. We are planning to install about 10 Access Points(3600 series) per office and have a controller(5508 series) in the Data center.
Questions:
1- Is this design possible, in other words, just one controller centralizing all Access point traffic in one controller in the Data center?
2- We would like to accomplish this in two phases:
A- install access points without controller handling authentication thru Microsoft IAS servers (current configuration with 1200 series)
B- Deploy wireless Controller in Data center and start migrating orphan AP to Controllers one office at a time.
View 7 Replies
View Related
Apr 9, 2012
We are having 5508 controller with Lightweight access points 1142, IS it possible to disable 802.11a on certain access points before turning it off completely on the controllers?? Could you provide steps for doing so on WCS?
View 5 Replies
View Related
Mar 13, 2013
I have Cisco AIR-LAP1310G-E-K9 access point and 5508 wlan controller with version 7.0.220 and it is joining to the WLAN controller. I have enabled dhcp in the lan controller and i dont have external dns server. How to fix this issue? Can this LAN controller version will support this access point? My Lan Controller Management IP Address is 10.10.10.5 find the below configuration of 1300 access point.
AP001d.4513.dd68#reloadProceed with reload? [confirm]
%SYS-5-RELOAD: Reload requested by console. Reload Reason: Reload Command.%LWAPP-5-CHANGED: LWAPP changed state to DOWNXmodem file system is available.flashfs[0]: 4 files, 2 directoriesflashfs[0]: 0 orphaned files, 0 orphaned directoriesflashfs[0]: Total bytes: 7741440flashfs[0]: Bytes used: 2052608flashfs[0]: Bytes available: 5688832flashfs[0]: flashfs fsck took 14 seconds.Base ethernet MAC Address: 00:1d:45:13:dd:68Initializing ethernet port 0...Reset ethernet port 0...Reset done!ethernet link up, 100 mbps,
[code].....
View 6 Replies
View Related
Mar 4, 2012
I've got a couple new 5508 controllers to replace my 4404's. Im wondering though if I throw them on the network to setup, will there be any conflict with the current access points? Will they try and join the new controllers for any reason automatically? Is there a better way, or a best practice to provision these new controllers?
View 3 Replies
View Related
Oct 4, 2011
Any deign guide for getting the Braford Network Manager working on a Cisco 5508 controller.
View 1 Replies
View Related
Aug 12, 2012
I know that the 3600 series APs are not supported on the 4404 WLC. However, would the following scenario be supported? I would like to use the 4404 (software rel. 7.0) as a guest anchor with a 5508 (software release 7.2) as the foreign controller supporting series 3600 APs. I ask because the APs do not need to join the guest anchor.
View 7 Replies
View Related
Jun 2, 2013
We have a customer that have 2 5508 as primary and backup controller and a 4400 as an anchor controller. We plan to upgrade the 5508 to 7.3.112.0 and the 4400 is already 7.0.116.0. Will there be any issue if the anchor controller is not the same code as the foreign controller? Do I also have to upgrade the acnhor controller to 7.0.240.0?
View 2 Replies
View Related
Aug 8, 2011
I have 1 WLC AIR-CT5008-K9 version 7.0.98.0. with iPads connected to a WLAN with [(WPA+WPA2)(AuthPSK)].and have constant disconnections. But the Laptops do not have problems.
View 5 Replies
View Related
Feb 28, 2011
Using wireless PEAP via a 5508 controller and a verisign cert on ACS 4.1,The iPad still wants me to verify the cert even though it is a trusted CA.
View 2 Replies
View Related
Apr 15, 2012
Interface management on WCL 5508 is assigned ip 192.168.255.200 and from a PC ( on different subnet), i can ping but cannot access https to WCL but From a PC ( in the same subnet) i can ping and https.
View 11 Replies
View Related
Jan 5, 2013
Have WLC 5508 running 7.4 code; have wlan setup to allow access to internal network. Users on ipads should be able to connect to this wlan and authenticated via certificate instead of PSK. We have setup laptops that are part of domain to use internal CA for authentication to WLAN. Ipads are not part of domain so we are not able to use the same model, or can we use the same model for authentication?How to setup WLC to authenticate ipad users via certificate instead of PSK while connecting to the WLAN?
View 1 Replies
View Related
Jul 16, 2012
We are implementing a new corporate wireless network with Cisco 5508 WLC's and C3602I LWAP's. We are not running any RADIUS or EAP at the moment and are starting with WPA2 w/ AES with a pre-shared key to begin piloting. The issue we are having is iOS based devices (iPhone/iPad) do not seem to want to connect. We just get a could not join wireless network messages. We have had success with several Windows based laptops, my MacBook connects, as well as several different Android devices.Looking at the logs on the WLC I see these entries which correspond to the MAC address of my iPhone.
*apfMsConnTask_6: Jul 17 17:25:20.620: %APF-3-CHECK_SUPP_RATES_FAILED: apf_utils.c:376 Could not check supported rates. Missing Supported Rate. Length :0. Mobile MAC: 24:ab:81:92:4d:97.
View 28 Replies
View Related
Dec 1, 2012
We have a remote location with 1 LWAPP AP connecting to a 5508 WLC. We are doing 802.1x auth/wpa2 on 1 SSID for iPads to connect to. Now we want to simply connect a printer to print wireless using AirPrint from the iPads. The problem is how to get the printer connected to the wireless network specifically to the sane SSID? Will the printer need to support 802.1x or have the ability to do certificates? Is there a better way to do this.
View 5 Replies
View Related
Jul 27, 2012
on a 5508 WLC can we create new SSID for I PAD / IPHONE Users without having ISE, only I phone / I PAD are allowed to be authenticated rest all should be denied. IS this possible?
View 8 Replies
View Related
May 17, 2010
home router is a wrt160n v3 With my iPad I set up the built in IPSec VPN to my office's cisco gateway. I successfully get the VPN logo. With an RDP app, i can access my work network from multiple public locations from my iPad. At home, on my laptop, I start the cisco client then use the windows rdp, presto i'm in my work network. At home on my iPad I can activate the VPN, but I can not connect with rdp. I spoke with linksys support tonight they had me add port 3389 to port range triggering and disable the firewall on the home router. This didn't solve the problem. To recap: 1) I can connect to my work network with rdp from multiple public locations, but not at home with the iPad 2) I can connect to my work network at home with my laptop with the cisco client ant the windows rdp
View 6 Replies
View Related
Nov 18, 2012
recently we have purchased Reflection - an AirPlay mirroring software. Basically install Reflection in the laptop and you can view the screen of the iPad or iPhone via wireless network. we have tested in home wireless network no problem, but when connect to the cisco network, the iPad didn't recognize the REFLECTION installed in the laptop.
we are running WLC 5508, WLAP AP-1331AG, we can ping from laptop to the iPad laptop and ipad can access network without any issue. there is no any application port has been blocked between the client via wifi extra details for REFLECTION: [URL]
View 4 Replies
View Related
Sep 4, 2011
We have two SSID's Guest and Corp. We are using 5508 controllers.
The problem is that if an iPad user is connected to Guest SSID and then try to connect to Corp then it fails saying "Unable to connect to Corp". After 10-15 retires the same iPad connects successfully. The problem doesn't happen on windows PC. I have attached debug for one of the clients.
View 1 Replies
View Related
Mar 5, 2013
We have a centralized WLC with some branch office with AP's in Flexconnect Mode. The Wlans are configured to use Web Authentication (Landing Page). The Landing Page is Cisco Default.
We're experiencing some problem with Apple Devices, on some the Landing Page apperars on some not. The WLC Software is about 1 year old. On a XP machine the landing page doesn't appear too, but you can type in the address manually and it works.
Whats the best solution to include the Apple Devices successfully in the WLC Wireless World.
View 9 Replies
View Related
Apr 11, 2012
We find that some of the utilized iPads (iPad2, iOS 5) have a significant delay to connect to the WiFi after waking up.. though some of them show the WiFi-icon instantly after wake-up.. That is causing the crestron App on it to "malfunction", which is to say that it can't connect to it's server and goes back to home screen to allow re-connect..
WLC and LAPs using the latest software (7.2.103.0).. encryption is WPA2/PSK..
I changed the WLAN to use 802.11g only.. changed Beacon-Time.. changed encyption.. changed WMM settings..Alas, the iPads that expose this behaviour do not show any difference with the changes..
View 3 Replies
View Related
Apr 21, 2013
I want to use a 5508 as an anchor controller for a wireless guest deployment....but the client has internal 4402's controllers, with software version 7.0.235.0...is it possible tu mix these two controllers for a Wireless Guest Access Deployment??
View 3 Replies
View Related
Oct 2, 2012
A wlan on my controller is configured for WPA2, AES encryption and a PSK. A vendor will supply me with a wireless device for this wlan. The vendor asks if we use AES 128 or AES 256. I had always believed we use AES256 but I can't verify this. How can I verify this to the vendor?
View 1 Replies
View Related
Mar 21, 2011
Seems that all solutions are null and void for us because we are not using SNMP v3 or H.
We are using SNMP v2, We have upgraded our WCS to latest version as well as the controllers. I have 6 controllers currently added although they are on WiSM blades.
We are unable to add the 5508 Controllers, we keep recieving this error -
No response from device, check SNMP communities, version or network for issues.
I have confirmed all connectivity is working, even with a debug on the controller you can see it sending SNMP packets to the WCS, although still same error.
View 8 Replies
View Related
Jan 9, 2013
I have a wireless controller 5508 and all my interfaces can be accessed via https or ssh from a wireless client. Management access from a wireless client is disabled so I don't understand why this is happening.
View 10 Replies
View Related
Nov 29, 2012
We have a customer that is looking to allow only static IP addresses onto the wireless network via the new 5508 we are putting into place. I can see where to require DHCP but not the opposite.
View 4 Replies
View Related
Aug 16, 2012
Is it possible to block outside P2P traffic on a guest wireless network using an ACL on the controller? I know we can do it our firewall
View 6 Replies
View Related
Sep 12, 2012
i'am trying to configure an AP1121g on my controller wlc5508 7.2 but i'am facing a compatibility issue.
View 5 Replies
View Related
Sep 30, 2011
I have a 5508 controller at our headquarters and am installing some 3502 AP's at a remote branch. Unfortunatly, the remote branch has a different Vlan setup for some reason and the vlan that is used for the WLC (90) is designated for telephony at this branch. Can I put the AP's on a different VLAN (10) without having any issues? I will still use DHCP option 43 to point them back to the controller. Below are the configs for the WLC interfaces and what I am proposing for the AP interfaces:
WLC Config
interface GigabitEthernet1/1/38
description WLC01
switchport
switchport trunk encapsulation dot1q
switchport trunk native vlan 90
switchport trunk allowed vlan 1,10,50,90,91,390,410-413,610-613,800,810,811
switchport mode trunk
[code]......
View 3 Replies
View Related
Mar 29, 2012
Web Auth on 5508 running 7.2.103.0.
Issue 1: I have been trying to configured Webauth bundle however it seems that is not working.
1. login.tar created use picozip contains 3 files: login.html, terms.html, and logo.jpg.
2, uploaded via FTP to controller successfully..
3, no issue when i tried to preview on the controller
However users unable to see the login page when connected to guest wifi. when the user tried to connect cisco.com, on the browser address shows that the page redirected to url... however internet explorer / firefox display "Connection reset error".During this time, if i ask the user to type url... they can see the default login page, so no issue on connectivity to the service port.
Issue 2: Since i couldnt make that work, i have use default webauth internal. its all good. then when i tried to upload customlogo.jpg (18k size). User able to see the login page however not the logo. it shows broken image icon on the web browser. --> i can see the logo when i did preview on the controller.
Issue 3: last resort if i couldnt get the answer by sunday, how do i delete or remove the customlogo ?? so by monday users will not be seeing any errors on the page.
View 7 Replies
View Related
Nov 13, 2012
Cisco 5508 Series Wireless Controller for up to 100 APs 802.11a/g/n Ctrlr-based AP w/CleanAir; Ext Ant; E Reg Domain..For Mobility i want to settup the device such that the SSID would be the same with thesame security key and in different subnet.
View 5 Replies
View Related
Mar 6, 2012
I can not get our 3602i AP's to register with our 5508 controller which is running 7.2.103.0 code. We keep seeing an error in the log on the WLC "AAA Authentication Failure for UserName:c46413c08e92 User Type: WLAN USER" and on the Access Point we are seeing [code]
I entered the CAPWAP ap controller ip address directly into the AP so it shouldn't be an option 43 DHCP issue
View 15 Replies
View Related