Cisco :: 5508 - WLAN With 802.1x
			Sep 25, 2012
				Since the SW upgrade to version 7.3.101.0 (wlc 5508) i have the following issue. We have a W LAN with 802.1x (WPA2/AES) secured. Before the update the users need to enter user/ PW every time when they reconnect (W LAN switch off/ on again) to the W LAN. Now the users don`t need to enter user/ PW when they reconnect to the WLAN. 
 
I could not find any setting on wlc to clear this issue.
	
	View 9 Replies
  
    
		
ADVERTISEMENT
    	
    	
        Aug 23, 2012
        Can the Cisco 3602 APs be configured by a Cisco 5508 WLAN controller to provide client isolation?
	View 2 Replies
    View Related
  
    
	
    	
    	
        Feb 14, 2012
        Strange issue that our support staff is seeing on our guest WLAN. I have 2 wlans, 1 is production and authenticates our Domain controllers, this is working fine. The other is a wlan that has restricted access internally, I allow http, https and VPN access out only.
 
It appears that on the guest wlan, after random amount of time an established VPN connection using Cisco VPN client disconnects. Wireless connectivity doesnt appear to go down, just the vpn connection.
 
On this guest wlan, I have configured QOS bronze and I read a link where this may be affecting the UDP conversation between VPN client and end point.
	View 10 Replies
    View Related
  
    
	
    	
    	
        Aug 12, 2012
        We have a 5508WLC recently updated to 7.2.110.0 since we are using CAP3602I-N-K9, this AP is intended to work as a H-REAP device and eventhough it is registering to the controller I can't get to see the WLANS on the list to map it to the local VLANS
 
I have verified and the WLAN is configured for local switching also have followed the steps listed here:URL
 
 Still Can't see the WLANs under the Flexconnect tab on the AP?
	View 2 Replies
    View Related
  
    
	
    	
    	
        Mar 27, 2013
        We are moving forward with a mobility project which requires our network to authenticate/authorize based on certificates. 
 
WLAN_1 has 802.1x enabled passing the cert through to the MS CA which authorizes the cred, which in turn passes the AD creds of the user to the MS RADIUS server for authenticate/authorization.
Hardware: WLC 5508 running 7.2.110.0 3600 APs ACS 5.2 not used for AAA
 
1. As we turn up additional SSIDs, we need Mobile SSID to accept ONLY the Mobile Cert, our Internet SSID to only accept the Internal Cert and our GUEST SSID to deny ANY Cert issued by our CA.I know ISE makes this much easier, but I dont have it and need this to work as best we can until next fiscal cycle..
	View 3 Replies
    View Related
  
    
	
    	
    	
        May 7, 2013
        I've been asked to generate some report data on a specific WLAN, a limited access WLAN that was added recently. We need to be able to report on "Average and Peak Number of clients (Total)" and "Total Bytes Transferred (all  APs)" on a per site basis. The sites involved mainly use 4402 and 5508 WLCs managed by our WCS server. Is there anything on WCS where we can easily get this information (on a monthly basis).
	View 1 Replies
    View Related
  
    
	
    	
    	
        Nov 8, 2012
        I have a WLC 5508 with half a dozen LAPs (AIR-CAP3502I-E-K9).They have been working but sometimes clients detect conectivity problems with the wlan.Here is the message log I can obtain from the controller:
	View 1 Replies
    View Related
  
    
	
    	
    	
        Aug 8, 2012
        I am trying to apply WLAN template from NCS to two WLCs 5508 and I receive this message."Another WLAN with same SSID and either WPA1/ WPA2/ WPA1+WPA2 is enabled. Please change the Layer 2 security policy."The template has layer 2 security with WPA+WPA2 enable and 802.1x.I have other WLAN template with other name and other SSID with the same security policies with no problem to apply.
	View 2 Replies
    View Related
  
    
	
    	
    	
        Jun 12, 2013
        Is there any way to determine how much bandwith users on a particular WLAN (Guest) are using on the 5508 or by any other means? 
	View 9 Replies
    View Related
  
    
	
    	
    	
        Feb 6, 2012
        I'm about to upgrade a 5508 controller so I can do the pre-download to the access points, but in every doc I find, it says to disable the WLAN's before upgrading.  This makes no sense.  I'm just moving code over, why do I have to disrupt my wireless network in order to move code?
	View 7 Replies
    View Related
  
    
	
    	
    	
        Jul 2, 2011
        I have one wlc 5508 running on latest IOS 7.116, there is one wlan abc which i have disable status and disable broadcast, but randomly still i can see from wlc dashboard there is one client connected to this wlan abc. The moment i check on the client details, there is no client connected to that wlan and when return to dashboard, no more client connected to that wlan abc.
	View 3 Replies
    View Related
  
    
	
    	
    	
        Dec 12, 2011
        We’ve recently installed a 5508 w LAN controller for my organization wireless network and each time devices connect to this wireless network they receive an ip conflict error. All devices conflict with the ip address of IP address 0.0.0.0 with mac address 00-00-00-00-00-00.
All devices event viewer has this TCP error: “The system detected an address conflict for IP address 0.0.0.0 with the system having network hardware address 00-00-00-00-00-00. Network operations on this system may be disrupted as a result.” We previously experienced the same ip conflict with 12000 w LAN network that he had used as proof of concept.
	View 13 Replies
    View Related
  
    
	
    	
    	
        Sep 5, 2012
        We are implementing a new corporate headquarters and have bought a Cisco 5508.  I have two connections plugged into the 5508 in ports 1 and port 2.  Port 1 is for all internally wireless networks and connects to our core 6500 and use an external DHCP server scopes.  Port 2 is for our guest WLAN and connects directly to a public network switch in front of (outside) the firewall.  For the guest network, I have setup a vlan on the controller for dhcp and the interface setup to that vlan and dhcp scope built on the controller. how or can I NAT the internally addressing for the guest network to  the public IP address on the controller.  Essentially I want to drop of guest network traffic outside the firewall and not have to deal with setting up the firewall for any aspect of guest network traffic. 
	View 1 Replies
    View Related
  
    
	
    	
    	
        Sep 26, 2012
        On a wlc 5508-7.0.116, can I set up 2 ssids that map to one wlan/vlan/subnet. I thought you could but I don't have the means to test without breaking production.
 
My goal is this:
 
Ssid red open
Ssid blue wpa 2
 
But all clients on the same ip subnet
	View 3 Replies
    View Related
  
    
	
    	
    	
        Jan 1, 2013
        I have Cisco 5508 Wlan Controller Software version 7.2.103.0 and I have Cisco AIR-CAP3602I-E-K9 Lightweight Access Points network and its working fine now I want to configure the Repeater in this network.  Because there is one area we cannot layout the cable.  How to add the repeater and how to configure the repeater in wlan controller network.
 
Do i need the change the software of Wlan Controller to support Mesh Network or this version 7.2.103.0 can support the repeater because for 1 access point i dont want to upgrade the version.
	View 22 Replies
    View Related
  
    
	
    	
    	
        Jun 28, 2011
        I have 350 WAP (1142n) running of two WLC 5508 (IOS version 7). WLCs are not located on the same subnets/locations and are not configured as mobility groups. The vlan ids on both wlcs are not identical.
[Code].....
	View 6 Replies
    View Related
  
    
	
    	
    	
        Mar 4, 2012
        I've got a couple new 5508 controllers to replace my 4404's.  Im wondering though if I throw them on the network to setup, will there be any conflict with the current access points?  Will they try and join the new controllers for any reason automatically?  Is there a better way, or a best practice to provision these new controllers? 
	View 3 Replies
    View Related
  
    
	
    	
    	
        Mar 15, 2013
        I have Cisco 5508 WLAN controller v7.4 and i have lap 1310 and it is not joining to this lan controller.  What to do?  How to join this lap to this lan controller? or how to convert it to autonomous because i dont find mode button on this access point?
	View 6 Replies
    View Related
  
    
	
    	
    	
        Feb 10, 2013
        I have Cisco 5508 Wlan Controller and its having 6 Fiber Ports  and I have AIR-LAP1131AG-E-K9 Access Point.  Can this Access Point will work with this Lan Controller?  Can i connect 3 switches to this wlan controller?
	View 1 Replies
    View Related
  
    
	
    	
    	
        Aug 6, 2012
        I have a wlc 5508 and I'd like to setup a network for visitors. They will connect to the WLAN, enter a password and then automatically get redirected to an external website. I understand the wlc 5508 supports this but I'm struggling to find out how to set this up I assume this can be done without having to customise webauth bundles?
	View 2 Replies
    View Related
  
    
	
    	
    	
        Jan 15, 2013
        I've seen a discussion about importing mac addresses into the mac filter db on a cisco controller but is there a way to export the mac filter db?  I have a Cisco 5508. 
	View 2 Replies
    View Related
  
    
	
    	
    	
        Dec 4, 2012
        I would like to set a time limit for how long a client can be continously connected to the WLAN that provides my guest internet access. The user name/password is hosted on my ACS and authentication is provided by my Cisco NAC. I am using 5508 controllers (7.02) and WCS.
 
Somewhere in this combination of stuff, there has to be a way to set a two hour time limit.
	View 7 Replies
    View Related
  
    
	
    	
    	
        Apr 28, 2013
        We have 5508 controller (redundant) & would like to configure Staff vlan to get authenticate with active directory.i am new to the controller device & want to configure controller with active directory (windows 2012). 
 
5508 controller (Active & Standby) with 48 Access Point.(configuration Done) Guest Vlan (only for internet Access) controller based web authentication configured.
Staff Vlan   ( inside & outside ). Need to configure with LDAP authentication?
	View 9 Replies
    View Related
  
    
	
    	
    	
        Apr 23, 2013
        What is the latest IOS version for the WLan Controller 5508 ?
 
Actually I am using, Software Version7.3.102.0 
 
I see the following at Cisco website: 
Latest Releases
7.2.115.1(ED)7.3.112.0(ED)
7.0.240.0(ED)
7.4.100.0(ED)
	View 1 Replies
    View Related
  
    
	
    	
    	
        Feb 24, 2013
         We had our wireless mesh network running with 4400 Controller and 1510 A.Ps. Now that we have bought new 5508 Controller (with SW: 7.2) and 3600 Indoor APs, we are unable to add legacy APs on our new controller. After a wild googling I have found that for 1510 APs i need to be on SW ver: 4.0. But that will lead into another situation i-e I wont be able to have my 3600 APs on WLAN Controller.
	View 1 Replies
    View Related
  
    
	
    	
    	
        Mar 17, 2013
        We have some older Honeywell Dolphin 7900 Series Handhelds that have issues with wireless communication.  Very unreliable communication.  One recommendation from Honeywell is to disable the G standard and only allow B.  Basically have a WLAN that is solely b radio enabled.  I see that their are options to go B/G only or A only, but no options in the radio policy to go B only.
We are using WCS 7.0.240 and the controller is a WLC 5508 running the same code revision.  
 
Is this doable on a single WLAN while leaving G available on other WLAN's?
	View 4 Replies
    View Related
  
    
	
    	
    	
        Mar 14, 2013
        We use WLC 5508 with 7.4. We tried to set max allowed clients per AP radio to 30 through GUI. We have APs with 80 clients associeted though. 
 
When entering config wlan max-associated-clients max-clients wlan-id we got  
 
"WLAN/Guest-Lan/remote-lan is enabled. disable to configure max associated clients."
 
GUI doesn't show that message, should it?  In GUI, Is it necesary to disable WLAN before too?
	View 3 Replies
    View Related
  
    
	
    	
    	
        Aug 1, 2012
        I've been asked to create 2 wireless networks for guest access. They are to be used by clients of 2 different companies and they have asked for the website of each company to automatically open as a landing page. e.g.
-WLAN1 - password is companyname1 - landing page = www.companyname1.com
-WLAN2 - password is companyname2 - landing page = www.companyname2.com
Is this possible with our 5508 WLC? I have googled it and can see that you can set a web auth page but I need different landing pages depending on which WLAN is connected to.
	View 11 Replies
    View Related
  
    
	
    	
    	
        Dec 26, 2011
        Is it possible to use Cisco Band Select on a Cisco 5508 WLAN controller and still disable the 802.11b data rates?
	View 2 Replies
    View Related
  
    
	
    	
    	
        Sep 18, 2011
        Since I moved our WLC Controller ( 5508 ) from Version 7.0 to Version 7.2.111.3 I got above failure messages. Until now I changed the radius timeout from 2 to 10 seconds and also I disabled the aggressive failover without success. What else it could be ?
	View 3 Replies
    View Related
  
    
	
    	
    	
        Aug 28, 2011
        We're looking at deploying both office extend and also a guest wlan. Both would require a WLC in the DMZ.My question is can one 5508 WLC be both a guest anchor and have office extend APs on it at the same time?
	View 2 Replies
    View Related
  
    
	
    	
    	
        Oct 2, 2011
        Looking to add time of day restrictions to our Guest WLAN that is currently in its pilot phase.
 
Is there a way to config time of day access to a WLAN ?
	View 7 Replies
    View Related
  
    
	
    	
    	
        Mar 16, 2013
        I have cisco 5508 wlan controller with 8 ports can i connect 8 switches on these port.  If i connect what will be configuration to work all these ports because only port 1 is working if i connect to switch remaining ports when i connect status showing is enable but not working.  
	View 2 Replies
    View Related