If I am to add the Self-generated certificate of my new CAS to my existing CAM's trusted certificate authorities list, will it just be added or will it replace the existing trusted certificate?
View 4 RepliesHow can we restore ACS config from an existing backup file, in an ACS cluster deployment? is it through CLI? with"restore"or"acs restore" command? and should I restore only the ACS config or both ACS and ADE-OS config?
View 4 Replies View Relatedive got 2 laptops on my wireless network and have just bought a pc. it dosnt seem to be finding my connection so i cannot get it onto my wireless network?
View 1 Replies View Relatedhow many Gigabit port will be supported by Cisco 7206VXR with G1 engine model. By deault we hot 3 GE, is it possible to add additional Gigabit ports with the existing hardware.
View 3 Replies View RelatedI would like to know how to implement high availability on a S160 ironport device.i have two S160 device but the user guide is not useful.
View 1 Replies View RelatedI was given a 510 PIX Ver 6.3(1)to reconfigure but have no information on the existing configuration and need to wipe it clean and start over how can I do this to get back to the factory default settings. I have tried the "monitor>" but I don't know the IP address of the PIX interface.and am not sure how to do the setup for recovering the password.
View 7 Replies View RelatedWe have the acs server which has the ssl certficate(certifcate authority) running in acs 3.2 windows version for eap-tls enduser authentication.
We want the same to be migrated to acs 4.2(appliance) application. I have tried in different ways to push the certificate but i couldn't.
I have tried Thru System Configuration --> ACS Certificate Setup --> Install ACS certificate --> Download certficate file In that i have mentioned the FTP server IP address, credentials, path and file name
But if i submit the request its giving the directory not found or credentials wrong.
In FTP logs its showing like this
Apr 15, 2011 19:41:55 Session 4, Peer 10.190.249.40 PASS welcome2acsApr 15, 2011 19:41:55 Session 4, Peer 10.190.249.40 230 User logged inApr 15, 2011 19:41:55 Session 4, Peer 10.190.249.40 FTP: Login successfulApr 15, 2011 19:41:55 Session 4, Peer
[Code].....
how to migrate the db from acs windows 3.3 to acs appliance 4.2.15.We are replacing win 3.3 to appliance 4.2.15 as a part of end of life. So we have the eap-tls/peap authentication.It has the huge records. So suggest me the steps to migrate the db from win 3.3 to appl 4.2.15.Do we need to upgrade to win 3.3 to win 4.0 to win 4.2 & then to migrate to appl 4.2 ?
View 4 Replies View RelatedI have an existing VPN tunnel from my branch office to corporate.I want to allow my employees to establish a VPN connection to our local branch office where we have a local server, and not go through the corporate office.Can I set up a direct VPN connection to my router/ firewall at the branch office, even when there is a VPN tunnel already connected between my office and corporate?
View 1 Replies View RelatedI have an existing wireless working network with WIN 7 - 2 laptops, two desktop PC's. Can I add a security code/password without setting up a new network?
View 1 Replies View RelatedI am currently testing Energywise deployment on LMS 4.0 with the 3 month evaluation. I am running into some issues and have some other queries that i cant find documented or on the forum.i have gone through the prep and upgraded 2 switches through lms which has been successful. i have created my domain, grouped some test endpoints and have been able to push this config out to the switches.I created a policy and have tried to push this out to endpoints but the job keeps failing. there is no error detail on the job failure task. i see that it uses protocol "EnergyWise Domain Query" and not netconfig which lms used to push out initial config? Is there somewhere in the logs i can check what is failing?I know i can apply this manually on the switch but i want to see if i can get lms to do this as i may be something one of our customers may use.
View 1 Replies View RelatedWe are currently using Cisco VPN Client. I'm looking to migrate to Cisco Any Connect. Our ASA 5520 has 750 IPSec and 2 SSL license. I also have approximately 40 IPSec site to site VPN's on this. ,Will anyconnect interfere with the site to site tunnels?,If I setup anyconnect with the IPSec instead of SSL do I still need to purchase the premium or essentials license?,Lets say if I do have to get the license and I get essentials will it cause any issues with the site to site VPNs?
View 2 Replies View RelatedI have a custom that needs to deploy a wireless solution, in attach plan, does not want a solution with WLAN controller.I proposed a solution with AIR-AP1024N-E-K9. What solution should implement in order to have a good coverage? Repeater, bridge point-to-point, point-to-multipoint, or something else ?
View 7 Replies View RelatedMy customer has this OOOLD deployment where some AP1231 are still working they are upgrading part of the WLAN to LWAPP but may need to leave some AP in stan alone for a while.I need to configure a new SSID that needs WPA2 enterprise AES but it seems that this version does not support WPA2. If it doesn't, from what version on is supported?
View 9 Replies View RelatedI have a question about my ACS redundancy deployment. I bought three ACS all of them came with base license. but i bought large deployment license my question is necesary to buy the large deployment license to add two seconday ACS to my Primary ACS ? now if I install the large deployment in my primary ACS it replique to other ACS or I have to install first the large deployment one by one (secondary ACS) before to join to the Primary ACS.
View 1 Replies View RelatedI have this Wireless deployment :
Main Site: WLC AIR-CT5508-50-K9
WCS 6.x for 50 APs
(32 ) AP 1140
02 Remote Sites : 03 AP 1140 using H-REAP
Now, my company is considering to implement a wIPS solution, so i planned to install in the Main Site a MSE3300 and (01) AP 3500e as a wIPS AP Monitor in the remote sites,
Need to confirm:
A) Can an AP3500 work with HREAP and as wIPS monitor AP at the same time? or in other words, if it is possible to have an AP wIPS monitor far away from the WLC (over the WAN)?
B) What are the requirements of WAN link if I want to install a Centralized MSE 330 Engine,which perform the wIPS solution in all the network.
I've been asked to implement a point to multipoint solution which I had never done before.My question is how many non roots can the root support?I am planning to use 1310 bride as root with a AIR-ANT24120 and non roots AP1242 with AIR-ANT2410Y-R they wont be longer than 1 km.
View 2 Replies View RelatedI search at all cisco pages about support of VSS quad supervisor 2T support.Even relase notes, q&a etc. But until now I don’t found any pros or contra. Customer use the newest IOS 15.1.1-SY Customer uses already several system with quad sup720, has also experience.Customers actual state is:With quad sup 2T the 2nd sup2t of each VSS-chassis drops in rommon.Without VSS the same sup2t comes up either as active or standby!
View 2 Replies View RelatedACE 4710 deployment model. We'll be doing an eval later in the year, but I'm just looking to understand the architecture.We have a stack of 3750 switches with a single VLAN (10.1.1.0/24). Connected to that stack is a pair of web servers (10.1.1.5 and 6) that we want to provide load balancing/failover for. Some of the clients are located right there on that same VLAN. Other clients may be coming from other spots in the infrastructure.It sounds like I could put a pair of 4710s connected to that stack of switches, in a single arm deployment? And then the virtual IP and the real servers would all be 10.1.1.0/24. Maybe use an etherchanel to connect each 4710 to two 3750s?
View 9 Replies View RelatedI am having access point 1240AG and planning to deploy ISE as a exteral radius server. I would like to know how different authorization policy need to configure in AP/ISE. Whether I can use named ACL or VLANs (CoA) as a enforcement types without use of WLC. If yes then how?
View 10 Replies View Relatedi have 4 X ACS-1120. Each 2 are operating as an Primary and backup. I want to add a license in order for the ACS to support more than 500 networks which includes in the base license.As I understand this is the license required : L-CSACS-5-LRG-LIC=
·
Is this license applicable to ACS-1120 appliance with ver 5.2 ? – I understand that it is. for my scenario, do I need to purchase total of 2 X L-CSACS-5-LRG-LIC= (one for each environment, one license will serve 2 X ACS in Primary and Backup) or I need to purchase 4 licenses each for each ACS ? – I understand that one license will serve deployment of two ACS in primary and active scenario.
I already have large deployment add-on license. I also have 3 ACS Servers. Now, my primary ACS server is now up and my two secondary ACS server will be put up soon.
Just want to ask, when should be the large deployment add-on license be loaded? Can I load it to my primary ACS server eventhough my secondary servers are still not up? Or should I load it to my primary ACS server when my two secondary servers are already up?
I am implementating wlc 2504 and 1520 ap,i installated wlc and ap are got registered. In WLC i changed parameter as RAP and MAP.
As per doucment i have to enable Zero touch configuration in bridging. But bridging option is not their in wlc, wlc is running on 7.0.220
I have read in some documents that we should have one Ap for more or less 50 clients. But i also read for example in ap 2600 specs that it support maximum 200 connections per radio.So for example in a conference room (10mx5meter) for 150 users in theory can i have just on Ap2600 for web surfing or i should have 3?
View 14 Replies View RelatedWe have instructed our user community to start their VPN sessions by connecting to our ASA 5520 with a browser to download (if necessary) and initiate the Anyconnect essentials VPN client. Everything was working fine until a few days ago.
We have had several people report the same problem. They connect with the browser, enter their login information and are greeted with our "authorized use only" message by the ASA. Then, instead of downloading (if necessary) and starting the VPN client software, the web page just goes back to the login prompt without displaying any error message. The client software is never downloaded or started.
We've been able to work around this by installing the client software manually (where necessary) and starting the VPN client from the start menu. However, this isn't our preferred solution because this method won't have them automatically picking up updated versions of the VPN client.
We have seen this behavior before when there was a pending Java update that had not been applied. However, that doesn't seem to be the case this time. Clients have recently updated to IE9, but I have personnally been running the Anyconnect client and launching through IE9 for months.
I have recovered some configuration files from my 2950 switches with the Configuration Archive Tool in LMS.
Now, I'd like to replace my old 2950s by 2960 switches, which have the same number of ports.
Will there be any issue if I copy the exact same config from 2950 to 2960 ? Will some features not work or is everything interoperable ? Here's an extract of the config :
Global
version 12.1
no service pad
service timestamps debug date time
service timestamps log date time
no service password-encryption
[ code]....
I am in the process of deploying an additional Cisco 1142 AP into my network. I would like to set it up to be the same SSID as the first one, and be able to have laptops roam from AP to AP. I am simply trying to expand the current coverage of my wireless network. I have both APs mounted and access to both.
-CISCOAP01 - 192.168.2.2
-CISCOAP02 - 192.168.2.3
What do I need to do (configre) to make this happen? I am rather new with Cicso. I am using the web interface to setup the APs. The first one has been up and running for about a year now with no problems. [code]
WDS allows you to capture and deploy images on a network to client pcs. I Was wondering how many images wds allows you to capture and deploy and if there were any work a-rounds that would allow you to deploy more.
View 1 Replies View RelatedI currently work for an enterprise that want to deploy wireless network (6AP for now) and I'm the one who will manage and install it.I had initially planed to deploy Ubiquiti network because I've heard lot of good thing about them. But they did not wait me and bought (crappy?) HP access point (MSM410)
What do you think about HP wireless network ? They did not yet buy the access point controller and I'm not sure they want to buy one.I can't find any review on the HP solutions it looks like no one is using it.
Do you recommend me to continue with the HP solution and buy a HP controller or go with Ubiquiti and rebuy the access points (no so much expensive in comparison with the price of the HP controller alone)
I am going to deploy Cisco ISE with WLC 5500. I have two kinds of users one for which I want to deploy just open access Wi-Fi network, without working with Cisco ISE and Second group of Users for which I want to deploy Cisco ISE services like advanced authentication, posture and profiling. For both users I have just one WLC. Is there any problem to just deploy two SSID one for open access (without Cisco ISE) and second Secure with Cisco ISE ?
View 5 Replies View RelatedWe currently have an existing 6506 in data center that we want to add another 6506 to and do a VSS implementation.I'm trying to minimize down time so our current basic plan was to do the following:
1. Bring up the new 6506 and configure it for VSS
2. Trunk a port between the new 6506 and the production 6506
3. Physicall move connections from the production 6506 to the newly connected VSS switch
4. After all physical ports have been moved, power off the original 6506 swap the supvisor card out for the new 2T Sup card
5. Configure original 6506 for the virtual domain and then connect the VSL's.
According to the documentation, to run "switch convert mode virtual" the standby unit has to be in hot standby. This means I can't run this prior to moving the connections over, which means once I run "switch convert mode virtual" it will reboot the switches (~ 9 minutes of down time). Is there anyway around this?
Is Cisco WCS mandatory when deploying an outdoor enterprise mesh solution?If I am goin to use the 1552E purely as an outdoor access point ,do I really need the Cisco WCS?
View 2 Replies View RelatedDoes Cisco have an official number of how many AP541s are supported directly by a UC560? these are standalones and I know they are configured in a max of 10 to a cluster, but how many clusters can you have? We are looking at a hospital installation with one UC560 and 25 AP541s.
View 2 Replies View Related