I have installed/setup a cisco 2504 wireless controller and 3 aironet 1142 access points using the basic config on a windows sbs 2008 domain, the problem is that the clients that are connected to the 2504 aint getting the there ip addr from the AD but from the wireless controller, and there cant reach the clients on wifi from the clients that are connected to lan, is there anyway that i cant change this so that a client on lan can see the client on wlan and vice versa.
When I check the AP join statistics I see the following: Reason For Last Unsuccessful Attempt RADIUS authorization is pending for the AP, I don't run a radius server and don't know how to get around this so that the device can join.
I've recently purchased a 2504 Wireless controller, and I have 10 2600 APs to deploy. I think I've set up the wireless controller OK - there doesn't seem to be much that needs to be done! But I just can't seem to register an AP onto the system.
Just to briefly outline what I have done, I have connected to the Wireless Controller via terminal emulator and run through the setup, then I have connected OK to the web interface, and I am able to view and amend the controller's configuration. So I have setup a WLAN and thats about it.
Next up I have powered on one of my 2600 APs, and I am able to view it working via terminal emulator again. But I am seeing it continually running the same routine to connect to a controller, and all the time it just fails. Below is what I am seeing.
One thing that I am unsure about is that I am unable to connect to the AP config pages via web browser, using the IP 192.168.0.97 (although it does ping okay). Is that odd?
And the main question - why doesn't the AP connect to the wireless controller? Do the APs need to be authroized on the controller first? If I check the controller's web interface, under Monitor - Statistics - AP Join, I can see the AP listed with Status "Not Joined" but I don't know what I need to do to make it join!
*Mar 1 02:28:54.579: %CAPWAP-3-DHCP_RENEW: Could not discover WLC using DHCP IP. Renewing DHCP IP.*Mar 1 02:28:57.583: %CAPWAP-3-ERRORLOG: Invalid event 38 & state 2 combination.*Mar 1 02:28:57.651: %DHCP-6-ADDRESS_ASSIGN: Interface BVI1 assigned DHCP address 192.168.0.97, mask 255.255.255.0, hostname APb0fa.eb56.5abf(code)
Access points 1142 controller 5508 running code 18.104.22.168 When you set the access point port speed with "config ap duplex full speed 1000 all" the access points leave the controlle and do not rejoin. I have had to reset the the access points manually with a power down and hold the reset button.
We have purchased Cisco 2504 Wireless Controller (One) and Ciscon 1042 Access Points (Five). At present I am going to use 3 access points only.I have attached a simple diagram of our office network. We have more than 30 VLANs configured in Core Switch, we are planning to give wifi access to only 3 VLANs.
1. VLAN 121 ( IP Segment - 10.52.121.0 /24) 2. VLAN 116 ( IP Segment - 10.52.116.0 /24) 3. VLAN 100 ( IP Segment - 192.168.100.0 /24) (Guest)
I would like to use LDAP or ACS for authentication purpose.
On my Accespoint i have 2 vlans: 1 for my wifi phones and 1 for my network.Wifi Lan has the SSID LAN with WPA enterprise authentication to a radius server(ms server 2008).Wifi Phone has SSID PHONE and vlan 50 with local radius authentication.This Works all fine, Except when i enable AP for my wifi phones. When AP is enabled the authentication for my lan doesn’t go to my server but local.How do I configure my accesspoints so that the cisco phones use the local radius server with AP and my windows computers connect using the ms radius server?
We have multiple Cisco Aironet 1131AG devices, all wired on one Cisco L2 switch(2560) who is connected to L3 switch (3550). We assigned one VLAN for access point in L3 switch who acts as vtp server (L2 switch is vtp client). All ap's will have static ip address and all will have same SSID and no security and they will be using multiple channels (ex. 1,6,11). They will operate in 3 floor building for roaming wireless client. We won't using any wireless controller.
How to configure APs-all the same with different ip's, can we use L3 switch to create dhcp server for access points VLAN (pool for clients, and the rest for static ip for ap's)?
I recently bought 6 airo net 1041N standalone access points for a customer of mine. It's an academy of barely 200 students. I'll be installing an access point in every room, to ensure better signal, since they use video for there classes. The reason why i decided to install an access point in every room is because the walls are armed concrete and they had a terrible experience with a past company in which they spend a lot of money for a antenna system that didn't work.These access points will be connected to a switch, which I have to buy also.Every student is going to bring there own laptops in order to connect to the network.
The reason why I'm writing is because I have a few questions to clarify.
1) What is the best position for better signal, top side wall or corner ceiling?
2) How many client mac address filtering can i do per access point?
3)I plan on doing ESSID but can I mac filter clients to a particular access point or should I mac address filter all permitted devices in all access points. The problem is that students come with iPods and phones and as you know on windows they will be able to see the wpa2 key and enter it on the particular UN-authorized device.
4) Any graphic user interface for configuring these access points or do i have to use Cisco IOS(kind of familiar with it)? (I'm used to GUI)
5)How can I configure these access points, through Ethernet browser or do I have to use console port cable?
6)Do I have to use POE injector or can I connect the access points directly to the switch with PoE and QoS?
7)I was planning on buying a small business switch sg100 d-8 but they recommended me that I should use the catalyst 2960 series, which would be best for handling video data? don't have to be much features, just QoS.
8) Can CCp software be used in these access points?
We have a Cisco 2500 WLC with 136 APs. Recently, we discovered eight APs that were not listed on the Wireless > Access Points > All AP list. These APs were once working and connected, but now they are no longer in the All AP list. I located one of these APs and found the green LED blinking. I power cycled the AP and it came back online with a solid green LED and was then registered on the All AP list. The All AP list will only show the connected APs. I would like to know if there is a method to show the APs that were once connected and are no longer registered so we can better identify when an AP is not working?
We have an MPLS (layer 3) network 4 offices and a Data center. We are planning to install about 10 Access Points(3600 series) per office and have a controller(5508 series) in the Data center.
1- Is this design possible, in other words, just one controller centralizing all Access point traffic in one controller in the Data center?
2- We would like to accomplish this in two phases: A- install access points without controller handling authentication thru Microsoft IAS servers (current configuration with 1200 series) B- Deploy wireless Controller in Data center and start migrating orphan AP to Controllers one office at a time.
We are having 5508 controller with Lightweight access points 1142, IS it possible to disable 802.11a on certain access points before turning it off completely on the controllers?? Could you provide steps for doing so on WCS?
I am using Cisco WLC 2504 for provisioning Wireless Connectivity over my Wired Environment. Have deployed 4 Access Points spanning my entire campus as per Customer Requirements. Created 10 SSIDs for Different Networks. Would like to know if there is any possibility of Broadcasting say a particular SSID XYZ on only two or 3 Access Points and keep broadcast disabled on Others.
integrating the authentication on these SSIDs using Active Directory Domain Credentials.
We recently acquired a 4404 Cisco controller for our network and have been adding our 1200 and 1130 Access points to the controller.This was accomplished by upgrading the APs to LWAPP and then they would automatically be discovered by the controller and then join. Lately, new 1131 APs that have undergone the same process, are not joining the controller. They are discovered but then the close the connection. We are running a flat network so all devices are in the same subnet.Software Version of the controller 22.214.171.124. [code]
If the 2600 series access points are compatible with a 4404 controller running 126.96.36.199 code? I was looking for a compatibilty matrix for the AP to controller to code comparison but couldn't find one.
I have setup guest access on the controller and this is not working at the moment. DHCP server setup on the controller for the Guest users. You are able to connect (get ip address from controller) and the browser gets redirected to 188.8.131.52 but then page can not be displayed instead of the login page.
I have cisco 4402 Wireless LAN Controller with Cisco Access Point (AIR-LAP1252G-E-K9), everything is running smoothly.How come i use my Access Points without Wireless LAN Controller, is there any possibility then which AP model would be suitable?
We are planning to setup a new WLAN using Cisco 2504 WLAN Controller and 1142N Access Point. Is it possible to create individual user accounts for the users those who all are connecting to this WLAN Network by using the 2504 WLAN Controller ?
I have initially configured 2504 controller with necessary parameters. & we have LAP1131AG access Points. we have connected 2 Nos. of access points in network. we are getting Both AP connected with controller,Whenver i am trying to connect with this wireless network though SSID( currently, open authentication), laptop's not connecting with it. it shown error that " Windows was unable to connect to SSIDname "
I would like to buy Cisco Aironet 1260 Access Points, i just want to use them independantly so i want to know do they work without the Wireless LAN Controller? or i have to have the controller for them to work? they will be in different locations so i cant have a controller per each location.
We have two wism2 controllers. We have our access points split on the two controllers. I need to move all of the access points on controller 1 to controller 2 so we can perform maintenance on one if our 6500s. Is there and easy way to force all of the access points off the controller without changing any access point configs? I was hoping I could make a change in the controller in such a way that it would not accept any access points. If I had an ap manager interface I think I could do it but that is long gone now.
We have a 2504 Wireless Controller and it works great!We currently have 6 Access Points (Aironet 1252) connected.We just added the sixth one a few weeks ago and with a properly configured and fully functioning Wireless Controller, it was super easy.Now, I have been assigned to add another Access Point, but at a remote site.The plan is to have up to three or more APs at this remote location and we want them to talk back to the Wireless Controller.We have plenty of licences on our current Wireless Controller.Do do not want to spend the funds for another Wireless Controller and more licenses.
1. How does one manually add a Aironet 1252 to the 2504 Wireless Controller
2. If the AP is on a different subnet than the Wireless Controller, how does one get it registered?
3. The best for last: Can a Aironet 1252 talk to a 2504 Wireless Controller over a WAN link?
Continuous dropping out some of them Access Points registered on the Primary Controller . What is the reason for this. We have a problem the last 2 weeks. What are the causes of falling out controler Access Points. The problem does not appear from logs. 70 LWAPs registered over Primary Controller. All AP mode is Local.
About every 20 minutes 12 of 300 APs keep rebooting. I have tried moving them to different controllers. I have tried downgrading the code and then upgrading the code. I have tried replacing the AP. I have tried swamping out cables. They are all connected to a 3750 stack but plugged into different switches in the stack. Here is the result that I could capture when I saw it disconnect from the controller. This is the output from the AP:
DTLS-5-SEND_ALERT: Send FATAL : Close notify Alert to 10.100.40.212:5246 *Jul 28 14:33:19.595: %WIDS-5-DISABLED: IDS Signature is removed and disabled. *Jul 28 14:33:19.597: %CAPWAP-5-CHANGED: CAPWAP changed state to DISCOVERY *Jul 28 14:33:19.597: %CAPWAP-5-CHANGED: CAPWAP changed state to DISCOVERY *Jul 28 14:33:19.655: %LINK-5-CHANGED: Interface Dot11Radio0, changed state to administratively down [ code].....
I have removed the ip addresses for security reasons.
I have a 1142 that I purchased that needs to be set to factory defaults so that I can configure it. I do an escape at the boot sequence and I get to the
prompt, the reset instructions that Cisco provides says that I should rename the old config.txt and reboot and that I will then be able to start my reconfig. The problem is that I can't find a config.txt file in the flash space:
I configured the device manually, not even using Express Setup or Express Security setup so... it is possible I missed something.Anyway, here's the problem. Although the SSID is configured as "AP1", this SSID does not appear among available networks on the client laptop.
The connection, configured in Group Policy for the client, should actually happen automatically, based on the SSID, but since the SSID is not being broadcast, that connection is failing as well.
The Aironet does appear among the available networks as "Other Network" and if I click on "connect" I am prompted to enter the SSID -> AP1
Although, unexplicably, an error message displays (Windows cannot connect to the network, or something to that effect), the laptop *does* connect once I close that window. Network access is complete and functional - I can ping other hosts, etc..
I'd post screenshots but not knowing what setting is missing or incorrect, I'd have to print dozens. So here's the sh run output of the AP obtained via telnet (just below). This is a test network so all information is "real" (nothing changed for privacy):
Note: I even changed the hostname to "AP1" (it's still LAB1 below) but that did not resolve the problem (did not think it would).
I'm using the Express Security Set-up tab to configure an Aironet 1142 (stand-alone) access point with EAP.
Objective is to make it a RADIUS client and have laptops authenticate through this access point to a Windows 2008 NPS (Network Policy Server) using computer (machine) certificates - EAP-TLS.
When I select "EAP Authentication" under the "SSID Configuration" I was literally floored to see mention of WEP encryption (a security joke) and no possibility to prefer some variant of WPA (well, apparently not with EAP).
WPA2-Enterprise is what I've selected for "Authentication" and "AES" for encryption in Group Policy (so the laptop clients automatically connect to the access point).
WEP? I bought a Aironet 1142 access point for WEP encryption? How can I configure this securely?
These are currently configured settings as displayed under the "SSID Table" heading: