I have created new ssid and i want to associate only one IP address with this SSID, so that only this user will be allowed to connect to AP. I have controller 5500 series.
View 6 Replies
Is it configurable to allow wifi user to user traffic on WLC 5508?
View 4 Replies View RelatedI have one room within which clients have problems associating.When using AirMagnet however one of the AP s appears to have the strongest S/n Ratio and overall signal strenght.I would have thought that would be the obvious AP for clients to associate with.However that is not the case and the users are trying to associate with various APs with lesser signal strengths. None of them have 100 % utilisation and if they all tryed to associate with the AP with the strongest signal that would alleviate the existing association problems. We are using AIR-CAP3502E-E-K9 with WCS 5500.
View 2 Replies View RelatedWe have a CISCO WLAN in place with several SSIDs including one on the Voice VLAN. We need to add an additional one using CCKM due to wireless phone roaming issues. Does adding a new SSID to the WLAN cause any outage whatsoever? We are in an environment where even a small amount down time is not acceptable.
We are using two 5500 controllers with hundreds of LAP1142N
I would like to ask some question on WLAN technology, which I using WiSM version 2. And i get requirement that user must be restrict with SSID, so, i found that it can do it on ACS version 4.x via NAR for SSID-based authentication feature. Then, is it possible to do restriction on ACS Version 5.x?
View 4 Replies View RelatedI have manually configured the E2000 and set the admin password. When I was trying to log back in, I could not. I reset and reconfigured and set the password again. I still could not log in using "admin" and the password I set up. I thought I was losing my mind. Just on a hunch, I used the SSID name instead of "admin", then entered the password that worked. I am able to login, but I need the username to be admin, not the SSID. Has anyine else had this issue? Any way to change the administrator name back to admin??
View 5 Replies View RelatedWe have been deploying 3502 APs remotely to locations with full T1s that backhaul to where I sit at HQ. Both the foreign and anchor controller are here at my location.
I am seeking to rate limit per user the bandwidth each client will get on the guest internet ssid. As you know this traffic is encapsulated in capwap between the AP and the controller so I cant use a standard ACL on the switch or router.
We are trying to keep the guest internet access usage in check on the T1 at any given site so the other ssid's & local lan traffic is not overly competing for the bandwidth.
I found the place to edit the default profiles in the controller but the documentation really isnt clear on best practices.
So I put it to you my fellow wireless engineers to suggest how you are implementing bandwidth management on your wireless guest internet.
Oh and here is my hardware & software levels.
5508wlc - forgeign
4402wlc - anchor
Software Version7.0.230.0
I have been searching but unfortunately not successful in finding appropriate documentation on how to configure the ASA such that a user using AnyConnect SSL VPN client is prompted for their username + AD credentials + RSA SecurID token (all three must be presented/entered by the user) in separate fields before the VPN tunnel is established. On latest version of AnyConnect (3.1) and ASA version 9.x on 5500-X.
View 1 Replies View RelatedWhat is the command for creating a user on an ASA 5500 running 7.2(3) that can only view the config but not make any changes?
View 8 Replies View Relatedwe have the following situation:
- 2 x WLC 5508 with about 80 - 120 access points (Aironet 3500) each
- 7 x WLAN's with different security settings
- 2 x ACS 5.3
On one WLAN we have the problem, that the students with their own laptops have to enter their AD username about 4-5 time, until they get a successfull 802.1x authentication. The WLAN has the following configuration:
- Hidden SSID
- Only 802.11b/g
- Interface assigned via AP Groups
- WPA2 / AES with 802.1x or CCKM (here I could only allow 802.1x, the clients do not need fast secure roaming)
- Authentication via ACS 5.3 and PEAP
- for more details see screenshots below
Most of the time I can't see any 802.1x authentication attemps on the ACS View, but when there are entries, they are successfull. So in my opinion I think there has to be a problem on WLC side, but I don't know where to search further. We already deactivated the client load balancing in the WLAN, because at the beginning the customer wanted to activate that - but it was clear that there are a lot of clients which had to authenticate multiple times.I know there were some bugs in the 7.0 train, so I upgraded finaly to 7.0.235.0 to overcome this bug here: CSCty07036.To fix the other bug (CSCtt70290) I just disabled all the session timeouts on the different WLAN's.
I need know how many clients can associate for this AP model
AIR-CAP3502I-A-K9
AIR-LAP1131G-A-K9
I have 45 clients currently associated with each AP.
I am trying to have both my laptop and brother HL-3070CW printer, wirelessly connect. I go through the entire setup process and all is well. Until the end. It tells me that my security settings are incorrect. Therefore the wireless link status has failed to associate.
View 1 Replies View RelatedI am testing our new wireless network using 1 Cisco 2504 wireless controller with 5 licenses 4 Cisco Air LAP 1142N Access Point I configured it very simple for testing There is only one interface and vlan is untaggetd There is also only one WLAN with one SSID Currently security setting is WPA + WPA2 + PSK (I also tested with no security setup) Wlan session time is diabled and controller user idle timeout is set to 1000000 (Max)AP boot version is 12.4.23.3 and ISO version is 12.4(23c)JA3 Problem is clinet(iphone) does not automatically associate with 1142N Access Point even after it learned network. Phone has to be authenticated again to connect to network same iphone can automatically associate with old 1220 Access point but not with New AP if I urn off and turn back on wifi from iphone, it does see the network but does not connect but I have to manually reconnect to it with password I want iphone to connect known network without reauthentication process after iphone's wifi function is turn on?
View 24 Replies View Relatedmost of my wireless clients are associating to one ap when there are ap's closer. do i have some setting configured wrong on my controllers?
View 1 Replies View RelatedIs it possible to rename the default webauthentication URL from [URL] to something like [URL]. We are running on 7.0.98.0, is it possible to do http for web authentication and https for Mgmt access if we upgrade the controller software?
We configured our guest wireless with no layer 2 authetication so users can associate with an AP and get an ip adress but they can't go anywhere unless they have a valid username and password(web authentication) - does this affect the performance of an AP since there will be many people associated with each AP, is there any setting in the WLC to de associate a client from an AP if its idle for certain time.
I have 10 Access-Point model 1131 AG are new AP.
When I connect the access-Point to the network, the AP associate only one time but i go to wireless for see the AP, i can see downloading of IOS, but the ios is 3.0.59, the ap don not nothing. I can not change any parameters.
I just installed a WAP321. I literally configured a test SSID, implemented WPA Personal security, and could not get an iPad or Blackberry to associate with the network. The error message that appears in the Blackberry is "EAP Authentication Failed". But isn't EAP applicable only to the WPA Enterprise mode? The access point works fine if I have the test SSID without any security, but as soon as I turn on WPA Personal security, nothing can connect. Is there something really obvious I'm missing here?(When I select WPA Personal security, I have tried with just the "WPA2" version and "AES" cipher selected, as well as with check boxes ticked on both WPA/WPA2, and on both TKIP/AES. Neither works.)
View 8 Replies View RelatedI have a 5508 WLC licensed for 100 APs. I have 1 - 1042 LAP connected for testing. I have DHCP configured for the AP, and it gets an address of 192.168.254.100/24 - the controller's management interface is 192.168.254.99/24. I can see that the AP is getting an IP and I can ping it from the controller. However, I simply do not see the AP associating. I enabled capwap debiugging and watched the events, but I didn't see anything crazy that clued me in. What am I doing wrong?
The controller is v6.0.199.4
Every time I have set these up in the past they have been pretty straight forward. I haven't gotten too deep into the config on the WLC becuase I don't want to cause more issues.
I have upgraded my WLC 5508 from 7.0 to 7.4 and the AP 1310 no longer can associate to WLC.
Seems that the AP doesn't work with WLC ver 7.4
Except changing these APs to autonomous mode, any other alternatives?
Besides, if we change them to autonomous mode, can Prime Infrastructure manage/monitor these APs?
We have other APs that associate w/o issue AIR-LAP1141N-A-K9. However our 1 1310 is having issues.. The Controller log shows:
2012-08-29 21:16:51 local0.error 172.16.10.70 ITCNJ1WC01: *spamApTask0: Aug 28 21:17:15.038: %LWAPP-3-DECRYPT_ERR5: spam_crypto.c:293 Error decrypting packet (using old key) from AP d4:8c:b5:15:3c:04 (session identifier a3ddb9c5)
2012-08-29 21:17:33 local0.error 172.16.10.70 ITCNJ1WC01: *spamApTask0: Aug 28 21:17:17.037: %LWAPP-3-DECRYPT_ERR: spam_lrad.c:3642 The system is unable to decrypt image data message; AP d4:8c:b5:15:3c:04
2012-08-29 21:17:33 local0.error 172.16.10.70 ITCNJ1WC01: *spamApTask0: Aug 28 21:17:17.037: %LWAPP-3-DECRYPT_ERR: spam_crypto.c:735 The system is unable to decrypt LWAPP packet; AP d4:8c:b5:15:3c:04
[code]....
I have just installed 3 access points along with 6 repeater access points all running V12.4. They are all AIR-AP1242AG-E-K9 using the 2.4GHz radio.
Prior to installation I bench tested that the repeaters would associate with the access points and if one of the access points was turned off the repeaters would automatically roam to another access point. I did not have all 9 devices powered up at the same time, but did have 2 repeaters and 2 access points powered up to simulate association and roaming.
During installation as access points and repeaters were powered up everything behaved as expected (repeaters were associating to access points etc.) however during installation once everything was installed the 3 access points were all powered down for half an hour or so and once powered back on the repeaters did not automatically re-associate until they were re-booted.
I have now configured the repaters with parent MAC addresses to reflect the above current assocaition pattern but not yet powered off the access points to test if this forces re-association as this is now a live operational site!!
Is it normal to have to re-boot the repeaters if ALL 3 access points are powered down at the same time? i.e. If only one access point is powered down will the repeaters automaically roam to another access point o.k.?
have a problem with my EA6500 router. I can't connect to the internet, the connexion works fine. But, everytime i go on the smart wifi login page, i enter my login and password and then i'm asked to download the software for my EA6500 and to associate it with my account. The problem is that i just can't update it manually because i couldn't ever go on the tools page. Never.So i'm here with a great router but i can't configure it. I asked the support service several times but they always asked me to reset the router. Nothing changes.I 'm still unable to process after the login page, i have created a account successfully, i can login but everytime i just get stucked at " Associate your router with your account" page. My only options there is to click on OKAY or a link to download the firmware on Linksys support. I get the firmware but i can't install it because i can't go in the administrative page.
View 4 Replies View RelatedI have configured my new EA2700 successfully, upgraded the firmware to Smart Wi-Fi, can access it locally and configure anything as expected.
However, when I log on with my (validated) Smart Wi-Fi account, I am always stuck at this page (see screenshot below):
- Logon to [URL] works fine
- The I am redirected to this page
- Now I can only click OK
- Logon again to [URL] --> start over again...
The firmware is the latest version 1.1.39.145204 and no other updates are found. I tried IE and Firefox --> same result.
My desktop can go to internet with ethernet wire on. After installing wireless adaptor driver, the adaptor shows green solid light on 'power' and blinking light on 'Link'. The Linksys icon shows 'Cannot associate with the access point'. I called Verizon and was told that the adaptor might have problem. I want to know if really the adaptor's problem or the adaptor installation problem.
View 1 Replies View RelatedI just setup my new Cisco EA4500 and upgraded to latest firmware and signed up for my account.Local access to the router works fine and I see the Smart Wi-Fi admin/config interface However when I try to go to the following site: url...To access Linksys Smart Wi-Fi Tools, your router <em>requires</em> the <a href="url...Series Linksys Smart Wi-Fi Firmware</a> and you will need to associate your router with your Linksys Smart Wi-Fi account.On a computer or device connected to your router, open url... and follow the instructions. This requires that you enter the router password so have that ready.
However I see no way to perform the association step - my account exists and my router is configured.I am doing all this behind this router wi-fi network not remotely.
Is it possible to assign a single ssid to multiple interface groups by assigning the ssid to multiple AP groups?
I have buildings geographically dispersed that are configured with multiple vlans in interface groups so that I can maintain an addressing scheme of dhcp assigned addresses per building. Each building is also further grouped as AP groups. I'd like to know if by assigning the same wlan ssid to each of the AP groups, will I maintain addressing integrity for each building? I'm thinking it will work.
Do the buildings have to be outside AP range of each other to avoid problems?
5508 controller
7.2.110.0 code
6 buildings
6 interface groups
1 ssid
i got the problem with 1300 bridges,root bridge with omni antenna and non root with sector antenna , it can associate and can pin each other , but whenever i try to browse several web pages its get timed out and radio was down.
View 5 Replies View RelatedIs there anyway to associate a name to an IP in the RV220W? I am coming from a WRVS4400N v2. Folks are complaining that they can't connect, for example via Real VNC, via the PC name any longer. They have to use the IP address. In the past I put the names of the PCs in the WRVS4400N when I reserved IPs via MAC addresses (some call this assigning static IPs). There isn't any place in the RV220W to put the name. Even when I look at the DHCP list a lot of them show up as "unknown". I am sure this is a NETBIOS thing but I'd rather fix this in the router as I have always done in the past.
View 4 Replies View RelatedI would like to associate multiple IPv4 networks with one physical interface in the router. All those multiple networks share the same broadcast domain(VLAN 5). I am aware that it's not possible to have multiple subinterfaces in the router with the same "encapsulation dot1Q 5". Am I correct that only option here is to configure all those networks as a secondary network to router physical interface? Or are there other possibilities than secondary addresses?
View 4 Replies View RelatedI'm setting up a 2106 controller with 3 APs.
When I connect the APs to a port on our 3550 switch, the AP gets an IP and associates with the 2106 controller. I can ping the AP from a wired PC and associate a wireless client to it. When I connect them to the PoE ports that are on the controller, it gets an IP and associates with the controller but, I cannot ping it from a wired PC or wireless client but, I can associate a wireless client to it.
The AP manager and Management interfaces, under PHYSICAL OPERATION are configured for port 1, which is the port that connects the Controller to the rest of the network. Since the whole network is using VLAN 1, I set the VLANs for the Management interface and AP interface to 0, untagged. I noticed when I set the AP manager interface to 1 I get the same results.
I am having a problem associating an AIR-LAP1142-E-K9 AP to our WLC4402 Controller (running version 7.0.230).I have connected a console cable to the device and when it boots up it picks up an IP address. I have then entered the controller IP using the command: [code] The Controller is set to 'GB' (regional code -E), and has the correct time zone (though I do notice this is GMT and not BST) but when the AP connects it shows the time an hour earlier than the time on the WLC GUI.
View 2 Replies View RelatedWe have a new backbone in our LAN with two C3750X-24S 15.0(1)SE3. Since we change the model of our equipment we can't update NTP on this two switches.We try to update NTP with two firewall Juniper SSG-140 in version 6.3.0r12.0. The two switchs never arive to associate with firewall (we try with the comme ntp server and ntp peer)
So we configure ntp server on our distribution servers switchs (one 4900 12.2(54)SG and one stack of 3750G and 3750E 12.2(50)SE5). They have no problem to update NTP on the firewal.So we change our configuration ntp server on the backbone and we try to update it with the distributions servers switchs. With the command ntp server it doesn't work. With the commande ntp peer it works but not everytime. The core switchs are in "synchronized" state then "unsynchronized" then "synchronized" etc...When they are in "unsynchronized" state there is "x falseticker" raison behind the IP of the ntp peer.
Is it an IOS version problem on our core switch?
We are running ACS 5.2 patch 6 and want to restrict access for users to be able to add devices to the system.For example, admin person in site A can only add devices into the site A group and cannot see/access other sites groups.
View 1 Replies View Related
