We are looking at possibly adding a second 5508 controller to our network and running in HA mode. I see now that there are 5760's available that run on IOS. Is there any way we can integrate a 5760 into our existing network instead of going with a second 5508? I would prefer to invest in newer hardware whenever possible.
View 15 Replies
I just cannot locate it. Customer purchasing two 5760 WLCs:
1 AIR-CT5760-500-K9
1 AIR-CT5760-HA-K9
I am looking for info on how to configure these 2 WLCs to work together. How do you inform the production WLC that a HA WLC is available to sync with? Do WLCs have to be L-2 adjacent, or will HA operate at L-3? How does this HA setup work? etc.
I am performing a new install of a WLC 5760 and 3602i APs. I have limited experience in setting up WLCs. I am hitting a brick wall in getting the AP to join my WLC. My primary document has been this deployment guide:url...I have also sifted through many of the relevant portions of these guides: url...
I went through the setup wizard and followed the instructions in Ch. 2 to the letter (or at least I think I did). I have DHCP options 43 and 60 configured per the 3600 series Getting Started Guide.I believe my AP discovery process is sound because I see activity when I power on the AP and perform debug capwap ap all from the WLC. I have highlighted lines that I think are relevant. I have attempted to find the answer on my own by searching the Internet for these phrases. [code]
I know these IOS controllers are new. I ran in to an ap join issue so I figured I'd post the fix
Reason for last unsuccessful join attempt : Failed to add database entry on IOS
check the AP licenses.
WLC-5760#sh license right-to-use Slot
# License name Type Count Period left
----------------------------------------------------------
1 apcount adder 50 Lifetime
If you don't have a licenses you'll need to add them
CCNP - Wireless CWNA and CWAP
The ISE compatibility Matrix (June 5, 2013), does have a row for WLC 5760 in its tables.
The WLC 5760 Release Notes says it is compatible with with ISE without specfying which features. Why is the WLC 5760 missing from the ISE Compat Matrix and how can I get specific ISE feature support (ie CoA, DACL).
We have 80 LAP1252AG and WLC 4404. We plan to upgrade our WLC 4404 to WLC 5760 but not sure if our current APs will work with the new WLC 5760.
View 1 Replies View RelatedI cannot integrate Virtual MSE 7.3.101 with my Prime Infrastructure 1.2 After I setup MSE via its wizard, I make a change on WCS username and password. When I try to integrate MSE with Prime Infrastructure, Prime notify me about the mismatch username/password.
Both systems are fresh install on my UCS C220 M3.
I need to integrate Cisco ISE and WLC5508 with FlexConnect (local switching) using EAP-TLS security for wireless clients across multiple floors (dynamic VLAN assignments based on floor level). The AP model used is 3602.
- What RADIUS Attribute can be used for dynamic VLAN assignments based on floor level? Is there an option where I can group all LWAPs in same floor for getting certain VLAN from ISE?
- I intend to use WLC software version 7.2 since 7.3 is latest version. Has someone use WLC software version 7.3 without any major bugs/issues pertaining to FlexConnect and EAP-TLS?
- I read some documents saying L3 roaminig is where the associated WLC has changed. However if user move to different subnet but still associated to the same WLC, would this be consider as L3 roaming too?
i have a cisco ACS version 5.0, I need to authenticate a wireless users connected to WLC 2100 controller when i connect the controller to a Dot1x port in the switch , the port go down.
View 6 Replies View RelatedI recently installed a 2951 with a security plus license..I hate it (security featuers not router) and would like to put the asa back in place.how to integrate the asa with the 2951, I believe I need to run it in multi context mode.
View 3 Replies View Relatedhow to integrate NetFlow to some Ciscoworks module.
View 3 Replies View RelatedWe have a core 6500 switch that has a PRI module in it that binds (4) T1 lines together and we also have a 2600 Rtr that binds 4 other T1 lines together and pipes them into a ASA5520. We are changing WAN vendors but still have to maintain the (8) T1 connections until our contract runs out, which will be in a few years. The 8 T1's are not enough bandwith for our operation and we will be adding a 20meg WAN link in the next month. What I am trying to figure out is how to best integrate 3 different WAN links into one LAN. What I am thinking of doing is to leave the 6500 core switch as is and then to purchase a router that can hold (4) T1 wics and the 20meg link. Is it possible to bind those 5 links together even though they are different vendors?
View 4 Replies View RelatedWe have LMS 4.1 in our network. We had recently installed Remote Syslog Collector on a new Server to collect logs from all the devices. How can we integrate the Remote Syslog Collector with the LMS Server?
View 3 Replies View RelatedI have installed 4 unit Cisco Aironet 1250 acting as Autonomous AP each. I want to integrate these AP to Windows Active Directory for authentication level.
When I read configuration guide on Cisco Aironet, they must be authenticated via RADIUS server.
Is it possible that these AP directly authenticated to Active Directory via LDAP protocol?
I have a question. What is the requirement of integrate ACS 4.2 Appliance and AD about CA server? it has to be windows 2003 server enterprice o windows 2008 enterprice? or it can be windows 2003 and 2008 stand alone? another question is about multi domain, i have domain father and children. the installation of CA Server is in domain father to enable 802.1x with AD with all domain children integrate? or I can be install the CA server in the server of domain children and is it work (CA server installed in server in domain child and it working all domains child and father)?
View 1 Replies View RelatedI planning to integrate cisco asa5505 device in runing enviornment for filter ip traffic.Internet ----router----ciscoasa----lan.Ip series is public(25.263.25.0/24) througout of network (no privateIP)now how do I set asa in such case and filter traffic from comming into lan and going out to internet.
View 5 Replies View RelatedWe having ACS version 5.2 0.26 with Active/Standby. We need to integrate active directory with ACS. Domain name given by Server team was as xyzcompy.local. When I tried to resolve the same domain name I got five servers ip address against the same domain name. however we given the ip reachability to only for two servers. We we try to save we get error saying that "Can not resolve the network address".
So my questions are;
- does ACS should have ip reachaibility to all five servers
- does the username/password we entered in the ACS should have domain admin rights?.
- the given AD is configured with windows NTP [URL] but when we configured ACS as windows NTP it was taking local server as active NTP..?
When we check the ACS logs, we saw the following error;
in acsLocalStore:
AdminName=acsadmin, DomainName=qatarconvention.local, ADOperationResult=unable to create secured connection against AD server, switching to non-secured connection. javax.naming.CommunicationException: simple bind failed: qnccad02.xxxxconvention.local:636 [Root exception is java.net.SocketException: Connection reset],
in ACSADAgent;
32484]: INFO dns.findsrv FindSrvFromDns failed: res_query failed _ldap._tcp.xxxxconvention.local
Sep 4 12:43:20 acs01-cc4 adjoin[32484]: INFO cli.adjoin Join to domain 'xxxxconvention.local', zone 'null' failed.
I attached some screen print which saw the error and output of nslookup for the domain name.
I have a 2951 which i want to integrate to the CUCM and wish to plug a Siemens ISDX into it which is the best card to use
NM-HDV2-1T1/E1 or WIC2-2MFT-T1/E1? its QSIG
I would like to integrate our intranet web page with Cisco WLC 2500. Is it possible to integrate custom web page with WLC. I know, that I can create custom authentication page, but what about creation of the user?
View 5 Replies View RelatedI have a 2821 ciso router and i want to setup a vpn for my windows domain users , they must to reach the domain from outside. There is posibile to intregrate Active directory auth with pptp running on 2821 router? kind of dialin via radius server(IAS running on windows server 2003).
View 3 Replies View RelatedCan we integrate cisco acs verison 5.x with active directory Microsoft windows server 2012 ?
View 1 Replies View Relatedoutput are here
*Mar 1 01:28:21.018: %CAPWAP-5-CHANGED: CAPWAP changed state to DISCOVERY
*Mar 1 01:28:21.022: %LWAPP-3-CLIENTERRORLOG: bsnSetCurrentBHRate : fail to set
radio control and data rate
*Mar 1 01:28:21.179: %CDP_PD-2-POWER_LOW: All radios disabled - AC_ADAPTOR (00
00.0000.0000)
*Mar 1 01:28:21.984: %LINEPROTO-5-UPDOWN: Line protocol on Interface GigabitEth
ernet0, changed state to up
*Mar 1 01:28:34.341: %DHCP-6-ADDRESS_ASSIGN: Interface GigabitEthernet0 assigne
d DHCP address 192.168.10.244, mask 255.255.255.0, hostname AP2c54.2d0d.c3c4
I have a WLC 5508, AIR-LAP1142N APs and a SSID for students to connect to who bring their own device. I am still testing this and it has not been rolled out but I am running into some serious issues with joining the network. I am authenticating them through a RADIUS server (2008 R2). Problem: many of them cannot connect because they are lacking the certificate.
1. What is a good setup for authentication in a BYOD environment
2. If my setup is good what can I do to allow kids to use their computers on the wireless either without the certificate (which I know is unlikely) or what do I need to have them do to connect. I am hoping it does not involve hard wiring and getting the certificate from the server.
have a Cisco 5508 controller (version 6.0.199.4) that when I enable global multicast mode it will work for an hour or two and then it will kill the network. All internet both wired and wireless, access to server everything dead. I then have to directly connect to the service port and disable the global multicast mode. Then two reasons for enabling it are Docs2Go and LanSchool both require multicast to be enabled. I have it enabled on our wired network and it works OK there. ted.
View 10 Replies View RelatedI just turned on 2 Wirelless LAN Controllers 5508 and I am getting this message on both of them:
Loading primary image (Image not found)
** Unable to read "linux.pri.img" from ide 0:2 **
Loading backup image (Image not found)
** Unable to read "linux.bak.img" from ide 0:2 **
And it is taking me to the BootMenu. I selected option 4 to Clear Configuration and the controller seems to restart the system but I still get the same error. I checked the LEDs status and Sys is Amber and Alarm is OFF which according to the documentation is a System Crash.
I have a WLC5508 with around 70 AP's (LAP1042N) connecting over an MPLS WAN network. WLC and AP's are running 7.4.100
From time to time I have an AP which disassociates from the WLC with the logging beneath. This is a problem with the AP, or is this due to network saturation between the AP and the WLC ?
And if so, should I change the default retransmit values ?
I am planning to upgrade WLC from 7.2.103.0 to 7.2.110.0 due to some bug, but I wanted to know if it is compatible with WCS - 7.0.240.0 and NAC Guest server version 2.1.0, I am made some search but I couldn't get to proper conclusion.
View 8 Replies View RelatedI have a wlc 5508 running version 7.0.116.0 that I need to uppgrade to use the CAP2602I AP. I understand that I need to upgrade it to version 7.0.240 before 7.4.100 to avoid loosing HREAP VLAN mappings, and I have also read that i need to install the FUS image [URL]. In what order should this be done? Shlod the FUS image be installed before new firmware ore after firmware or after 7.0.240 but before 7.4?
View 1 Replies View Relatedsince few weeks i configure my APs on the new WLC5508, and then, the lights are off on the AP, is it normal? however they seems to work fine. What does this light means? FW version: 7.0.22,Is it important?
View 2 Replies View RelatedIn order to enbale HA SSO on our two 5008 WLC's, I plan to upgrade them to 7.3 / 7.4 (currently 7.2)Right now 7.3.112.0 is the latest release. We do not have any 1600 series AP's, which requires 7.4.any reason going for 7.4 directly..or not going for it?
View 5 Replies View RelatedI am trying to setup SSO between my primary and secondary 5508 controller, and it doesn't appear to be working. I lose connection to both devices after the reboot and then have to console in and disable redundancy manually to regain connectivity. Is there something special required for this to work that isn't apparent?
View 4 Replies View RelatedI've just gotten in two new 5508 controllers that have come preinstalled with code version 7.0.116.0. My issue is that when I go to downgrade these to 7.0.98.218 I get an error after the Image version check is passed stating the following:ERROR: Incompatible SW image. ERROR: Please install the Data Payload Encryption licensed image.I've tried multiple times to no avail, I've also gone as far as installing the LDPE image of 7.0.116.0 thinking it needed that before downgrading but it still didn't work.
View 5 Replies View RelatedI am planing to upgrade 2 of my 5508 series WLC from 7.0.116 to version 7.2.111.3. I understand that legacy AP's are no longer supported. Is the upgrade straight-forward just like other code upgrades?
View 19 Replies View Related
