Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2183
Views
5
Helpful
8
Replies

The device limit must be less than or equal to lifecycle license limit in cisco prime 2.2

Go to solution
Shivu b
Level 1
Level 1

‎09-11-2016 12:26 AM

Hi All,

I have seen below error on Cisco prime infrastructure 2.2 tool 

The device limit must be less than or equal to life cycle license limit and also ISE secondary device is unreachable from Prime.

Could you please suggest how we can fix the issue.

Thanks in advance.....

Regards,

sachin

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Marvin Rhoads
Hall of Fame
Hall of Fame
In response to Shivu b

‎09-11-2016 10:31 AM

Yes. Lifecycle license are per managed device. See this page for a good overview:

http://www.cisco.com/c/en/us/support/docs/cloud-systems-management/prime-infrastructure/200334-Prime-Infrastructure-Licensing-v2-2-3.html

..as well as this page:

http://www.cisco.com/c/en/us/products/collateral/cloud-systems-management/prime-infrastructure/guide-c07-731621.html

...which states:

Lifecycle License: Provides access to the Lifecycle feature set, which includes device configuration management, software image management, basic health and performance monitoring, fault management, troubleshooting, and network client visibility. The Lifecycle license is based on the number of managed devices. Lifecycle licenses are available in bundle sizes of 25, 50, 100, 500, 1000, 2500, 5000, 10,000, and 15,000 devices and can be combined as needed to achieve a total licensed device count.

A device is uniquely identified through the assigned IP address and system object ID (SysOid) combination. Routers, switches, lightweight/unified access points, and Cisco Prime Network Analysis Modules (NAMs) are counted against the license count. If a switch stack is managed through a single IP address, then it counts as only one device. A single chassis will, however, be counted as multiple devices if the chassis is configured with multiple IP addresses. For example, a switch with multiple service cards, such as a firewall, and so on, or a stackable switch that has an IP address assigned to each switch that participates in the stack will be treated as multiple devices within Cisco Prime Infrastructure. Cisco Wireless LAN Controllers (WLCs), autonomous access points, and third-party devices are not counted against the license count.

When you have more managed devices than licenses you will receive the error you are seeing and be prevented from adding additional devices to your inventory.

We see this most commonly when lightweight (i.e., not autonomous) APs are added to a Wireless controller. PI won't prevent the new APs from being added as they are managed by virtue of their association with the WLC. However, if you were to try to add a new switch it would prevent you from doing so until the licensing shortfall was addressed.

View solution in original post

0 Helpful
8 Replies 8

Go to solution
Marvin Rhoads
Hall of Fame
Hall of Fame

‎09-11-2016 07:39 AM

1. Add licenses or decrease managed devices.

2. Check if the ISE server's IP address is reachable from Prime Infrastrucutre, no intervening firewall blocks tcp/443 (https), and the ISE server certificate is trusted by Prime Infrastructure.

Go to solution
Shivu b
Level 1
Level 1
In response to Marvin Rhoads

‎09-11-2016 10:08 AM

Hi Marvin,

Thanks for your reply.

 Life cycle license already has been there in PI 2.2,  if Add licenses, meant may i need purchase again Life cycle licenses ?

0 Helpful

Go to solution
Marvin Rhoads
Hall of Fame
Hall of Fame
In response to Shivu b

‎09-11-2016 10:31 AM

Yes. Lifecycle license are per managed device. See this page for a good overview:

http://www.cisco.com/c/en/us/support/docs/cloud-systems-management/prime-infrastructure/200334-Prime-Infrastructure-Licensing-v2-2-3.html

..as well as this page:

http://www.cisco.com/c/en/us/products/collateral/cloud-systems-management/prime-infrastructure/guide-c07-731621.html

...which states:

Lifecycle License: Provides access to the Lifecycle feature set, which includes device configuration management, software image management, basic health and performance monitoring, fault management, troubleshooting, and network client visibility. The Lifecycle license is based on the number of managed devices. Lifecycle licenses are available in bundle sizes of 25, 50, 100, 500, 1000, 2500, 5000, 10,000, and 15,000 devices and can be combined as needed to achieve a total licensed device count.

A device is uniquely identified through the assigned IP address and system object ID (SysOid) combination. Routers, switches, lightweight/unified access points, and Cisco Prime Network Analysis Modules (NAMs) are counted against the license count. If a switch stack is managed through a single IP address, then it counts as only one device. A single chassis will, however, be counted as multiple devices if the chassis is configured with multiple IP addresses. For example, a switch with multiple service cards, such as a firewall, and so on, or a stackable switch that has an IP address assigned to each switch that participates in the stack will be treated as multiple devices within Cisco Prime Infrastructure. Cisco Wireless LAN Controllers (WLCs), autonomous access points, and third-party devices are not counted against the license count.

When you have more managed devices than licenses you will receive the error you are seeing and be prevented from adding additional devices to your inventory.

We see this most commonly when lightweight (i.e., not autonomous) APs are added to a Wireless controller. PI won't prevent the new APs from being added as they are managed by virtue of their association with the WLC. However, if you were to try to add a new switch it would prevent you from doing so until the licensing shortfall was addressed.

0 Helpful

Go to solution
Shivu b
Level 1
Level 1
In response to Marvin Rhoads

‎09-12-2016 12:24 AM

Marvin,

HTTPs/443 is allowed in firewall and ISE accessible from I E .

Can we able to check in GUI mode in prime infrastrucre 2.2 for ISE server certificate is trusted or not ?

0 Helpful

Go to solution
Marvin Rhoads
Hall of Fame
Hall of Fame
In response to Shivu b

‎09-12-2016 02:21 PM

I misspoke - it's not trust per se that's required. They need to negotiate a secure communications channel.

Are you saying your primary ISE server is integrated but the secondary is not possible?

What are you exact versions of each product (release and patch level)? There was a bug around PI 2.2 and 3.0 with ISE 1.4 and 2.0 not negotiating a mutual TLS version properly.

0 Helpful

Go to solution
Shivu b
Level 1
Level 1
In response to Marvin Rhoads

‎09-14-2016 12:03 AM

 

ISE Primary is reachable and secondary is not reachable.

ISE secondary pingable and no block in Firewall and its accessible via 443.

ISE Version: 1.2.1.198

Are unified/Lightweight access point auto discover in WLC If I add the WLC in Prime 2.x and will it go against the license count?

or is it possible maintain license count level by adding only WLC.

Ex: WLC 100 device

License count :500

Lightweight AP's : 800 device

0 Helpful

Go to solution
Marvin Rhoads
Hall of Fame
Hall of Fame
In response to Shivu b

‎09-14-2016 07:39 PM

Re the ISE - I'd do a packet capture on the ISE node (Operations - Troubleshooting tools) while trying to connect to dig deeper.

When you add your WLC it will add all APs managed by that WLC and those will count against the license. There is no avoiding that - it's how the product is designed to work.

0 Helpful

Go to solution
Shivu b
Level 1
Level 1
In response to Marvin Rhoads

‎09-14-2016 10:19 PM

Thanks Marvin

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents