Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hi all,we have running a wireless guest network with an anchor WLC in a DMZ. This WLC is running web authentication, a NAC Guest Server (NGS) is acting as RADIUS server. All that is working fine so far.Following situation occurs:Some guest users were...
Hi all,we are running ACS 4.2(1) Build 15 on a Win2003 member server and use the ACS for EAP-TLS with certificates (Microsoft-PKI) for WLAN authentication (WLC 4402, 6.0 and 4.2). We are using both machine and user authentication.Sometimes machine au...
Hi all,following scenario:A WLC 4402-25 running 4.0.217.0. Some LAP1131. Local DHCP Range configured on WLC for APs. Management and two ap-manager interfaces are in the same subnet. No LAG. Everything is working fine - APs gather DHCP from controller...
Hello,I have some Access Points outside of my LAN but trusted by me. I have tried to mark them in WCS as 'Known Internal' or 'Acknowledge External' but anyway I still get critcal alarms 'AP Impersonation...' (every 5 minutes) and major alarms 'AP is ...
Following infrastructure:RSA ACE/Server with SecurID tokenACS 3.2(1) with RSA ACE/Agent 5.6Catalyst 4506 with IOS 12.2(25)EWA1Client with WindowsXP SP1 (KB826942 loaded) connected by cable (not wireless)I can do:- Authenticating on Cat4506 CLI consol...
Hi Greg,after identifying the reason last year the TAC engineer told me that Cisco is planning to fix that in version 7.0 and later only.And checking the bug toolkit today - yes, there is only a 7.0 version listed as fixed.I'm currently running a 6.0...
All,just for information - after contacting TAC we had a deep dive into different directions. Finally we have found a new bug in WLC software: CSCth31837.Reason was that packets in this LAN are marked with an valid CoS value other than zero together ...
@ Scott: To do a clean install is an idea, but I have 8 other WLCs around the country. And I don't want to risk to run in the same trap before I have either a solution without hands on device or a clear reason why this device is the only faulty one.I...
Yes, good idea. But no, didn't help.DHCP proxy is enabled in both environments - the failing life controller and the working lab controller.And neither disabling DHCP proxy nor re-enabling didn't change anything on the life controller. Same error mes...
Yes, actually I did it for one and the same device. To access CLI on a switch via TACACS+ authentication and to implement dot1x authentication at the ports of the same switch via RADIUS.This is possible by configuring two different network devices fo...
